/* tslint:disable */ /* eslint-disable */ /** * Ory APIs * # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages: | Language | Download SDK | Documentation | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart | [pub.dev](https://pub.dev/packages/ory_client) | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md) | | .NET | [nuget.org](https://www.nuget.org/packages/Ory.Client/) | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md) | | Elixir | [hex.pm](https://hex.pm/packages/ory_client) | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md) | | Go | [github.com](https://github.com/ory/client-go) | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md) | | Java | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md) | | JavaScript | [npmjs.com](https://www.npmjs.com/package/@ory/client) | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch) | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) | | PHP | [packagist.org](https://packagist.org/packages/ory/client) | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md) | | Python | [pypi.org](https://pypi.org/project/ory-client/) | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md) | | Ruby | [rubygems.org](https://rubygems.org/gems/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md) | | Rust | [crates.io](https://crates.io/crates/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md) | * * The version of the OpenAPI document: v1.20.3 * Contact: support@ory.sh * * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). * https://openapi-generator.tech * Do not edit the class manually. */ import type { Configuration } from './configuration'; import type { AxiosPromise, AxiosInstance, RawAxiosRequestConfig } from 'axios'; import globalAxios from 'axios'; // Some imports not used depending on template conditions // @ts-ignore import { DUMMY_BASE_URL, assertParamExists, setApiKeyToObject, setBasicAuthToObject, setBearerAuthToObject, setOAuthToObject, setSearchParams, serializeDataIfNeeded, toPathString, createRequestFunction } from './common'; import type { RequestArgs } from './base'; // @ts-ignore import { BASE_PATH, COLLECTION_FORMATS, BaseAPI, RequiredError, operationServerMap } from './base'; /** * * @export * @interface AcceptOAuth2ConsentRequest */ export interface AcceptOAuth2ConsentRequest { /** * * @type {object} * @memberof AcceptOAuth2ConsentRequest */ 'context'?: object; /** * * @type {Array} * @memberof AcceptOAuth2ConsentRequest */ 'grant_access_token_audience'?: Array; /** * * @type {Array} * @memberof AcceptOAuth2ConsentRequest */ 'grant_scope'?: Array; /** * * @type {string} * @memberof AcceptOAuth2ConsentRequest */ 'handled_at'?: string; /** * Remember, if set to true, tells ORY Hydra to remember this consent authorization and reuse it if the same client asks the same user for the same, or a subset of, scope. * @type {boolean} * @memberof AcceptOAuth2ConsentRequest */ 'remember'?: boolean; /** * RememberFor sets how long the consent authorization should be remembered for in seconds. If set to `0`, the authorization will be remembered indefinitely. * @type {number} * @memberof AcceptOAuth2ConsentRequest */ 'remember_for'?: number; /** * * @type {AcceptOAuth2ConsentRequestSession} * @memberof AcceptOAuth2ConsentRequest */ 'session'?: AcceptOAuth2ConsentRequestSession; } /** * * @export * @interface AcceptOAuth2ConsentRequestSession */ export interface AcceptOAuth2ConsentRequestSession { /** * AccessToken sets session data for the access and refresh token, as well as any future tokens issued by the refresh grant. Keep in mind that this data will be available to anyone performing OAuth 2.0 Challenge Introspection. If only your services can perform OAuth 2.0 Challenge Introspection, this is usually fine. But if third parties can access that endpoint as well, sensitive data from the session might be exposed to them. Use with care! * @type {any} * @memberof AcceptOAuth2ConsentRequestSession */ 'access_token'?: any; /** * IDToken sets session data for the OpenID Connect ID token. Keep in mind that the session\'id payloads are readable by anyone that has access to the ID Challenge. Use with care! * @type {any} * @memberof AcceptOAuth2ConsentRequestSession */ 'id_token'?: any; } /** * * @export * @interface AcceptOAuth2LoginRequest */ export interface AcceptOAuth2LoginRequest { /** * ACR sets the Authentication AuthorizationContext Class Reference value for this authentication session. You can use it to express that, for example, a user authenticated using two factor authentication. * @type {string} * @memberof AcceptOAuth2LoginRequest */ 'acr'?: string; /** * * @type {Array} * @memberof AcceptOAuth2LoginRequest */ 'amr'?: Array; /** * * @type {object} * @memberof AcceptOAuth2LoginRequest */ 'context'?: object; /** * Extend OAuth2 authentication session lifespan If set to `true`, the OAuth2 authentication cookie lifespan is extended. This is for example useful if you want the user to be able to use `prompt=none` continuously. This value can only be set to `true` if the user has an authentication, which is the case if the `skip` value is `true`. * @type {boolean} * @memberof AcceptOAuth2LoginRequest */ 'extend_session_lifespan'?: boolean; /** * ForceSubjectIdentifier forces the \"pairwise\" user ID of the end-user that authenticated. The \"pairwise\" user ID refers to the (Pairwise Identifier Algorithm)[http://openid.net/specs/openid-connect-core-1_0.html#PairwiseAlg] of the OpenID Connect specification. It allows you to set an obfuscated subject (\"user\") identifier that is unique to the client. Please note that this changes the user ID on endpoint /userinfo and sub claim of the ID Token. It does not change the sub claim in the OAuth 2.0 Introspection. Per default, ORY Hydra handles this value with its own algorithm. In case you want to set this yourself you can use this field. Please note that setting this field has no effect if `pairwise` is not configured in ORY Hydra or the OAuth 2.0 Client does not expect a pairwise identifier (set via `subject_type` key in the client\'s configuration). Please also be aware that ORY Hydra is unable to properly compute this value during authentication. This implies that you have to compute this value on every authentication process (probably depending on the client ID or some other unique value). If you fail to compute the proper value, then authentication processes which have id_token_hint set might fail. * @type {string} * @memberof AcceptOAuth2LoginRequest */ 'force_subject_identifier'?: string; /** * IdentityProviderSessionID is the session ID of the end-user that authenticated. If specified, we will use this value to propagate the logout. * @type {string} * @memberof AcceptOAuth2LoginRequest */ 'identity_provider_session_id'?: string; /** * Remember, if set to true, tells ORY Hydra to remember this user by telling the user agent (browser) to store a cookie with authentication data. If the same user performs another OAuth 2.0 Authorization Request, he/she will not be asked to log in again. * @type {boolean} * @memberof AcceptOAuth2LoginRequest */ 'remember'?: boolean; /** * RememberFor sets how long the authentication should be remembered for in seconds. If set to `0`, the authorization will be remembered for the duration of the browser session (using a session cookie). * @type {number} * @memberof AcceptOAuth2LoginRequest */ 'remember_for'?: number; /** * Subject is the user ID of the end-user that authenticated. * @type {string} * @memberof AcceptOAuth2LoginRequest */ 'subject': string; } /** * * @export * @interface AccountExperienceColors */ export interface AccountExperienceColors { /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-100'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-200'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-300'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-400'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-50'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-500'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-600'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-700'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-800'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-900'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'brand-950'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-identifier-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-identifier-background-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-identifier-border-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-identifier-border-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-identifier-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-identifier-foreground-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-brand-brand'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-brand-brand-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-default-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-default-primary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-default-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-default-secondary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-link-disabled-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-background-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-background-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-foreground-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-primary-foreground-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-background-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-background-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-foreground-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-secondary-foreground-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-background-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-background-generic-provider'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-background-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-border-generic-provider'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-foreground-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-foreground-generic-provider'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'button-social-foreground-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'checkbox-background-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'checkbox-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'checkbox-border-checkbox-border-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'checkbox-border-checkbox-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'checkbox-foreground-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'checkbox-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'form-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'form-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-background-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-background-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-border-focus'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-foreground-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-foreground-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-foreground-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'input-foreground-tertiary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-brand-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-brand-primary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-brand-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-brand-secondary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-inverted'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-inverted-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-none'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-primary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-secondary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-tertiary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-default-tertiary-hover'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-disabled-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-validation-danger'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-validation-success'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-background-validation-warning'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-brand-brand'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-default-inverted'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-default-none'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-default-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-disabled-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-validation-danger'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-validation-success'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-border-validation-warning'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-brand-on-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-brand-on-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-brand-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-brand-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-default-inverted'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-default-primary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-default-secondary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-default-tertiary'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-disabled-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-disabled-on-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-validation-danger'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-validation-success'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'interface-foreground-validation-warning'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ory-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ory-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ory-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'radio-background-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'radio-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'radio-border-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'radio-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'radio-foreground-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'radio-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'toggle-background-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'toggle-background-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'toggle-border-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'toggle-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'toggle-foreground-checked'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'toggle-foreground-default'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-100'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-200'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-300'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-400'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-50'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-500'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-600'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-700'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-800'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-900'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-950'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-black'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-danger'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-success'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-transparent'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-warning'?: string; /** * * @type {string} * @memberof AccountExperienceColors */ 'ui-white'?: string; } /** * * @export * @interface AccountExperienceConfiguration */ export interface AccountExperienceConfiguration { /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'default_redirect_url': string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'error_ui_url': string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'favicon_dark_url'?: string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'favicon_light_url'?: string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'login_ui_url': string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'logo_dark_url'?: string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'logo_light_url'?: string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'name': string; /** * * @type {boolean} * @memberof AccountExperienceConfiguration */ 'recovery_enabled': boolean; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'recovery_ui_url': string; /** * * @type {boolean} * @memberof AccountExperienceConfiguration */ 'registration_enabled': boolean; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'registration_ui_url': string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'settings_ui_url': string; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'stylesheet'?: string; /** * * @type {boolean} * @memberof AccountExperienceConfiguration */ 'verification_enabled': boolean; /** * * @type {string} * @memberof AccountExperienceConfiguration */ 'verification_ui_url': string; } /** * * @export * @interface AccountExperienceThemeVariables */ export interface AccountExperienceThemeVariables { /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'accent'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'border-radius-branding'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'border-radius-buttons'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'border-radius-cards'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'border-radius-forms'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'border-radius-general'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-bg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-bg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-fg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-primary-fg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-bg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-bg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-fg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-secondary-fg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-bg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-bg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-bg-provider'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-border-provider'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-fg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-fg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'button-social-fg-provider'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'created_at'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'dialog-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'dialog-bg-subtle'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'dialog-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'dialog-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'dialog-fg-mute'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'dialog-fg-subtle'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-bg-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-bg-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-error'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-focus'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-success'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-border-warn'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-checkbox-bg-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-checkbox-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-checkbox-border-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-checkbox-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-checkbox-fg-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-checkbox-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-fg-error'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-fg-mute'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-fg-subtle'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-fg-success'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-fg-warn'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-radio-bg-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-radio-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-radio-border-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-radio-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-radio-fg-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-radio-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-toggle-bg-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-toggle-bg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-toggle-border-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-toggle-border-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-toggle-fg-checked'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'forms-toggle-fg-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'id'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-disabled'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-inverted-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-inverted-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-mute-default'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'links-link-mute-hover'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'syntax-syntax'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'syntax-syntax-key'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'syntax-syntax-num'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'syntax-syntax-value'?: string; /** * * @type {string} * @memberof AccountExperienceThemeVariables */ 'updated_at'?: string; } /** * The Active Project ID * @export * @interface ActiveProjectInConsole */ export interface ActiveProjectInConsole { /** * The Active Project ID format: uuid * @type {string} * @memberof ActiveProjectInConsole */ 'project_id'?: string; } /** * * @export * @interface AddProjectToWorkspaceBody */ export interface AddProjectToWorkspaceBody { /** * The environment of the project in the workspace. Can be one of \"prod\" or \"dev\". Note that the number of projects in the \"prod\" environment is limited depending on the subscription. prod Production stage Staging dev Development * @type {string} * @memberof AddProjectToWorkspaceBody */ 'environment': AddProjectToWorkspaceBodyEnvironmentEnum; /** * The action to take with the project subscription. Can be one of \"migrate\", and \"ignore\". \"migrate\" will migrate the project subscription to the workspace. \"ignore\" will ignore the project subscription. migrate ProjectSubscriptionActionMigrate ProjectSubscriptionActionMigrate will migrate the project subscription to the workspace. ignore ProjectSubscriptionActionIgnore ProjectSubscriptionActionIgnore will ignore the project subscription. * @type {string} * @memberof AddProjectToWorkspaceBody */ 'project_subscription': AddProjectToWorkspaceBodyProjectSubscriptionEnum; } export const AddProjectToWorkspaceBodyEnvironmentEnum = { Prod: 'prod', Stage: 'stage', Dev: 'dev', UnknownDefaultOpenApi: '11184809' } as const; export type AddProjectToWorkspaceBodyEnvironmentEnum = typeof AddProjectToWorkspaceBodyEnvironmentEnum[keyof typeof AddProjectToWorkspaceBodyEnvironmentEnum]; export const AddProjectToWorkspaceBodyProjectSubscriptionEnum = { Migrate: 'migrate', Ignore: 'ignore', UnknownDefaultOpenApi: '11184809' } as const; export type AddProjectToWorkspaceBodyProjectSubscriptionEnum = typeof AddProjectToWorkspaceBodyProjectSubscriptionEnum[keyof typeof AddProjectToWorkspaceBodyProjectSubscriptionEnum]; /** * * @export * @interface Attribute */ export interface Attribute { /** * * @type {string} * @memberof Attribute */ 'key'?: string; /** * * @type {string} * @memberof Attribute */ 'value'?: string; } /** * * @export * @interface AttributeFilter */ export interface AttributeFilter { /** * * @type {string} * @memberof AttributeFilter */ 'attribute'?: string; /** * * @type {string} * @memberof AttributeFilter */ 'condition'?: AttributeFilterConditionEnum; /** * * @type {string} * @memberof AttributeFilter */ 'value'?: string; } export const AttributeFilterConditionEnum = { Equals: 'equals', NotEquals: 'not_equals', Contains: 'contains', NotContains: 'not_contains', Regex: 'regex', NotRegex: 'not_regex', Set: 'set', NotSet: 'not_set', UnknownDefaultOpenApi: '11184809' } as const; export type AttributeFilterConditionEnum = typeof AttributeFilterConditionEnum[keyof typeof AttributeFilterConditionEnum]; /** * * @export * @interface AttributesCountDatapoint */ export interface AttributesCountDatapoint { /** * Count of the attribute value for given key * @type {number} * @memberof AttributesCountDatapoint */ 'count': number; /** * Name of the attribute value for given key * @type {string} * @memberof AttributesCountDatapoint */ 'name': string; } /** * The authenticator assurance level can be one of \"aal1\", \"aal2\", or \"aal3\". A higher number means that it is harder for an attacker to compromise the account. Generally, \"aal1\" implies that one authentication factor was used while AAL2 implies that two factors (e.g. password + TOTP) have been used. To learn more about these levels please head over to: https://www.ory.sh/kratos/docs/concepts/credentials * @export * @enum {string} */ export const AuthenticatorAssuranceLevel = { Aal0: 'aal0', Aal1: 'aal1', Aal2: 'aal2', Aal3: 'aal3', UnknownDefaultOpenApi: '11184809' } as const; export type AuthenticatorAssuranceLevel = typeof AuthenticatorAssuranceLevel[keyof typeof AuthenticatorAssuranceLevel]; /** * Batch Check Permission Body * @export * @interface BatchCheckPermissionBody */ export interface BatchCheckPermissionBody { /** * * @type {Array} * @memberof BatchCheckPermissionBody */ 'tuples'?: Array; } /** * Batch Check Permission Result * @export * @interface BatchCheckPermissionResult */ export interface BatchCheckPermissionResult { /** * An array of check results. The order aligns with the input order. * @type {Array} * @memberof BatchCheckPermissionResult */ 'results': Array; } /** * Patch identities response * @export * @interface BatchPatchIdentitiesResponse */ export interface BatchPatchIdentitiesResponse { /** * The patch responses for the individual identities. * @type {Array} * @memberof BatchPatchIdentitiesResponse */ 'identities'?: Array; } /** * * @export * @interface BillingPeriodBucket */ export interface BillingPeriodBucket { /** * * @type {Array} * @memberof BillingPeriodBucket */ 'base_invoices'?: Array; /** * * @type {TimeInterval} * @memberof BillingPeriodBucket */ 'billing_period'?: TimeInterval; /** * * @type {Invoice} * @memberof BillingPeriodBucket */ 'usage_invoice'?: Invoice; } /** * * @export * @interface CheckOplSyntaxResult */ export interface CheckOplSyntaxResult { /** * The list of syntax errors * @type {Array} * @memberof CheckOplSyntaxResult */ 'errors'?: Array; } /** * The content of the allowed field is mirrored in the HTTP status code. * @export * @interface CheckPermissionResult */ export interface CheckPermissionResult { /** * whether the relation tuple is allowed * @type {boolean} * @memberof CheckPermissionResult */ 'allowed': boolean; } /** * Check Permission Result With Error * @export * @interface CheckPermissionResultWithError */ export interface CheckPermissionResultWithError { /** * whether the relation tuple is allowed * @type {boolean} * @memberof CheckPermissionResultWithError */ 'allowed': boolean; /** * any error generated while checking the relation tuple * @type {string} * @memberof CheckPermissionResultWithError */ 'error'?: string; } /** * * @export * @interface CloudAccount */ export interface CloudAccount { /** * * @type {string} * @memberof CloudAccount */ 'email': string; /** * * @type {boolean} * @memberof CloudAccount */ 'email_verified': boolean; /** * * @type {string} * @memberof CloudAccount */ 'id': string; /** * * @type {string} * @memberof CloudAccount */ 'name': string; } /** * Control API consistency guarantees * @export * @interface ConsistencyRequestParameters */ export interface ConsistencyRequestParameters { /** * Read Consistency Level (preview) The read consistency level determines the consistency guarantee for reads: strong (slow): The read is guaranteed to return the most recent data committed at the start of the read. eventual (very fast): The result will return data that is about 4.8 seconds old. The default consistency guarantee can be changed in the Ory Network Console or using the Ory CLI with `ory patch project --replace \'/previews/default_read_consistency_level=\"strong\"\'`. Setting the default consistency level to `eventual` may cause regressions in the future as we add consistency controls to more APIs. Currently, the following APIs will be affected by this setting: `GET /admin/identities` This feature is in preview and only available in Ory Network. ConsistencyLevelUnset ConsistencyLevelUnset is the unset / default consistency level. strong ConsistencyLevelStrong ConsistencyLevelStrong is the strong consistency level. eventual ConsistencyLevelEventual ConsistencyLevelEventual is the eventual consistency level using follower read timestamps. * @type {string} * @memberof ConsistencyRequestParameters */ 'consistency'?: ConsistencyRequestParametersConsistencyEnum; } export const ConsistencyRequestParametersConsistencyEnum = { Empty: '', Strong: 'strong', Eventual: 'eventual', UnknownDefaultOpenApi: '11184809' } as const; export type ConsistencyRequestParametersConsistencyEnum = typeof ConsistencyRequestParametersConsistencyEnum[keyof typeof ConsistencyRequestParametersConsistencyEnum]; /** * @type ContinueWith * @export */ export type ContinueWith = { action: 'redirect_browser_to' } & ContinueWithRedirectBrowserTo | { action: 'set_ory_session_token' } & ContinueWithSetOrySessionToken | { action: 'show_recovery_ui' } & ContinueWithRecoveryUi | { action: 'show_settings_ui' } & ContinueWithSettingsUi | { action: 'show_verification_ui' } & ContinueWithVerificationUi; /** * Indicates, that the UI flow could be continued by showing a recovery ui * @export * @interface ContinueWithRecoveryUi */ export interface ContinueWithRecoveryUi { /** * Action will always be `show_recovery_ui` show_recovery_ui ContinueWithActionShowRecoveryUIString * @type {string} * @memberof ContinueWithRecoveryUi */ 'action': ContinueWithRecoveryUiActionEnum; /** * * @type {ContinueWithRecoveryUiFlow} * @memberof ContinueWithRecoveryUi */ 'flow': ContinueWithRecoveryUiFlow; } export const ContinueWithRecoveryUiActionEnum = { ShowRecoveryUi: 'show_recovery_ui', UnknownDefaultOpenApi: '11184809' } as const; export type ContinueWithRecoveryUiActionEnum = typeof ContinueWithRecoveryUiActionEnum[keyof typeof ContinueWithRecoveryUiActionEnum]; /** * * @export * @interface ContinueWithRecoveryUiFlow */ export interface ContinueWithRecoveryUiFlow { /** * The ID of the recovery flow * @type {string} * @memberof ContinueWithRecoveryUiFlow */ 'id': string; /** * The URL of the recovery flow If this value is set, redirect the user\'s browser to this URL. This value is typically unset for native clients / API flows. * @type {string} * @memberof ContinueWithRecoveryUiFlow */ 'url'?: string; } /** * Indicates, that the UI flow could be continued by showing a recovery ui * @export * @interface ContinueWithRedirectBrowserTo */ export interface ContinueWithRedirectBrowserTo { /** * Action will always be `redirect_browser_to` redirect_browser_to ContinueWithActionRedirectBrowserToString * @type {string} * @memberof ContinueWithRedirectBrowserTo */ 'action': ContinueWithRedirectBrowserToActionEnum; /** * The URL to redirect the browser to * @type {string} * @memberof ContinueWithRedirectBrowserTo */ 'redirect_browser_to': string; } export const ContinueWithRedirectBrowserToActionEnum = { RedirectBrowserTo: 'redirect_browser_to', UnknownDefaultOpenApi: '11184809' } as const; export type ContinueWithRedirectBrowserToActionEnum = typeof ContinueWithRedirectBrowserToActionEnum[keyof typeof ContinueWithRedirectBrowserToActionEnum]; /** * Indicates that a session was issued, and the application should use this token for authenticated requests * @export * @interface ContinueWithSetOrySessionToken */ export interface ContinueWithSetOrySessionToken { /** * Action will always be `set_ory_session_token` set_ory_session_token ContinueWithActionSetOrySessionTokenString * @type {string} * @memberof ContinueWithSetOrySessionToken */ 'action': ContinueWithSetOrySessionTokenActionEnum; /** * Token is the token of the session * @type {string} * @memberof ContinueWithSetOrySessionToken */ 'ory_session_token': string; } export const ContinueWithSetOrySessionTokenActionEnum = { SetOrySessionToken: 'set_ory_session_token', UnknownDefaultOpenApi: '11184809' } as const; export type ContinueWithSetOrySessionTokenActionEnum = typeof ContinueWithSetOrySessionTokenActionEnum[keyof typeof ContinueWithSetOrySessionTokenActionEnum]; /** * Indicates, that the UI flow could be continued by showing a settings ui * @export * @interface ContinueWithSettingsUi */ export interface ContinueWithSettingsUi { /** * Action will always be `show_settings_ui` show_settings_ui ContinueWithActionShowSettingsUIString * @type {string} * @memberof ContinueWithSettingsUi */ 'action': ContinueWithSettingsUiActionEnum; /** * * @type {ContinueWithSettingsUiFlow} * @memberof ContinueWithSettingsUi */ 'flow': ContinueWithSettingsUiFlow; } export const ContinueWithSettingsUiActionEnum = { ShowSettingsUi: 'show_settings_ui', UnknownDefaultOpenApi: '11184809' } as const; export type ContinueWithSettingsUiActionEnum = typeof ContinueWithSettingsUiActionEnum[keyof typeof ContinueWithSettingsUiActionEnum]; /** * * @export * @interface ContinueWithSettingsUiFlow */ export interface ContinueWithSettingsUiFlow { /** * The ID of the settings flow * @type {string} * @memberof ContinueWithSettingsUiFlow */ 'id': string; /** * The URL of the settings flow If this value is set, redirect the user\'s browser to this URL. This value is typically unset for native clients / API flows. * @type {string} * @memberof ContinueWithSettingsUiFlow */ 'url'?: string; } /** * Indicates, that the UI flow could be continued by showing a verification ui * @export * @interface ContinueWithVerificationUi */ export interface ContinueWithVerificationUi { /** * Action will always be `show_verification_ui` show_verification_ui ContinueWithActionShowVerificationUIString * @type {string} * @memberof ContinueWithVerificationUi */ 'action': ContinueWithVerificationUiActionEnum; /** * * @type {ContinueWithVerificationUiFlow} * @memberof ContinueWithVerificationUi */ 'flow': ContinueWithVerificationUiFlow; } export const ContinueWithVerificationUiActionEnum = { ShowVerificationUi: 'show_verification_ui', UnknownDefaultOpenApi: '11184809' } as const; export type ContinueWithVerificationUiActionEnum = typeof ContinueWithVerificationUiActionEnum[keyof typeof ContinueWithVerificationUiActionEnum]; /** * * @export * @interface ContinueWithVerificationUiFlow */ export interface ContinueWithVerificationUiFlow { /** * The ID of the verification flow * @type {string} * @memberof ContinueWithVerificationUiFlow */ 'id': string; /** * The URL of the verification flow If this value is set, redirect the user\'s browser to this URL. This value is typically unset for native clients / API flows. * @type {string} * @memberof ContinueWithVerificationUiFlow */ 'url'?: string; /** * The address that should be verified in this flow * @type {string} * @memberof ContinueWithVerificationUiFlow */ 'verifiable_address': string; } /** * A Message\'s Status * @export * @enum {string} */ export const CourierMessageStatus = { Queued: 'queued', Sent: 'sent', Processing: 'processing', Abandoned: 'abandoned', UnknownDefaultOpenApi: '11184809' } as const; export type CourierMessageStatus = typeof CourierMessageStatus[keyof typeof CourierMessageStatus]; /** * It can either be `email` or `phone` * @export * @enum {string} */ export const CourierMessageType = { Email: 'email', Phone: 'phone', UnknownDefaultOpenApi: '11184809' } as const; export type CourierMessageType = typeof CourierMessageType[keyof typeof CourierMessageType]; /** * Create Custom Hostname Request Body * @export * @interface CreateCustomDomainBody */ export interface CreateCustomDomainBody { /** * The domain where cookies will be set. Has to be a parent domain of the custom hostname to work. * @type {string} * @memberof CreateCustomDomainBody */ 'cookie_domain'?: string; /** * CORS Allowed origins for the custom hostname. * @type {Array} * @memberof CreateCustomDomainBody */ 'cors_allowed_origins'?: Array; /** * CORS Enabled for the custom hostname. * @type {boolean} * @memberof CreateCustomDomainBody */ 'cors_enabled'?: boolean; /** * The base URL where the custom user interface will be exposed. * @type {string} * @memberof CreateCustomDomainBody */ 'custom_ui_base_url'?: string; /** * The custom hostname where the API will be exposed. * @type {string} * @memberof CreateCustomDomainBody */ 'hostname'?: string; } /** * Create Event Stream Request Body * @export * @interface CreateEventStreamBody */ export interface CreateEventStreamBody { /** * The AWS IAM role ARN to assume when publishing to the SNS topic. * @type {string} * @memberof CreateEventStreamBody */ 'role_arn': string; /** * The AWS SNS topic ARN. * @type {string} * @memberof CreateEventStreamBody */ 'topic_arn': string; /** * The type of the event stream (AWS SNS, GCP Pub/Sub, etc). * @type {string} * @memberof CreateEventStreamBody */ 'type': CreateEventStreamBodyTypeEnum; } export const CreateEventStreamBodyTypeEnum = { Sns: 'sns', UnknownDefaultOpenApi: '11184809' } as const; export type CreateEventStreamBodyTypeEnum = typeof CreateEventStreamBodyTypeEnum[keyof typeof CreateEventStreamBodyTypeEnum]; /** * Contains a list of all available FedCM providers. * @export * @interface CreateFedcmFlowResponse */ export interface CreateFedcmFlowResponse { /** * * @type {string} * @memberof CreateFedcmFlowResponse */ 'csrf_token'?: string; /** * * @type {Array} * @memberof CreateFedcmFlowResponse */ 'providers'?: Array; } /** * Create Identity Body * @export * @interface CreateIdentityBody */ export interface CreateIdentityBody { /** * * @type {IdentityWithCredentials} * @memberof CreateIdentityBody */ 'credentials'?: IdentityWithCredentials; /** * Store metadata about the user which is only accessible through admin APIs such as `GET /admin/identities/`. * @type {any} * @memberof CreateIdentityBody */ 'metadata_admin'?: any; /** * Store metadata about the identity which the identity itself can see when calling for example the session endpoint. Do not store sensitive information (e.g. credit score) about the identity in this field. * @type {any} * @memberof CreateIdentityBody */ 'metadata_public'?: any; /** * * @type {string} * @memberof CreateIdentityBody */ 'organization_id'?: string | null; /** * RecoveryAddresses contains all the addresses that can be used to recover an identity. Use this structure to import recovery addresses for an identity. Please keep in mind that the address needs to be represented in the Identity Schema or this field will be overwritten on the next identity update. * @type {Array} * @memberof CreateIdentityBody */ 'recovery_addresses'?: Array; /** * SchemaID is the ID of the JSON Schema to be used for validating the identity\'s traits. * @type {string} * @memberof CreateIdentityBody */ 'schema_id': string; /** * State is the identity\'s state. active StateActive inactive StateInactive * @type {string} * @memberof CreateIdentityBody */ 'state'?: CreateIdentityBodyStateEnum; /** * Traits represent an identity\'s traits. The identity is able to create, modify, and delete traits in a self-service manner. The input will always be validated against the JSON Schema defined in `schema_url`. * @type {object} * @memberof CreateIdentityBody */ 'traits': object; /** * VerifiableAddresses contains all the addresses that can be verified by the user. Use this structure to import verified addresses for an identity. Please keep in mind that the address needs to be represented in the Identity Schema or this field will be overwritten on the next identity update. * @type {Array} * @memberof CreateIdentityBody */ 'verifiable_addresses'?: Array; } export const CreateIdentityBodyStateEnum = { Active: 'active', Inactive: 'inactive', UnknownDefaultOpenApi: '11184809' } as const; export type CreateIdentityBodyStateEnum = typeof CreateIdentityBodyStateEnum[keyof typeof CreateIdentityBodyStateEnum]; /** * * @export * @interface CreateInviteResponse */ export interface CreateInviteResponse { /** * A list of all invites for this resource * @type {Array} * @memberof CreateInviteResponse */ 'all_invites': Array; /** * * @type {MemberInvite} * @memberof CreateInviteResponse */ 'created_invite': MemberInvite; } /** * Create JSON Web Key Set Request Body * @export * @interface CreateJsonWebKeySet */ export interface CreateJsonWebKeySet { /** * JSON Web Key Algorithm The algorithm to be used for creating the key. Supports `RS256`, `ES256`, `ES512`, `HS512`, and `HS256`. * @type {string} * @memberof CreateJsonWebKeySet */ 'alg': string; /** * JSON Web Key ID The Key ID of the key to be created. * @type {string} * @memberof CreateJsonWebKeySet */ 'kid': string; /** * JSON Web Key Use The \"use\" (public key use) parameter identifies the intended use of the public key. The \"use\" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Valid values are \"enc\" and \"sig\". * @type {string} * @memberof CreateJsonWebKeySet */ 'use': string; } /** * * @export * @interface CreateProjectApiKeyRequest */ export interface CreateProjectApiKeyRequest { /** * * @type {string} * @memberof CreateProjectApiKeyRequest */ 'expires_at'?: string; /** * The Token Name A descriptive name for the token. in: body * @type {string} * @memberof CreateProjectApiKeyRequest */ 'name': string; } /** * Create Project Request Body * @export * @interface CreateProjectBody */ export interface CreateProjectBody { /** * The environment of the project. prod Production stage Staging dev Development * @type {string} * @memberof CreateProjectBody */ 'environment': CreateProjectBodyEnvironmentEnum; /** * Home Region The home region of the project. This is the region where the project will be created. eu-central EUCentral asia-northeast AsiaNorthEast us-east USEast us-west USWest us US global Global * @type {string} * @memberof CreateProjectBody */ 'home_region'?: CreateProjectBodyHomeRegionEnum; /** * The name of the project to be created * @type {string} * @memberof CreateProjectBody */ 'name': string; /** * The workspace to create the project in. * @type {string} * @memberof CreateProjectBody */ 'workspace_id'?: string; } export const CreateProjectBodyEnvironmentEnum = { Prod: 'prod', Stage: 'stage', Dev: 'dev', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectBodyEnvironmentEnum = typeof CreateProjectBodyEnvironmentEnum[keyof typeof CreateProjectBodyEnvironmentEnum]; export const CreateProjectBodyHomeRegionEnum = { EuCentral: 'eu-central', AsiaNortheast: 'asia-northeast', UsEast: 'us-east', UsWest: 'us-west', Us: 'us', Global: 'global', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectBodyHomeRegionEnum = typeof CreateProjectBodyHomeRegionEnum[keyof typeof CreateProjectBodyHomeRegionEnum]; /** * Create a Project Branding * @export * @interface CreateProjectBranding */ export interface CreateProjectBranding { /** * * @type {string} * @memberof CreateProjectBranding */ 'favicon_type'?: string; /** * * @type {string} * @memberof CreateProjectBranding */ 'favicon_url'?: string; /** * * @type {string} * @memberof CreateProjectBranding */ 'logo_type'?: string; /** * * @type {string} * @memberof CreateProjectBranding */ 'logo_url'?: string; /** * * @type {string} * @memberof CreateProjectBranding */ 'name'?: string; /** * * @type {ProjectBrandingColors} * @memberof CreateProjectBranding */ 'theme'?: ProjectBrandingColors; } /** * Create Project MemberInvite Request Body * @export * @interface CreateProjectMemberInviteBody */ export interface CreateProjectMemberInviteBody { /** * A email to invite * @type {string} * @memberof CreateProjectMemberInviteBody */ 'invitee_email'?: string; } /** * Create project (normalized) request payload * @export * @interface CreateProjectNormalizedPayload */ export interface CreateProjectNormalizedPayload { /** * Holds the URL to the account experience\'s dark theme favicon (currently unused). * @type {string} * @memberof CreateProjectNormalizedPayload */ 'account_experience_favicon_dark'?: string; /** * Holds the URL to the account experience\'s favicon. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'account_experience_favicon_light'?: string; /** * Holds the URL to the account experience\'s dark theme logo (currently unused). * @type {string} * @memberof CreateProjectNormalizedPayload */ 'account_experience_logo_dark'?: string; /** * Holds the URL to the account experience\'s logo. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'account_experience_logo_light'?: string; /** * Holds the URL to the account experience\'s dark theme variables. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'account_experience_theme_variables_dark'?: string; /** * Holds the URL to the account experience\'s light theme variables. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'account_experience_theme_variables_light'?: string; /** * The Project\'s Revision Creation Date * @type {string} * @memberof CreateProjectNormalizedPayload */ 'created_at'?: string; /** * Whether to disable the account experience welcome screen, which is hosted under `/ui/welcome`. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'disable_account_experience_welcome_screen'?: boolean; /** * Whether the new account experience is enabled and reachable. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'enable_ax_v2'?: boolean; /** * prod Production stage Staging dev Development * @type {string} * @memberof CreateProjectNormalizedPayload */ 'environment': CreateProjectNormalizedPayloadEnvironmentEnum; /** * eu-central EUCentral asia-northeast AsiaNorthEast us-east USEast us-west USWest us US global Global * @type {string} * @memberof CreateProjectNormalizedPayload */ 'home_region'?: CreateProjectNormalizedPayloadHomeRegionEnum; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_allowed_top_level_claims'?: Array; /** * Automatically grant authorized OAuth2 Scope in OAuth2 Client Credentials Flow. Each OAuth2 Client is allowed to request a predefined OAuth2 Scope (for example `read write`). If this option is enabled, the full scope is automatically granted when performing the OAuth2 Client Credentials flow. If disabled, the OAuth2 Client has to request the scope in the OAuth2 request by providing the `scope` query parameter. Setting this option to true is common if you need compatibility with MITREid. This governs the \"oauth2.client_credentials.default_grant_allowed_scope\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_client_credentials_default_grant_allowed_scope'?: boolean; /** * Set to true if you want to exclude claim `nbf (not before)` part of access token. This governs the \"oauth2.exclude_not_before_claim\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_exclude_not_before_claim'?: boolean; /** * Configures if the issued at (`iat`) claim is required in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523). If set to `false`, the `iat` claim is required. Set this value to `true` only after careful consideration. This governs the \"oauth2.grant.jwt.iat_optional\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_grant_jwt_iat_optional'?: boolean; /** * Configures if the JSON Web Token ID (`jti`) claim is required in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523). If set to `false`, the `jti` claim is required. Set this value to `true` only after careful consideration. This governs the \"oauth2.grant.jwt.jti_optional\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_grant_jwt_jti_optional'?: boolean; /** * Configures what the maximum age of a JWT assertion used in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523) can be. This feature uses the `exp` claim and `iat` claim to calculate assertion age. Assertions exceeding the max age will be denied. Useful as a safety measure and recommended to keep below 720h. This governs the \"oauth2.grant.jwt.max_ttl\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_grant_jwt_max_ttl'?: string; /** * Configures the OAuth2 Grant Refresh Token Rotation Grace Period If set to `null` or `\"0s\"`, the graceful refresh token rotation is disabled. This governs the \"oauth2.grant.refresh_token_rotation_grace_period\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_grant_refresh_token_rotation_grace_period'?: string; /** * Set to false if you don\'t want to mirror custom claims under \'ext\'. This governs the \"oauth2.mirror_top_level_claims\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_mirror_top_level_claims'?: boolean; /** * Configures whether PKCE should be enforced for all OAuth2 Clients. This governs the \"oauth2.pkce.enforced\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_pkce_enforced'?: boolean; /** * Configures whether PKCE should be enforced for OAuth2 Clients without a client secret (public clients). This governs the \"oauth2.pkce.enforced_for_public_clients\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_pkce_enforced_for_public_clients'?: boolean; /** * Sets the Refresh Token Hook Endpoint. If set this endpoint will be called during the OAuth2 Token Refresh grant update the OAuth2 Access Token claims. This governs the \"oauth2.refresh_token_hook\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_refresh_token_hook'?: string; /** * Sets the token hook endpoint for all grant types. If set it will be called while providing token to customize claims. This governs the \"oauth2.token_hook.url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_oauth2_token_hook'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_oidc_dynamic_client_registration_default_scope'?: Array; /** * Configures OpenID Connect Dynamic Client Registration. This governs the \"oidc.dynamic_client_registration.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_oidc_dynamic_client_registration_enabled'?: boolean; /** * Configures OpenID Connect Discovery and overwrites the pairwise algorithm This governs the \"oidc.subject_identifiers.pairwise_salt\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_oidc_subject_identifiers_pairwise_salt'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_oidc_subject_identifiers_supported_types'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_secrets_cookie'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_secrets_system'?: Array; /** * Configures the Ory Hydra Cookie Same Site Legacy Workaround This governs the \"serve.cookies.same_site_legacy_workaround\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'hydra_serve_cookies_same_site_legacy_workaround'?: boolean; /** * Configures the Ory Hydra Cookie Same Site Mode This governs the \"serve.cookies.same_site_mode\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_serve_cookies_same_site_mode'?: string; /** * Defines access token type This governs the \"strategies.access_token\" setting. opaque Oauth2AccessTokenStrategyOpaque jwt Oauth2AccessTokenStrategyJwt * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_strategies_access_token'?: CreateProjectNormalizedPayloadHydraStrategiesAccessTokenEnum; /** * Define the claim to use as the scope in the access token. This governs the \"strategies.jwt.scope_claim\" setting: list: The scope claim is an array of strings named `scope`: `{ \"scope\": [\"read\", \"write\"] }` string: The scope claim is a space delimited list of strings named `scp`: `{ \"scp\": \"read write\" }` both: The scope claim is both a space delimited list and an array of strings named `scope` and `scp`: `{ \"scope\": [\"read\", \"write\"], \"scp\": \"read write\" }` list OAuth2JWTScopeClaimList string OAuth2JWTScopeClaimString both OAuth2JWTScopeClaimBoth * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_strategies_jwt_scope_claim'?: CreateProjectNormalizedPayloadHydraStrategiesJwtScopeClaimEnum; /** * Defines how scopes are matched. For more details have a look at https://github.com/ory/fosite#scopes This governs the \"strategies.scope\" setting. exact Oauth2ScopeStrategyExact wildcard Oauth2ScopeStrategyWildcard * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_strategies_scope'?: CreateProjectNormalizedPayloadHydraStrategiesScopeEnum; /** * This governs the \"ttl.access_token\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_ttl_access_token'?: string; /** * Configures how long refresh tokens are valid. Set to -1 for refresh tokens to never expire. This is not recommended! This governs the \"ttl.auth_code\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_ttl_auth_code'?: string; /** * This governs the \"ttl.id_token\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_ttl_id_token'?: string; /** * Configures how long a user login and consent flow may take. This governs the \"ttl.login_consent_request\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_ttl_login_consent_request'?: string; /** * Configures how long refresh tokens are valid. Set to -1 for refresh tokens to never expire. This is not recommended! This governs the \"ttl.refresh_token\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_ttl_refresh_token'?: string; /** * Sets the OAuth2 Consent Endpoint URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.consent\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_consent'?: string; /** * Sets the OAuth2 Error URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.error\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_error'?: string; /** * Sets the OAuth2 Login Endpoint URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.login\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_login'?: string; /** * Sets the logout endpoint. Defaults to the Ory Account Experience if left empty. This governs the \"urls.logout\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_logout'?: string; /** * When an OAuth2-related user agent requests to log out, they will be redirected to this url afterwards per default. Defaults to the Ory Account Experience in development and your application in production mode when a custom domain is connected. This governs the \"urls.post_logout_redirect\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_post_logout_redirect'?: string; /** * Sets the OAuth2 Registration Endpoint URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.registration\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_registration'?: string; /** * This value will be used as the issuer in access and ID tokens. It must be specified and using HTTPS protocol, unless the development mode is enabled. On the Ory Network it will be very rare that you want to modify this value. If left empty, it will default to the correct value for the Ory Network. This governs the \"urls.self.issuer\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_urls_self_issuer'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_jwks_broadcast_keys'?: Array; /** * Configures OpenID Connect Discovery and overwrites the OAuth2 Authorization URL. This governs the \"webfinger.oidc.discovery.auth_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_auth_url'?: string; /** * Configures OpenID Connect Discovery and overwrites the OpenID Connect Dynamic Client Registration Endpoint. This governs the \"webfinger.oidc.discovery.client_registration_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_client_registration_url'?: string; /** * Configures OpenID Connect Discovery and overwrites the JWKS URL. This governs the \"webfinger.oidc.discovery.jwks_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_jwks_url'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_supported_claims'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_supported_scope'?: Array; /** * Configures OpenID Connect Discovery and overwrites the OAuth2 Token URL. This governs the \"webfinger.oidc.discovery.token_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_token_url'?: string; /** * Configures OpenID Connect Discovery and overwrites userinfo endpoint to be advertised at the OpenID Connect Discovery endpoint /.well-known/openid-configuration. Defaults to Ory Hydra\'s userinfo endpoint at /userinfo. Set this value if you want to handle this endpoint yourself. This governs the \"webfinger.oidc.discovery.userinfo_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'hydra_webfinger_oidc_discovery_userinfo_url'?: string; /** * The revision ID. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'id'?: string; /** * The Revisions\' Keto Namespace Configuration The string is a URL pointing to an OPL file with the configuration. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'keto_namespace_configuration'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'keto_namespaces'?: Array; /** * Configures the Ory Kratos Cookie SameSite Attribute This governs the \"cookies.same_site\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_cookies_same_site'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_channels'?: Array; /** * The delivery strategy to use when sending emails `smtp`: Use SMTP server `http`: Use the built in HTTP client to send the email to some remote service * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_delivery_strategy'?: string; /** * The location of the API key to use in the HTTP email sending service\'s authentication `header`: Send the key value pair as a header `cookie`: Send the key value pair as a cookie This governs the \"courier.http.auth.config.in\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_auth_api_key_in'?: string; /** * The name of the API key to use in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.name\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_auth_api_key_name'?: string; /** * The value of the API key to use in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.value\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_auth_api_key_value'?: string; /** * The password to use for basic auth in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.password\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_auth_basic_auth_password'?: string; /** * The user to use for basic auth in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.user\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_auth_basic_auth_user'?: string; /** * The authentication type to use while contacting the remote HTTP email sending service `basic_auth`: Use Basic Authentication `api_key`: Use API Key Authentication in a header or cookie * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_auth_type'?: string; /** * The Jsonnet template to generate the body to send to the remote HTTP email sending service Should be valid Jsonnet and base64 encoded This governs the \"courier.http.body\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_body'?: string; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_headers'?: object | null; /** * The http METHOD to use when calling the remote HTTP email sending service * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_method'?: string; /** * The URL of the remote HTTP email sending service This governs the \"courier.http.url\" setting * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_http_request_config_url'?: string; /** * Configures the Ory Kratos SMTP Connection URI This governs the \"courier.smtp.connection_uri\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_smtp_connection_uri'?: string; /** * Configures the Ory Kratos SMTP From Address This governs the \"courier.smtp.from_address\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_smtp_from_address'?: string; /** * Configures the Ory Kratos SMTP From Name This governs the \"courier.smtp.from_name\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_smtp_from_name'?: string; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_smtp_headers'?: object | null; /** * Configures the local_name to use in SMTP connections This governs the \"courier.smtp.local_name\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_smtp_local_name'?: string; /** * Configures the Ory Kratos Valid Login via Code Email Body HTML Template This governs the \"courier.smtp.templates.login_code.valid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_login_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Login via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.login_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_login_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Login via Code Email Subject Template This governs the \"courier.smtp.templates.login_code.valid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_login_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Login via Code SMS plain text body This governs the \"courier.smtp.templates.login_code.valid.sms.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_login_code_valid_sms_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Recovery via Code Email Body HTML Template This governs the \"courier.smtp.templates.recovery_code.invalid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_code_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Recovery via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery_code.invalid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_code_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Recovery via Code Email Subject Template This governs the \"courier.smtp.templates.recovery_code.invalid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_code_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Recovery via Code Email Body HTML Template This governs the \"courier.smtp.templates.recovery_code.valid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Recovery via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Recovery via Code Email Subject Template This governs the \"courier.smtp.templates.recovery_code.valid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Invalid Recovery Email Body HTML Template This governs the \"courier.smtp.templates.recovery.invalid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Recovery Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery.invalid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Recovery Email Subject Template This governs the \"courier.smtp.templates.recovery.invalid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Recovery Email Body HTML Template This governs the \"courier.smtp.templates.recovery.valid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Recovery Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery.valid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Recovery Email Subject Template This governs the \"courier.smtp.templates.recovery.valid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_recovery_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Body HTML Template This governs the \"courier.smtp.templates.registration_code.valid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_registration_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.registration_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_registration_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Subject Template This governs the \"courier.smtp.templates.registration_code.valid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_registration_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Subject Template This governs the \"courier.smtp.templates.registration_code.valid.sms.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_registration_code_valid_sms_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification via Code Email Body HTML Template This governs the \"courier.smtp.templates.verification_code.invalid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Verification via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.verification_code.invalid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification via Code Email Subject Template This governs the \"courier.smtp.templates.verification_code.invalid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Verification via Code Email Body HTML Template This governs the \"courier.smtp.templates.verification_code.valid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Verification via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.verification_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Verification via Code Email Subject Template This governs the \"courier.smtp.templates.verification_code.valid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Verification via Code SMS Body Plaintext This governs the \"courier.smtp.templates.verification_code.valid.sms.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_code_valid_sms_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification Email Body HTML Template This governs the \"courier.smtp.templates.verification.invalid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Verification Email Body Plaintext Template This governs the \"courier.smtp.templates.verification.invalid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification Email Subject Template This governs the \"courier.smtp.templates.verification.invalid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Verification Email Body HTML Template This governs the \"courier.smtp.templates.verification.valid.email.body.html\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Verification Email Body Plaintext Template This governs the \"courier.smtp.templates.verification.valid.email.body.plaintext\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Verification Email Subject Template This governs the \"courier.smtp.templates.verification.valid.email.subject\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_courier_templates_verification_valid_email_subject'?: string; /** * Configures the Ory Kratos Session caching feature flag This governs the \"feature_flags.cacheable_sessions\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_feature_flags_cacheable_sessions'?: boolean; /** * Configures the Ory Kratos Session caching max-age feature flag This governs the \"feature_flags.cacheable_sessions_max_age\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_feature_flags_cacheable_sessions_max_age'?: string; /** * Configures the Ory Kratos Faster Session Extend setting If enabled allows faster session extension by skipping the session lookup and returning 201 instead of 200. Disabling this feature will be deprecated in the future. This governs the \"feature_flags.faster_session_extend\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_feature_flags_faster_session_extend'?: boolean; /** * Configures the Ory Kratos Session use_continue_with_transitions flag This governs the \"feature_flags.use_continue_with_transitions\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_feature_flags_use_continue_with_transitions'?: boolean; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_identity_schemas'?: Array; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof CreateProjectNormalizedPayload */ 'kratos_oauth2_provider_headers'?: object | null; /** * Kratos OAuth2 Provider Override Return To Enabling this allows Kratos to set the return_to parameter automatically to the OAuth2 request URL on the login flow, allowing complex flows such as recovery to continue to the initial OAuth2 flow. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_oauth2_provider_override_return_to'?: boolean; /** * The Revisions\' OAuth2 Provider Integration URL This governs the \"oauth2_provider.url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_oauth2_provider_url'?: string; /** * Configures the default read consistency level for identity APIs This governs the `preview.default_read_consistency_level` setting. The read consistency level determines the consistency guarantee for reads: strong (slow): The read is guaranteed to return the most recent data committed at the start of the read. eventual (very fast): The result will return data that is about 4.8 seconds old. Setting the default consistency level to `eventual` may cause regressions in the future as we add consistency controls to more APIs. Currently, the following APIs will be affected by this setting: `GET /admin/identities` Defaults to \"strong\" for new and existing projects. This feature is in preview. Use with caution. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_preview_default_read_consistency_level'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_secrets_cipher'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_secrets_cookie'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_secrets_default'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_allowed_return_urls'?: Array; /** * Configures the Ory Kratos Default Return URL This governs the \"selfservice.allowed_return_urls\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_default_browser_return_url'?: string; /** * Configures the Ory Kratos Error UI URL This governs the \"selfservice.flows.error.ui_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_error_ui_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.code.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_code_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login Default Return URL This governs the \"selfservice.flows.login.after.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.lookup_secret.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_lookup_secret_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After OIDC Default Return URL This governs the \"selfservice.flows.login.after.oidc.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_oidc_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Passkey Default Return URL This governs the \"selfservice.flows.login.after.passkey.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_passkey_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.login.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_password_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.totp.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_totp_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After WebAuthn Default Return URL This governs the \"selfservice.flows.login.after.webauthn.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_after_webauthn_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login Lifespan This governs the \"selfservice.flows.login.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_lifespan'?: string; /** * Configures the Ory Kratos Login UI URL This governs the \"selfservice.flows.login.ui_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_login_ui_url'?: string; /** * Configures the Ory Kratos Logout Default Return URL This governs the \"selfservice.flows.logout.after.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_logout_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Recovery Default Return URL This governs the \"selfservice.flows.recovery.after.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_recovery_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Recovery Enabled Setting This governs the \"selfservice.flows.recovery.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_recovery_enabled'?: boolean; /** * Configures the Ory Kratos Recovery Lifespan This governs the \"selfservice.flows.recovery.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_recovery_lifespan'?: string; /** * Configures whether to notify unknown recipients of a Ory Kratos recovery flow This governs the \"selfservice.flows.recovery.notify_unknown_recipients\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_recovery_notify_unknown_recipients'?: boolean; /** * Configures the Ory Kratos Recovery UI URL This governs the \"selfservice.flows.recovery.ui_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_recovery_ui_url'?: string; /** * Configures the Ory Kratos Recovery strategy to use (\"link\" or \"code\") This governs the \"selfservice.flows.recovery.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_recovery_use'?: CreateProjectNormalizedPayloadKratosSelfserviceFlowsRecoveryUseEnum; /** * Configures the Ory Kratos Registration After Code Default Return URL This governs the \"selfservice.flows.registration.after.code.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_after_code_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration Default Return URL This governs the \"selfservice.flows.registration.after.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After OIDC Default Return URL This governs the \"selfservice.flows.registration.after.oidc.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_after_oidc_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After Passkey Default Return URL This governs the \"selfservice.flows.registration.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_after_passkey_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After Password Default Return URL This governs the \"selfservice.flows.registration.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_after_password_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After Webauthn Default Return URL This governs the \"selfservice.flows.registration.after.webauthn.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_after_webauthn_default_browser_return_url'?: string; /** * Disable two-step registration Two-step registration is a significantly improved sign up flow and recommended when using more than one sign up methods. To revert to one-step registration, set this to `true`. This governs the \"selfservice.flows.registration.enable_legacy_one_step\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_enable_legacy_one_step'?: boolean; /** * Configures the Whether Ory Kratos Registration is Enabled This governs the \"selfservice.flows.registration.enabled\" setting.0 * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_enabled'?: boolean; /** * Configures the Ory Kratos Registration Lifespan This governs the \"selfservice.flows.registration.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_lifespan'?: string; /** * Configures the Ory Kratos Registration Login Hints Shows helpful information when a user tries to sign up with a duplicate account. This governs the \"selfservice.flows.registration.login_hints\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_login_hints'?: boolean; /** * Configures the Ory Kratos Registration UI URL This governs the \"selfservice.flows.registration.ui_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_registration_ui_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL This governs the \"selfservice.flows.settings.after.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Lookup Secrets This governs the \"selfservice.flows.settings.after.lookup_secret.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_lookup_secret_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Social Sign In This governs the \"selfservice.flows.settings.after.oidc.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_oidc_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Passkey This governs the \"selfservice.flows.settings.after.passkey.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_passkey_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Passwords This governs the \"selfservice.flows.settings.after.password.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_password_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Profiles This governs the \"selfservice.flows.settings.after.profile.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_profile_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating TOTP This governs the \"selfservice.flows.settings.after.totp.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_totp_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating WebAuthn This governs the \"selfservice.flows.settings.after.webauthn.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_after_webauthn_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Lifespan This governs the \"selfservice.flows.settings.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_lifespan'?: string; /** * Configures the Ory Kratos Settings Privileged Session Max Age This governs the \"selfservice.flows.settings.privileged_session_max_age\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_privileged_session_max_age'?: string; /** * Configures the Ory Kratos Settings Required AAL This governs the \"selfservice.flows.settings.required_aal\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_required_aal'?: string; /** * Configures the Ory Kratos Settings UI URL This governs the \"selfservice.flows.settings.ui_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_settings_ui_url'?: string; /** * Configures the Ory Kratos Verification Default Return URL This governs the \"selfservice.flows.verification.after.default_browser_return_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_verification_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Verification Enabled Setting This governs the \"selfservice.flows.verification.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_verification_enabled'?: boolean; /** * Configures the Ory Kratos Verification Lifespan This governs the \"selfservice.flows.verification.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_verification_lifespan'?: string; /** * Configures whether to notify unknown recipients of a Ory Kratos verification flow This governs the \"selfservice.flows.verification.notify_unknown_recipients\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_verification_notify_unknown_recipients'?: boolean; /** * Configures the Ory Kratos Verification UI URL This governs the \"selfservice.flows.verification.ui_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_verification_ui_url'?: string; /** * Configures the Ory Kratos Strategy to use for Verification This governs the \"selfservice.flows.verification.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_flows_verification_use'?: CreateProjectNormalizedPayloadKratosSelfserviceFlowsVerificationUseEnum; /** * Configures the Cloudflare Turnstile site secret for CAPTCHA protection The site secret is private and will be never be shared with the client. This key is write only and the value will not be returned in response to a read request. Reach out to your account manager to enable this feature. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_captcha_config_cf_turnstile_secret'?: string; /** * Configures the Cloudflare Turnstile site key for CAPTCHA protection The site key is public and will be shared with the client. Reach out to your account manager to enable this feature. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey'?: string; /** * Configures the Ory Kratos Self-Service Methods\' Captcha Enabled Setting Reach out to your account manager to enable this feature. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_captcha_enabled'?: boolean; /** * Configures the Ory Kratos Code Method\'s lifespan This governs the \"selfservice.methods.code.config.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_code_config_lifespan'?: string; /** * Enables a fallback method required in certain legacy use cases. This governs the \"selfservice.methods.code.config.missing_credential_fallback_enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_code_config_missing_credential_fallback_enabled'?: boolean; /** * Configures whether Ory Kratos Code Method is enabled This governs the \"selfservice.methods.code.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_code_enabled'?: boolean; /** * Configures whether the code method can be used to fulfil MFA flows This governs the \"selfservice.methods.code.mfa_enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_code_mfa_enabled'?: boolean; /** * Configures whether Ory Kratos Passwordless should use the Code Method This governs the \"selfservice.methods.code.passwordless_enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_code_passwordless_enabled'?: boolean; /** * This setting allows the code method to always login a user with code if they have registered with another authentication method such as password or social sign in. This governs the \"selfservice.methods.code.passwordless_login_fallback_enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_code_passwordless_login_fallback_enabled'?: boolean; /** * Configures the Base URL which Recovery, Verification, and Login Links Point to It is recommended to leave this value empty. It will be appropriately configured to the best matching domain (e.g. when using custom domains) automatically. This governs the \"selfservice.methods.link.config.base_url\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_link_config_base_url'?: string; /** * Configures the Ory Kratos Link Method\'s lifespan This governs the \"selfservice.methods.link.config.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_link_config_lifespan'?: string; /** * Configures whether Ory Kratos Link Method is enabled This governs the \"selfservice.methods.link.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_link_enabled'?: boolean; /** * Configures whether Ory Kratos TOTP Lookup Secret is enabled This governs the \"selfservice.methods.lookup_secret.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_lookup_secret_enabled'?: boolean; /** * Configures the Ory Kratos Third Party / OpenID Connect base redirect URI This governs the \"selfservice.methods.oidc.config.base_redirect_uri\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_oidc_config_base_redirect_uri'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_oidc_config_providers'?: Array; /** * Configures whether Ory Kratos allows auto-linking of OIDC credentials without a subject This governs the \"selfservice.methods.oidc.enable_auto_link_policy\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_oidc_enable_auto_link_policy'?: boolean; /** * Configures whether Ory Kratos Third Party / OpenID Connect Login is enabled This governs the \"selfservice.methods.oidc.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_oidc_enabled'?: boolean; /** * Configures the Ory Kratos Passkey RP Display Name This governs the \"selfservice.methods.passkey.config.rp.display_name\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_passkey_config_rp_display_name'?: string; /** * Configures the Ory Kratos Passkey RP ID This governs the \"selfservice.methods.passkey.config.rp.id\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_passkey_config_rp_id'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_passkey_config_rp_origins'?: Array; /** * Configures whether Ory Kratos Passkey authentication is enabled This governs the \"selfservice.methods.passkey.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_passkey_enabled'?: boolean; /** * Configures whether Ory Kratos Password HIBP Checks is enabled This governs the \"selfservice.methods.password.config.haveibeenpwned_enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_password_config_haveibeenpwned_enabled'?: boolean; /** * Configures whether Ory Kratos Password should disable the similarity policy. This governs the \"selfservice.methods.password.config.identifier_similarity_check_enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_password_config_identifier_similarity_check_enabled'?: boolean; /** * Configures whether Ory Kratos Password Should ignore HIBPWND Network Errors This governs the \"selfservice.methods.password.config.ignore_network_errors\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_password_config_ignore_network_errors'?: boolean; /** * Configures Ory Kratos Password Max Breaches Detection This governs the \"selfservice.methods.password.config.max_breaches\" setting. * @type {number} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_password_config_max_breaches'?: number; /** * Configures the minimum length of passwords. This governs the \"selfservice.methods.password.config.min_password_length\" setting. * @type {number} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_password_config_min_password_length'?: number; /** * Configures whether Ory Kratos Password Method is enabled This governs the \"selfservice.methods.password.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_password_enabled'?: boolean; /** * Configures whether Ory Kratos Profile Method is enabled This governs the \"selfservice.methods.profile.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_profile_enabled'?: boolean; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_saml_config_providers'?: Array; /** * Configures whether Ory Kratos SAML Login is enabled This governs the \"selfservice.methods.saml.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_saml_enabled'?: boolean; /** * Configures Ory Kratos TOTP Issuer This governs the \"selfservice.methods.totp.config.issuer\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_totp_config_issuer'?: string; /** * Configures whether Ory Kratos TOTP Method is enabled This governs the \"selfservice.methods.totp.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_totp_enabled'?: boolean; /** * Configures whether Ory Kratos Webauthn is used for passwordless flows This governs the \"selfservice.methods.webauthn.config.passwordless\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_webauthn_config_passwordless'?: boolean; /** * Configures the Ory Kratos Webauthn RP Display Name This governs the \"selfservice.methods.webauthn.config.rp.display_name\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_webauthn_config_rp_display_name'?: string; /** * Configures the Ory Kratos Webauthn RP Icon This governs the \"selfservice.methods.webauthn.config.rp.icon\" setting. Deprecated: This value will be ignored due to security considerations. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_webauthn_config_rp_icon'?: string; /** * Configures the Ory Kratos Webauthn RP ID This governs the \"selfservice.methods.webauthn.config.rp.id\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_webauthn_config_rp_id'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_webauthn_config_rp_origins'?: Array; /** * Configures whether Ory Kratos Webauthn is enabled This governs the \"selfservice.methods.webauthn.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_selfservice_methods_webauthn_enabled'?: boolean; /** * Configures the Ory Kratos Session Cookie Persistent Attribute This governs the \"session.cookie.persistent\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'kratos_session_cookie_persistent'?: boolean; /** * Configures the Ory Kratos Session Cookie SameSite Attribute This governs the \"session.cookie.same_site\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_session_cookie_same_site'?: string; /** * Configures the Ory Kratos Session Lifespan This governs the \"session.lifespan\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_session_lifespan'?: string; /** * Configures the Ory Kratos Session Whoami AAL requirement This governs the \"session.whoami.required_aal\" setting. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'kratos_session_whoami_required_aal'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'kratos_session_whoami_tokenizer_templates'?: Array; /** * The project\'s name. * @type {string} * @memberof CreateProjectNormalizedPayload */ 'name': string; /** * The Revision\'s Project ID * @type {string} * @memberof CreateProjectNormalizedPayload */ 'project_id'?: string; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'project_revision_hooks'?: Array; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'serve_admin_cors_allowed_origins'?: Array; /** * Enable CORS headers on all admin APIs This governs the \"serve.admin.cors.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'serve_admin_cors_enabled'?: boolean; /** * * @type {Array} * @memberof CreateProjectNormalizedPayload */ 'serve_public_cors_allowed_origins'?: Array; /** * Enable CORS headers on all public APIs This governs the \"serve.public.cors.enabled\" setting. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'serve_public_cors_enabled'?: boolean; /** * Whether the project should employ strict security measures. Setting this to true is recommended for going into production. * @type {boolean} * @memberof CreateProjectNormalizedPayload */ 'strict_security'?: boolean; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof CreateProjectNormalizedPayload */ 'updated_at'?: string; /** * * @type {string} * @memberof CreateProjectNormalizedPayload */ 'workspace_id'?: string; } export const CreateProjectNormalizedPayloadEnvironmentEnum = { Prod: 'prod', Stage: 'stage', Dev: 'dev', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadEnvironmentEnum = typeof CreateProjectNormalizedPayloadEnvironmentEnum[keyof typeof CreateProjectNormalizedPayloadEnvironmentEnum]; export const CreateProjectNormalizedPayloadHomeRegionEnum = { EuCentral: 'eu-central', AsiaNortheast: 'asia-northeast', UsEast: 'us-east', UsWest: 'us-west', Us: 'us', Global: 'global', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadHomeRegionEnum = typeof CreateProjectNormalizedPayloadHomeRegionEnum[keyof typeof CreateProjectNormalizedPayloadHomeRegionEnum]; export const CreateProjectNormalizedPayloadHydraStrategiesAccessTokenEnum = { Opaque: 'opaque', Jwt: 'jwt', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadHydraStrategiesAccessTokenEnum = typeof CreateProjectNormalizedPayloadHydraStrategiesAccessTokenEnum[keyof typeof CreateProjectNormalizedPayloadHydraStrategiesAccessTokenEnum]; export const CreateProjectNormalizedPayloadHydraStrategiesJwtScopeClaimEnum = { List: 'list', String: 'string', Both: 'both', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadHydraStrategiesJwtScopeClaimEnum = typeof CreateProjectNormalizedPayloadHydraStrategiesJwtScopeClaimEnum[keyof typeof CreateProjectNormalizedPayloadHydraStrategiesJwtScopeClaimEnum]; export const CreateProjectNormalizedPayloadHydraStrategiesScopeEnum = { Exact: 'exact', Wildcard: 'wildcard', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadHydraStrategiesScopeEnum = typeof CreateProjectNormalizedPayloadHydraStrategiesScopeEnum[keyof typeof CreateProjectNormalizedPayloadHydraStrategiesScopeEnum]; export const CreateProjectNormalizedPayloadKratosSelfserviceFlowsRecoveryUseEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadKratosSelfserviceFlowsRecoveryUseEnum = typeof CreateProjectNormalizedPayloadKratosSelfserviceFlowsRecoveryUseEnum[keyof typeof CreateProjectNormalizedPayloadKratosSelfserviceFlowsRecoveryUseEnum]; export const CreateProjectNormalizedPayloadKratosSelfserviceFlowsVerificationUseEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type CreateProjectNormalizedPayloadKratosSelfserviceFlowsVerificationUseEnum = typeof CreateProjectNormalizedPayloadKratosSelfserviceFlowsVerificationUseEnum[keyof typeof CreateProjectNormalizedPayloadKratosSelfserviceFlowsVerificationUseEnum]; /** * Create Recovery Code for Identity Request Body * @export * @interface CreateRecoveryCodeForIdentityBody */ export interface CreateRecoveryCodeForIdentityBody { /** * Code Expires In The recovery code will expire after that amount of time has passed. Defaults to the configuration value of `selfservice.methods.code.config.lifespan`. * @type {string} * @memberof CreateRecoveryCodeForIdentityBody */ 'expires_in'?: string; /** * The flow type can either be `api` or `browser`. * @type {string} * @memberof CreateRecoveryCodeForIdentityBody */ 'flow_type'?: string; /** * Identity to Recover The identity\'s ID you wish to recover. * @type {string} * @memberof CreateRecoveryCodeForIdentityBody */ 'identity_id': string; } /** * Create Recovery Link for Identity Request Body * @export * @interface CreateRecoveryLinkForIdentityBody */ export interface CreateRecoveryLinkForIdentityBody { /** * Link Expires In The recovery link will expire after that amount of time has passed. Defaults to the configuration value of `selfservice.methods.code.config.lifespan`. * @type {string} * @memberof CreateRecoveryLinkForIdentityBody */ 'expires_in'?: string; /** * Identity to Recover The identity\'s ID you wish to recover. * @type {string} * @memberof CreateRecoveryLinkForIdentityBody */ 'identity_id': string; } /** * Create Relationship Request Body * @export * @interface CreateRelationshipBody */ export interface CreateRelationshipBody { /** * Namespace to query * @type {string} * @memberof CreateRelationshipBody */ 'namespace'?: string; /** * Object to query * @type {string} * @memberof CreateRelationshipBody */ 'object'?: string; /** * Relation to query * @type {string} * @memberof CreateRelationshipBody */ 'relation'?: string; /** * SubjectID to query Either SubjectSet or SubjectID can be provided. * @type {string} * @memberof CreateRelationshipBody */ 'subject_id'?: string; /** * * @type {SubjectSet} * @memberof CreateRelationshipBody */ 'subject_set'?: SubjectSet; } /** * * @export * @interface CreateSubscriptionBody */ export interface CreateSubscriptionBody { /** * usd USD eur Euro * @type {string} * @memberof CreateSubscriptionBody */ 'currency'?: CreateSubscriptionBodyCurrencyEnum; /** * monthly Monthly yearly Yearly * @type {string} * @memberof CreateSubscriptionBody */ 'interval': CreateSubscriptionBodyIntervalEnum; /** * * @type {string} * @memberof CreateSubscriptionBody */ 'plan': string; /** * * @type {string} * @memberof CreateSubscriptionBody */ 'provision_first_project': string; /** * * @type {string} * @memberof CreateSubscriptionBody */ 'return_to'?: string; } export const CreateSubscriptionBodyCurrencyEnum = { Usd: 'usd', Eur: 'eur', UnknownDefaultOpenApi: '11184809' } as const; export type CreateSubscriptionBodyCurrencyEnum = typeof CreateSubscriptionBodyCurrencyEnum[keyof typeof CreateSubscriptionBodyCurrencyEnum]; export const CreateSubscriptionBodyIntervalEnum = { Monthly: 'monthly', Yearly: 'yearly', UnknownDefaultOpenApi: '11184809' } as const; export type CreateSubscriptionBodyIntervalEnum = typeof CreateSubscriptionBodyIntervalEnum[keyof typeof CreateSubscriptionBodyIntervalEnum]; /** * * @export * @interface CreateSubscriptionCommon */ export interface CreateSubscriptionCommon { /** * usd USD eur Euro * @type {string} * @memberof CreateSubscriptionCommon */ 'currency'?: CreateSubscriptionCommonCurrencyEnum; /** * monthly Monthly yearly Yearly * @type {string} * @memberof CreateSubscriptionCommon */ 'interval': CreateSubscriptionCommonIntervalEnum; /** * * @type {string} * @memberof CreateSubscriptionCommon */ 'plan': string; /** * * @type {string} * @memberof CreateSubscriptionCommon */ 'return_to'?: string; } export const CreateSubscriptionCommonCurrencyEnum = { Usd: 'usd', Eur: 'eur', UnknownDefaultOpenApi: '11184809' } as const; export type CreateSubscriptionCommonCurrencyEnum = typeof CreateSubscriptionCommonCurrencyEnum[keyof typeof CreateSubscriptionCommonCurrencyEnum]; export const CreateSubscriptionCommonIntervalEnum = { Monthly: 'monthly', Yearly: 'yearly', UnknownDefaultOpenApi: '11184809' } as const; export type CreateSubscriptionCommonIntervalEnum = typeof CreateSubscriptionCommonIntervalEnum[keyof typeof CreateSubscriptionCommonIntervalEnum]; /** * * @export * @interface CreateVerifiableCredentialRequestBody */ export interface CreateVerifiableCredentialRequestBody { /** * * @type {string} * @memberof CreateVerifiableCredentialRequestBody */ 'format'?: string; /** * * @type {VerifiableCredentialProof} * @memberof CreateVerifiableCredentialRequestBody */ 'proof'?: VerifiableCredentialProof; /** * * @type {Array} * @memberof CreateVerifiableCredentialRequestBody */ 'types'?: Array; } /** * * @export * @interface CreateWorkspaceApiKeyBody */ export interface CreateWorkspaceApiKeyBody { /** * * @type {string} * @memberof CreateWorkspaceApiKeyBody */ 'expires_at'?: string; /** * The API Key Name A descriptive name for the API key. * @type {string} * @memberof CreateWorkspaceApiKeyBody */ 'name': string; } /** * * @export * @interface CreateWorkspaceBody */ export interface CreateWorkspaceBody { /** * The name of the workspace * @type {string} * @memberof CreateWorkspaceBody */ 'name': string; } /** * Create Workspace Invite Request Body * @export * @interface CreateWorkspaceMemberInviteBody */ export interface CreateWorkspaceMemberInviteBody { /** * A email to invite * @type {string} * @memberof CreateWorkspaceMemberInviteBody */ 'invitee_email': string; /** * The role the user will have in the workspace owner WorkspaceMemberRoleOwner developer WorkspaceMemberRoleDeveloper * @type {string} * @memberof CreateWorkspaceMemberInviteBody */ 'role': CreateWorkspaceMemberInviteBodyRoleEnum; } export const CreateWorkspaceMemberInviteBodyRoleEnum = { Owner: 'owner', Developer: 'developer', UnknownDefaultOpenApi: '11184809' } as const; export type CreateWorkspaceMemberInviteBodyRoleEnum = typeof CreateWorkspaceMemberInviteBodyRoleEnum[keyof typeof CreateWorkspaceMemberInviteBodyRoleEnum]; /** * * @export * @interface CreateWorkspaceSubscriptionBody */ export interface CreateWorkspaceSubscriptionBody { /** * usd USD eur Euro * @type {string} * @memberof CreateWorkspaceSubscriptionBody */ 'currency'?: CreateWorkspaceSubscriptionBodyCurrencyEnum; /** * monthly Monthly yearly Yearly * @type {string} * @memberof CreateWorkspaceSubscriptionBody */ 'interval': CreateWorkspaceSubscriptionBodyIntervalEnum; /** * * @type {string} * @memberof CreateWorkspaceSubscriptionBody */ 'plan': string; /** * * @type {string} * @memberof CreateWorkspaceSubscriptionBody */ 'return_to'?: string; } export const CreateWorkspaceSubscriptionBodyCurrencyEnum = { Usd: 'usd', Eur: 'eur', UnknownDefaultOpenApi: '11184809' } as const; export type CreateWorkspaceSubscriptionBodyCurrencyEnum = typeof CreateWorkspaceSubscriptionBodyCurrencyEnum[keyof typeof CreateWorkspaceSubscriptionBodyCurrencyEnum]; export const CreateWorkspaceSubscriptionBodyIntervalEnum = { Monthly: 'monthly', Yearly: 'yearly', UnknownDefaultOpenApi: '11184809' } as const; export type CreateWorkspaceSubscriptionBodyIntervalEnum = typeof CreateWorkspaceSubscriptionBodyIntervalEnum[keyof typeof CreateWorkspaceSubscriptionBodyIntervalEnum]; /** * Includes information about the supported verifiable credentials. * @export * @interface CredentialSupportedDraft00 */ export interface CredentialSupportedDraft00 { /** * OpenID Connect Verifiable Credentials Cryptographic Binding Methods Supported Contains a list of cryptographic binding methods supported for signing the proof. * @type {Array} * @memberof CredentialSupportedDraft00 */ 'cryptographic_binding_methods_supported'?: Array; /** * OpenID Connect Verifiable Credentials Cryptographic Suites Supported Contains a list of cryptographic suites methods supported for signing the proof. * @type {Array} * @memberof CredentialSupportedDraft00 */ 'cryptographic_suites_supported'?: Array; /** * OpenID Connect Verifiable Credentials Format Contains the format that is supported by this authorization server. * @type {string} * @memberof CredentialSupportedDraft00 */ 'format'?: string; /** * OpenID Connect Verifiable Credentials Types Contains the types of verifiable credentials supported. * @type {Array} * @memberof CredentialSupportedDraft00 */ 'types'?: Array; } /** * Custom Hostname * @export * @interface CustomDomain */ export interface CustomDomain { /** * * @type {string} * @memberof CustomDomain */ 'cookie_domain'?: string; /** * * @type {Array} * @memberof CustomDomain */ 'cors_allowed_origins'?: Array; /** * * @type {boolean} * @memberof CustomDomain */ 'cors_enabled'?: boolean; /** * * @type {string} * @memberof CustomDomain */ 'created_at'?: string; /** * * @type {string} * @memberof CustomDomain */ 'custom_ui_base_url'?: string; /** * * @type {string} * @memberof CustomDomain */ 'hostname'?: string; /** * * @type {string} * @memberof CustomDomain */ 'id'?: string; /** * * @type {string} * @memberof CustomDomain */ 'ssl_status'?: CustomDomainSslStatusEnum; /** * * @type {string} * @memberof CustomDomain */ 'updated_at'?: string; /** * * @type {Array} * @memberof CustomDomain */ 'verification_errors'?: Array; /** * * @type {string} * @memberof CustomDomain */ 'verification_status'?: string; } export const CustomDomainSslStatusEnum = { Initializing: 'initializing', PendingValidation: 'pending_validation', Deleted: 'deleted', PendingIssuance: 'pending_issuance', PendingDeployment: 'pending_deployment', PendingDeletion: 'pending_deletion', PendingExpiration: 'pending_expiration', Expired: 'expired', Active: 'active', InitializingTimedOut: 'initializing_timed_out', ValidationTimedOut: 'validation_timed_out', IssuanceTimedOut: 'issuance_timed_out', DeploymentTimedOut: 'deployment_timed_out', DeletionTimedOut: 'deletion_timed_out', PendingCleanup: 'pending_cleanup', StagingDeployment: 'staging_deployment', StagingActive: 'staging_active', Deactivating: 'deactivating', Inactive: 'inactive', BackupIssued: 'backup_issued', HoldingDeployment: 'holding_deployment', Empty: '', UnknownDefaultOpenApi: '11184809' } as const; export type CustomDomainSslStatusEnum = typeof CustomDomainSslStatusEnum[keyof typeof CustomDomainSslStatusEnum]; /** * Deleted Session Count * @export * @interface DeleteMySessionsCount */ export interface DeleteMySessionsCount { /** * The number of sessions that were revoked. * @type {number} * @memberof DeleteMySessionsCount */ 'count'?: number; } /** * Contains the data of the email template, including the subject and body in HTML and plaintext variants * @export * @interface EmailTemplateData */ export interface EmailTemplateData { /** * * @type {EmailTemplateDataBody} * @memberof EmailTemplateData */ 'body': EmailTemplateDataBody; /** * * @type {string} * @memberof EmailTemplateData */ 'subject': string; } /** * * @export * @interface EmailTemplateDataBody */ export interface EmailTemplateDataBody { /** * * @type {string} * @memberof EmailTemplateDataBody */ 'html': string; /** * * @type {string} * @memberof EmailTemplateDataBody */ 'plaintext': string; } /** * * @export * @interface ErrorAuthenticatorAssuranceLevelNotSatisfied */ export interface ErrorAuthenticatorAssuranceLevelNotSatisfied { /** * * @type {GenericError} * @memberof ErrorAuthenticatorAssuranceLevelNotSatisfied */ 'error'?: GenericError; /** * Points to where to redirect the user to next. * @type {string} * @memberof ErrorAuthenticatorAssuranceLevelNotSatisfied */ 'redirect_browser_to'?: string; } /** * * @export * @interface ErrorBrowserLocationChangeRequired */ export interface ErrorBrowserLocationChangeRequired { /** * * @type {ErrorGeneric} * @memberof ErrorBrowserLocationChangeRequired */ 'error'?: ErrorGeneric; /** * Points to where to redirect the user to next. * @type {string} * @memberof ErrorBrowserLocationChangeRequired */ 'redirect_browser_to'?: string; } /** * Is sent when a flow is replaced by a different flow of the same class * @export * @interface ErrorFlowReplaced */ export interface ErrorFlowReplaced { /** * * @type {GenericError} * @memberof ErrorFlowReplaced */ 'error'?: GenericError; /** * The flow ID that should be used for the new flow as it contains the correct messages. * @type {string} * @memberof ErrorFlowReplaced */ 'use_flow_id'?: string; } /** * The standard Ory JSON API error format. * @export * @interface ErrorGeneric */ export interface ErrorGeneric { /** * * @type {GenericErrorContent} * @memberof ErrorGeneric */ 'error': GenericErrorContent; } /** * Error * @export * @interface ErrorOAuth2 */ export interface ErrorOAuth2 { /** * Error * @type {string} * @memberof ErrorOAuth2 */ 'error'?: string; /** * Error Debug Information Only available in dev mode. * @type {string} * @memberof ErrorOAuth2 */ 'error_debug'?: string; /** * Error Description * @type {string} * @memberof ErrorOAuth2 */ 'error_description'?: string; /** * Error Hint Helps the user identify the error cause. * @type {string} * @memberof ErrorOAuth2 */ 'error_hint'?: string; /** * HTTP Status Code * @type {number} * @memberof ErrorOAuth2 */ 'status_code'?: number; } /** * Event Stream * @export * @interface EventStream */ export interface EventStream { /** * * @type {string} * @memberof EventStream */ 'created_at'?: string; /** * * @type {string} * @memberof EventStream */ 'id'?: string; /** * * @type {string} * @memberof EventStream */ 'role_arn'?: string; /** * * @type {string} * @memberof EventStream */ 'topic_arn'?: string; /** * * @type {string} * @memberof EventStream */ 'type'?: string; /** * * @type {string} * @memberof EventStream */ 'updated_at'?: string; } /** * * @export * @interface ExpandedPermissionTree */ export interface ExpandedPermissionTree { /** * The children of the node, possibly none. * @type {Array} * @memberof ExpandedPermissionTree */ 'children'?: Array; /** * * @type {Relationship} * @memberof ExpandedPermissionTree */ 'tuple'?: Relationship; /** * The type of the node. union TreeNodeUnion exclusion TreeNodeExclusion intersection TreeNodeIntersection leaf TreeNodeLeaf tuple_to_subject_set TreeNodeTupleToSubjectSet computed_subject_set TreeNodeComputedSubjectSet not TreeNodeNot unspecified TreeNodeUnspecified * @type {string} * @memberof ExpandedPermissionTree */ 'type': ExpandedPermissionTreeTypeEnum; } export const ExpandedPermissionTreeTypeEnum = { Union: 'union', Exclusion: 'exclusion', Intersection: 'intersection', Leaf: 'leaf', TupleToSubjectSet: 'tuple_to_subject_set', ComputedSubjectSet: 'computed_subject_set', Not: 'not', Unspecified: 'unspecified', UnknownDefaultOpenApi: '11184809' } as const; export type ExpandedPermissionTreeTypeEnum = typeof ExpandedPermissionTreeTypeEnum[keyof typeof ExpandedPermissionTreeTypeEnum]; /** * * @export * @interface FlowError */ export interface FlowError { /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof FlowError */ 'created_at'?: string; /** * * @type {object} * @memberof FlowError */ 'error'?: object; /** * ID of the error container. * @type {string} * @memberof FlowError */ 'id': string; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof FlowError */ 'updated_at'?: string; } /** * Error responses are sent when an error (e.g. unauthorized, bad request, ...) occurred. * @export * @interface GenericError */ export interface GenericError { /** * The status code * @type {number} * @memberof GenericError */ 'code'?: number; /** * Debug information This field is often not exposed to protect against leaking sensitive information. * @type {string} * @memberof GenericError */ 'debug'?: string; /** * Further error details * @type {any} * @memberof GenericError */ 'details'?: any; /** * * @type {GenericErrorContent} * @memberof GenericError */ 'error'?: GenericErrorContent; /** * The error ID Useful when trying to identify various errors in application logic. * @type {string} * @memberof GenericError */ 'id'?: string; /** * Error message The error\'s message. * @type {string} * @memberof GenericError */ 'message': string; /** * A human-readable reason for the error * @type {string} * @memberof GenericError */ 'reason'?: string; /** * The request ID The request ID is often exposed internally in order to trace errors across service architectures. This is often a UUID. * @type {string} * @memberof GenericError */ 'request'?: string; /** * The status description * @type {string} * @memberof GenericError */ 'status'?: string; } /** * Error response * @export * @interface GenericErrorContent */ export interface GenericErrorContent { /** * Debug contains debug information. This is usually not available and has to be enabled. * @type {string} * @memberof GenericErrorContent */ 'debug'?: string; /** * Name is the error name. * @type {string} * @memberof GenericErrorContent */ 'error'?: string; /** * Description contains further information on the nature of the error. * @type {string} * @memberof GenericErrorContent */ 'error_description'?: string; /** * ID is a unique error ID. feature_not_available ErrFeatureNotAvailable quota_exceeded ErrQuotaExceeded * @type {string} * @memberof GenericErrorContent */ 'id'?: GenericErrorContentIdEnum; /** * Message contains the error message. * @type {string} * @memberof GenericErrorContent */ 'message'?: string; /** * Code represents the error status code (404, 403, 401, ...). * @type {number} * @memberof GenericErrorContent */ 'status_code'?: number; } export const GenericErrorContentIdEnum = { FeatureNotAvailable: 'feature_not_available', QuotaExceeded: 'quota_exceeded', UnknownDefaultOpenApi: '11184809' } as const; export type GenericErrorContentIdEnum = typeof GenericErrorContentIdEnum[keyof typeof GenericErrorContentIdEnum]; /** * * @export * @interface GenericUsage */ export interface GenericUsage { /** * * @type {Money} * @memberof GenericUsage */ 'additional_price': Money; /** * IncludedUsage is the number of included items. * @type {number} * @memberof GenericUsage */ 'included_usage': number; } /** * Response of the getAttributesCount endpoint * @export * @interface GetAttributesCountResponse */ export interface GetAttributesCountResponse { /** * The list of data points. * @type {Array} * @memberof GetAttributesCountResponse */ 'data': Array; } /** * Ory Identity Schema Location * @export * @interface GetManagedIdentitySchemaLocation */ export interface GetManagedIdentitySchemaLocation { /** * * @type {string} * @memberof GetManagedIdentitySchemaLocation */ 'location'?: string; } /** * Response of the getMetricsEventAttributes endpoint * @export * @interface GetMetricsEventAttributesResponse */ export interface GetMetricsEventAttributesResponse { /** * The list of data points. * @type {Array} * @memberof GetMetricsEventAttributesResponse */ 'events': Array; } /** * Response of the getMetricsEventTypes endpoint * @export * @interface GetMetricsEventTypesResponse */ export interface GetMetricsEventTypesResponse { /** * The list of data points. * @type {Array} * @memberof GetMetricsEventTypesResponse */ 'events': Array; } /** * * @export * @interface GetOrganizationResponse */ export interface GetOrganizationResponse { /** * * @type {Organization} * @memberof GetOrganizationResponse */ 'organization': Organization; } /** * Body of the getProjectEvents endpoint * @export * @interface GetProjectEventsBody */ export interface GetProjectEventsBody { /** * The event name to query for * @type {string} * @memberof GetProjectEventsBody */ 'event_name'?: string; /** * Event attribute filters * @type {Array} * @memberof GetProjectEventsBody */ 'filters'?: Array; /** * The start RFC3339 date of the time window * @type {string} * @memberof GetProjectEventsBody */ 'from': string; /** * Maximum number of events to return * @type {number} * @memberof GetProjectEventsBody */ 'page_size'?: number; /** * Pagination token to fetch next page, empty if first page * @type {string} * @memberof GetProjectEventsBody */ 'page_token'?: string; /** * The end RFC3339 date of the time window * @type {string} * @memberof GetProjectEventsBody */ 'to': string; } /** * Response of the getProjectEvents endpoint * @export * @interface GetProjectEventsResponse */ export interface GetProjectEventsResponse { /** * The list of data points. * @type {Array} * @memberof GetProjectEventsResponse */ 'events': Array; /** * Pagination token to be included in next page request * @type {string} * @memberof GetProjectEventsResponse */ 'page_token'?: string; } /** * Response of the getMetrics endpoint * @export * @interface GetProjectMetricsResponse */ export interface GetProjectMetricsResponse { /** * The list of data points. * @type {Array} * @memberof GetProjectMetricsResponse */ 'data': Array; } /** * Response of the getSessionActivity endpoint * @export * @interface GetSessionActivityResponse */ export interface GetSessionActivityResponse { /** * The list of data points. * @type {Array} * @memberof GetSessionActivityResponse */ 'data': Array; } /** * * @export * @interface GetVersion200Response */ export interface GetVersion200Response { /** * The version of Ory Kratos. * @type {string} * @memberof GetVersion200Response */ 'version': string; } /** * * @export * @interface HealthNotReadyStatus */ export interface HealthNotReadyStatus { /** * Errors contains a list of errors that caused the not ready status. * @type {{ [key: string]: string; }} * @memberof HealthNotReadyStatus */ 'errors'?: { [key: string]: string; }; } /** * * @export * @interface HealthStatus */ export interface HealthStatus { /** * Status always contains \"ok\". * @type {string} * @memberof HealthStatus */ 'status'?: string; } /** * An [identity](https://www.ory.sh/docs/kratos/concepts/identity-user-model) represents a (human) user in Ory. * @export * @interface Identity */ export interface Identity { /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof Identity */ 'created_at'?: string; /** * Credentials represents all credentials that can be used for authenticating this identity. * @type {{ [key: string]: IdentityCredentials; }} * @memberof Identity */ 'credentials'?: { [key: string]: IdentityCredentials; }; /** * ID is the identity\'s unique identifier. The Identity ID can not be changed and can not be chosen. This ensures future compatibility and optimization for distributed stores such as CockroachDB. * @type {string} * @memberof Identity */ 'id': string; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof Identity */ 'metadata_admin'?: object | null; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof Identity */ 'metadata_public'?: object | null; /** * * @type {string} * @memberof Identity */ 'organization_id'?: string | null; /** * RecoveryAddresses contains all the addresses that can be used to recover an identity. * @type {Array} * @memberof Identity */ 'recovery_addresses'?: Array; /** * SchemaID is the ID of the JSON Schema to be used for validating the identity\'s traits. * @type {string} * @memberof Identity */ 'schema_id': string; /** * SchemaURL is the URL of the endpoint where the identity\'s traits schema can be fetched from. format: url * @type {string} * @memberof Identity */ 'schema_url': string; /** * State is the identity\'s state. This value has currently no effect. active StateActive inactive StateInactive * @type {string} * @memberof Identity */ 'state'?: IdentityStateEnum; /** * * @type {string} * @memberof Identity */ 'state_changed_at'?: string; /** * Traits represent an identity\'s traits. The identity is able to create, modify, and delete traits in a self-service manner. The input will always be validated against the JSON Schema defined in `schema_url`. * @type {any} * @memberof Identity */ 'traits': any; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof Identity */ 'updated_at'?: string; /** * VerifiableAddresses contains all the addresses that can be verified by the user. * @type {Array} * @memberof Identity */ 'verifiable_addresses'?: Array; } export const IdentityStateEnum = { Active: 'active', Inactive: 'inactive', UnknownDefaultOpenApi: '11184809' } as const; export type IdentityStateEnum = typeof IdentityStateEnum[keyof typeof IdentityStateEnum]; /** * Credentials represents a specific credential type * @export * @interface IdentityCredentials */ export interface IdentityCredentials { /** * * @type {object} * @memberof IdentityCredentials */ 'config'?: object; /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof IdentityCredentials */ 'created_at'?: string; /** * Identifiers represents a list of unique identifiers this credential type matches. * @type {Array} * @memberof IdentityCredentials */ 'identifiers'?: Array; /** * Type discriminates between different types of credentials. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML link_recovery CredentialsTypeRecoveryLink CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow). It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode * @type {string} * @memberof IdentityCredentials */ 'type'?: IdentityCredentialsTypeEnum; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof IdentityCredentials */ 'updated_at'?: string; /** * Version refers to the version of the credential. Useful when changing the config schema. * @type {number} * @memberof IdentityCredentials */ 'version'?: number; } export const IdentityCredentialsTypeEnum = { Password: 'password', Oidc: 'oidc', Totp: 'totp', LookupSecret: 'lookup_secret', Webauthn: 'webauthn', Code: 'code', Passkey: 'passkey', Profile: 'profile', Saml: 'saml', LinkRecovery: 'link_recovery', CodeRecovery: 'code_recovery', UnknownDefaultOpenApi: '11184809' } as const; export type IdentityCredentialsTypeEnum = typeof IdentityCredentialsTypeEnum[keyof typeof IdentityCredentialsTypeEnum]; /** * CredentialsCode represents a one time login/registration code * @export * @interface IdentityCredentialsCode */ export interface IdentityCredentialsCode { /** * * @type {Array} * @memberof IdentityCredentialsCode */ 'addresses'?: Array; } /** * * @export * @interface IdentityCredentialsCodeAddress */ export interface IdentityCredentialsCodeAddress { /** * The address for this code * @type {string} * @memberof IdentityCredentialsCodeAddress */ 'address'?: string; /** * * @type {string} * @memberof IdentityCredentialsCodeAddress */ 'channel'?: string; } /** * * @export * @interface IdentityCredentialsOidc */ export interface IdentityCredentialsOidc { /** * * @type {Array} * @memberof IdentityCredentialsOidc */ 'providers'?: Array; } /** * * @export * @interface IdentityCredentialsOidcProvider */ export interface IdentityCredentialsOidcProvider { /** * * @type {string} * @memberof IdentityCredentialsOidcProvider */ 'initial_access_token'?: string; /** * * @type {string} * @memberof IdentityCredentialsOidcProvider */ 'initial_id_token'?: string; /** * * @type {string} * @memberof IdentityCredentialsOidcProvider */ 'initial_refresh_token'?: string; /** * * @type {string} * @memberof IdentityCredentialsOidcProvider */ 'organization'?: string; /** * * @type {string} * @memberof IdentityCredentialsOidcProvider */ 'provider'?: string; /** * * @type {string} * @memberof IdentityCredentialsOidcProvider */ 'subject'?: string; /** * * @type {boolean} * @memberof IdentityCredentialsOidcProvider */ 'use_auto_link'?: boolean; } /** * * @export * @interface IdentityCredentialsPassword */ export interface IdentityCredentialsPassword { /** * HashedPassword is a hash-representation of the password. * @type {string} * @memberof IdentityCredentialsPassword */ 'hashed_password'?: string; /** * UsePasswordMigrationHook is set to true if the password should be migrated using the password migration hook. If set, and the HashedPassword is empty, a webhook will be called during login to migrate the password. * @type {boolean} * @memberof IdentityCredentialsPassword */ 'use_password_migration_hook'?: boolean; } /** * Payload for patching an identity * @export * @interface IdentityPatch */ export interface IdentityPatch { /** * * @type {CreateIdentityBody} * @memberof IdentityPatch */ 'create'?: CreateIdentityBody; /** * The ID of this patch. The patch ID is optional. If specified, the ID will be returned in the response, so consumers of this API can correlate the response with the patch. * @type {string} * @memberof IdentityPatch */ 'patch_id'?: string; } /** * Response for a single identity patch * @export * @interface IdentityPatchResponse */ export interface IdentityPatchResponse { /** * The action for this specific patch create ActionCreate Create this identity. error ActionError Error indicates that the patch failed. * @type {string} * @memberof IdentityPatchResponse */ 'action'?: IdentityPatchResponseActionEnum; /** * * @type {any} * @memberof IdentityPatchResponse */ 'error'?: any; /** * The identity ID payload of this patch * @type {string} * @memberof IdentityPatchResponse */ 'identity'?: string; /** * The ID of this patch response, if an ID was specified in the patch. * @type {string} * @memberof IdentityPatchResponse */ 'patch_id'?: string; } export const IdentityPatchResponseActionEnum = { Create: 'create', Error: 'error', UnknownDefaultOpenApi: '11184809' } as const; export type IdentityPatchResponseActionEnum = typeof IdentityPatchResponseActionEnum[keyof typeof IdentityPatchResponseActionEnum]; /** * An Identity JSON Schema Container * @export * @interface IdentitySchemaContainer */ export interface IdentitySchemaContainer { /** * The ID of the Identity JSON Schema * @type {string} * @memberof IdentitySchemaContainer */ 'id'?: string; /** * The actual Identity JSON Schema * @type {object} * @memberof IdentitySchemaContainer */ 'schema'?: object; } /** * * @export * @interface IdentitySchemaPreset */ export interface IdentitySchemaPreset { /** * Schema is the Identity JSON Schema * @type {object} * @memberof IdentitySchemaPreset */ 'schema': object; /** * URL is the preset identifier * @type {string} * @memberof IdentitySchemaPreset */ 'url': string; } /** * Create Identity and Import Credentials * @export * @interface IdentityWithCredentials */ export interface IdentityWithCredentials { /** * * @type {IdentityWithCredentialsOidc} * @memberof IdentityWithCredentials */ 'oidc'?: IdentityWithCredentialsOidc; /** * * @type {IdentityWithCredentialsPassword} * @memberof IdentityWithCredentials */ 'password'?: IdentityWithCredentialsPassword; /** * * @type {IdentityWithCredentialsSaml} * @memberof IdentityWithCredentials */ 'saml'?: IdentityWithCredentialsSaml; } /** * Create Identity and Import Social Sign In Credentials * @export * @interface IdentityWithCredentialsOidc */ export interface IdentityWithCredentialsOidc { /** * * @type {IdentityWithCredentialsOidcConfig} * @memberof IdentityWithCredentialsOidc */ 'config'?: IdentityWithCredentialsOidcConfig; } /** * * @export * @interface IdentityWithCredentialsOidcConfig */ export interface IdentityWithCredentialsOidcConfig { /** * A list of OpenID Connect Providers * @type {Array} * @memberof IdentityWithCredentialsOidcConfig */ 'providers'?: Array; } /** * Create Identity and Import Social Sign In Credentials Configuration * @export * @interface IdentityWithCredentialsOidcConfigProvider */ export interface IdentityWithCredentialsOidcConfigProvider { /** * * @type {string} * @memberof IdentityWithCredentialsOidcConfigProvider */ 'organization'?: string | null; /** * The OpenID Connect provider to link the subject to. Usually something like `google` or `github`. * @type {string} * @memberof IdentityWithCredentialsOidcConfigProvider */ 'provider': string; /** * The subject (`sub`) of the OpenID Connect connection. Usually the `sub` field of the ID Token. * @type {string} * @memberof IdentityWithCredentialsOidcConfigProvider */ 'subject': string; /** * If set, this credential allows the user to sign in using the OpenID Connect provider without setting the subject first. * @type {boolean} * @memberof IdentityWithCredentialsOidcConfigProvider */ 'use_auto_link'?: boolean; } /** * Create Identity and Import Password Credentials * @export * @interface IdentityWithCredentialsPassword */ export interface IdentityWithCredentialsPassword { /** * * @type {IdentityWithCredentialsPasswordConfig} * @memberof IdentityWithCredentialsPassword */ 'config'?: IdentityWithCredentialsPasswordConfig; } /** * Create Identity and Import Password Credentials Configuration * @export * @interface IdentityWithCredentialsPasswordConfig */ export interface IdentityWithCredentialsPasswordConfig { /** * The hashed password in [PHC format](https://www.ory.sh/docs/kratos/manage-identities/import-user-accounts-identities#hashed-passwords) * @type {string} * @memberof IdentityWithCredentialsPasswordConfig */ 'hashed_password'?: string; /** * The password in plain text if no hash is available. * @type {string} * @memberof IdentityWithCredentialsPasswordConfig */ 'password'?: string; /** * If set to true, the password will be migrated using the password migration hook. * @type {boolean} * @memberof IdentityWithCredentialsPasswordConfig */ 'use_password_migration_hook'?: boolean; } /** * Payload to import SAML credentials * @export * @interface IdentityWithCredentialsSaml */ export interface IdentityWithCredentialsSaml { /** * * @type {IdentityWithCredentialsSamlConfig} * @memberof IdentityWithCredentialsSaml */ 'config'?: IdentityWithCredentialsSamlConfig; } /** * Payload of SAML providers * @export * @interface IdentityWithCredentialsSamlConfig */ export interface IdentityWithCredentialsSamlConfig { /** * A list of SAML Providers * @type {Array} * @memberof IdentityWithCredentialsSamlConfig */ 'providers'?: Array; } /** * Payload of specific SAML provider * @export * @interface IdentityWithCredentialsSamlConfigProvider */ export interface IdentityWithCredentialsSamlConfigProvider { /** * * @type {string} * @memberof IdentityWithCredentialsSamlConfigProvider */ 'organization'?: string | null; /** * The SAML provider to link the subject to. * @type {string} * @memberof IdentityWithCredentialsSamlConfigProvider */ 'provider': string; /** * The unique subject of the SAML connection. This value must be immutable at the source. * @type {string} * @memberof IdentityWithCredentialsSamlConfigProvider */ 'subject': string; } /** * Get Project Branding Request Body * @export * @interface InternalGetProjectBrandingBody */ export interface InternalGetProjectBrandingBody { /** * * @type {string} * @memberof InternalGetProjectBrandingBody */ 'hostname'?: string; } /** * Is Account Experience Enabled For Project Request Body * @export * @interface InternalIsAXWelcomeScreenEnabledForProjectBody */ export interface InternalIsAXWelcomeScreenEnabledForProjectBody { /** * Path is the path of the request. * @type {string} * @memberof InternalIsAXWelcomeScreenEnabledForProjectBody */ 'path': string; /** * ProjectSlug is the project\'s slug. * @type {string} * @memberof InternalIsAXWelcomeScreenEnabledForProjectBody */ 'project_slug': string; } /** * Is Owner For Project By Slug Request Body * @export * @interface InternalIsOwnerForProjectBySlugBody */ export interface InternalIsOwnerForProjectBySlugBody { /** * Namespace is the namespace of the subject. * @type {string} * @memberof InternalIsOwnerForProjectBySlugBody */ 'namespace': InternalIsOwnerForProjectBySlugBodyNamespaceEnum; /** * ProjectScope is the project_id resolved from the API key. * @type {string} * @memberof InternalIsOwnerForProjectBySlugBody */ 'project_scope'?: string; /** * ProjectSlug is the project\'s slug. * @type {string} * @memberof InternalIsOwnerForProjectBySlugBody */ 'project_slug': string; /** * Subject is the subject acting (user or API key). * @type {string} * @memberof InternalIsOwnerForProjectBySlugBody */ 'subject': string; } export const InternalIsOwnerForProjectBySlugBodyNamespaceEnum = { User: 'User', ApiKey: ' ApiKey', UnknownDefaultOpenApi: '11184809' } as const; export type InternalIsOwnerForProjectBySlugBodyNamespaceEnum = typeof InternalIsOwnerForProjectBySlugBodyNamespaceEnum[keyof typeof InternalIsOwnerForProjectBySlugBodyNamespaceEnum]; /** * * @export * @interface InternalIsOwnerForProjectBySlugResponse */ export interface InternalIsOwnerForProjectBySlugResponse { /** * ProjectID is the project\'s ID. * @type {string} * @memberof InternalIsOwnerForProjectBySlugResponse */ 'project_id': string; } /** * Introspection contains an access token\'s session data as specified by [IETF RFC 7662](https://tools.ietf.org/html/rfc7662) * @export * @interface IntrospectedOAuth2Token */ export interface IntrospectedOAuth2Token { /** * Active is a boolean indicator of whether or not the presented token is currently active. The specifics of a token\'s \"active\" state will vary depending on the implementation of the authorization server and the information it keeps about its tokens, but a \"true\" value return for the \"active\" property will generally indicate that a given token has been issued by this authorization server, has not been revoked by the resource owner, and is within its given time window of validity (e.g., after its issuance time and before its expiration time). * @type {boolean} * @memberof IntrospectedOAuth2Token */ 'active': boolean; /** * Audience contains a list of the token\'s intended audiences. * @type {Array} * @memberof IntrospectedOAuth2Token */ 'aud'?: Array; /** * ID is aclient identifier for the OAuth 2.0 client that requested this token. * @type {string} * @memberof IntrospectedOAuth2Token */ 'client_id'?: string; /** * Expires at is an integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this token will expire. * @type {number} * @memberof IntrospectedOAuth2Token */ 'exp'?: number; /** * Extra is arbitrary data set by the session. * @type {{ [key: string]: any; }} * @memberof IntrospectedOAuth2Token */ 'ext'?: { [key: string]: any; }; /** * Issued at is an integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this token was originally issued. * @type {number} * @memberof IntrospectedOAuth2Token */ 'iat'?: number; /** * IssuerURL is a string representing the issuer of this token * @type {string} * @memberof IntrospectedOAuth2Token */ 'iss'?: string; /** * NotBefore is an integer timestamp, measured in the number of seconds since January 1 1970 UTC, indicating when this token is not to be used before. * @type {number} * @memberof IntrospectedOAuth2Token */ 'nbf'?: number; /** * ObfuscatedSubject is set when the subject identifier algorithm was set to \"pairwise\" during authorization. It is the `sub` value of the ID Token that was issued. * @type {string} * @memberof IntrospectedOAuth2Token */ 'obfuscated_subject'?: string; /** * Scope is a JSON string containing a space-separated list of scopes associated with this token. * @type {string} * @memberof IntrospectedOAuth2Token */ 'scope'?: string; /** * Subject of the token, as defined in JWT [RFC7519]. Usually a machine-readable identifier of the resource owner who authorized this token. * @type {string} * @memberof IntrospectedOAuth2Token */ 'sub'?: string; /** * TokenType is the introspected token\'s type, typically `Bearer`. * @type {string} * @memberof IntrospectedOAuth2Token */ 'token_type'?: string; /** * TokenUse is the introspected token\'s use, for example `access_token` or `refresh_token`. * @type {string} * @memberof IntrospectedOAuth2Token */ 'token_use'?: string; /** * Username is a human-readable identifier for the resource owner who authorized this token. * @type {string} * @memberof IntrospectedOAuth2Token */ 'username'?: string; } /** * Invite Token Body * @export * @interface InviteTokenBody */ export interface InviteTokenBody { /** * Invite Token The Invite Token. format: uuid * @type {string} * @memberof InviteTokenBody */ 'invite_token': string; } /** * * @export * @interface Invoice */ export interface Invoice { /** * The ID of the invoice. * @type {string} * @memberof Invoice */ 'id': string; /** * * @type {string} * @memberof Invoice */ 'invoiced_at': string; /** * Type is the type of the invoice. usage InvoiceTypeUsage base InvoiceTypeBase * @type {string} * @memberof Invoice */ 'type': InvoiceTypeEnum; /** * * @type {string} * @memberof Invoice */ 'updated_at'?: string; /** * * @type {InvoiceDataV1} * @memberof Invoice */ 'v1'?: InvoiceDataV1; } export const InvoiceTypeEnum = { Usage: 'usage', Base: 'base', UnknownDefaultOpenApi: '11184809' } as const; export type InvoiceTypeEnum = typeof InvoiceTypeEnum[keyof typeof InvoiceTypeEnum]; /** * * @export * @interface InvoiceDataV1 */ export interface InvoiceDataV1 { /** * * @type {TimeInterval} * @memberof InvoiceDataV1 */ 'billing_period': TimeInterval; /** * The currency of the invoice. * @type {string} * @memberof InvoiceDataV1 */ 'currency': string; /** * Deleted is true if the invoice has been soft-deleted. * @type {boolean} * @memberof InvoiceDataV1 */ 'deleted'?: boolean; /** * The items that are part of this invoice. * @type {Array} * @memberof InvoiceDataV1 */ 'items': Array; /** * The plan that this invoice is based on, in the format \"Name@version\". * @type {string} * @memberof InvoiceDataV1 */ 'plan'?: string; /** * * @type {string} * @memberof InvoiceDataV1 */ 'stripe_invoice_item'?: string; /** * The status of the invoice, one of `draft`, `open`, `paid`, `uncollectible`, or `void`. [Learn more](https://stripe.com/docs/billing/invoices/workflow#workflow-overview) * @type {string} * @memberof InvoiceDataV1 */ 'stripe_invoice_status'?: string; /** * An optional link to the invoice on Stripe. * @type {string} * @memberof InvoiceDataV1 */ 'stripe_link'?: string; /** * The subtitle of the invoice. * @type {string} * @memberof InvoiceDataV1 */ 'subtitle'?: string; /** * * @type {TaxLineItem} * @memberof InvoiceDataV1 */ 'tax'?: TaxLineItem; /** * The title of the invoice. * @type {string} * @memberof InvoiceDataV1 */ 'title': string; /** * * @type {number} * @memberof InvoiceDataV1 */ 'total_in_cent': number; } /** * * @export * @interface IsOwnerForProjectBySlug */ export interface IsOwnerForProjectBySlug { /** * ProjectSlug is the project\'s slug. * @type {string} * @memberof IsOwnerForProjectBySlug */ 'ProjectSlug': string; /** * Subject is the subject from the API key. * @type {string} * @memberof IsOwnerForProjectBySlug */ 'Subject': string; } /** * A JSONPatch document as defined by RFC 6902 * @export * @interface JsonPatch */ export interface JsonPatch { /** * This field is used together with operation \"move\" and uses JSON Pointer notation. Learn more [about JSON Pointers](https://datatracker.ietf.org/doc/html/rfc6901#section-5). * @type {string} * @memberof JsonPatch */ 'from'?: string; /** * The operation to be performed. One of \"add\", \"remove\", \"replace\", \"move\", \"copy\", or \"test\". * @type {string} * @memberof JsonPatch */ 'op': JsonPatchOpEnum; /** * The path to the target path. Uses JSON pointer notation. Learn more [about JSON Pointers](https://datatracker.ietf.org/doc/html/rfc6901#section-5). * @type {string} * @memberof JsonPatch */ 'path': string; /** * The value to be used within the operations. Learn more [about JSON Pointers](https://datatracker.ietf.org/doc/html/rfc6901#section-5). * @type {any} * @memberof JsonPatch */ 'value'?: any; } export const JsonPatchOpEnum = { Add: 'add', Remove: 'remove', Replace: 'replace', Move: 'move', Copy: 'copy', Test: 'test', UnknownDefaultOpenApi: '11184809' } as const; export type JsonPatchOpEnum = typeof JsonPatchOpEnum[keyof typeof JsonPatchOpEnum]; /** * * @export * @interface JsonWebKey */ export interface JsonWebKey { /** * The \"alg\" (algorithm) parameter identifies the algorithm intended for use with the key. The values used should either be registered in the IANA \"JSON Web Signature and Encryption Algorithms\" registry established by [JWA] or be a value that contains a Collision- Resistant Name. * @type {string} * @memberof JsonWebKey */ 'alg': string; /** * * @type {string} * @memberof JsonWebKey */ 'crv'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'd'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'dp'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'dq'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'e'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'k'?: string; /** * The \"kid\" (key ID) parameter is used to match a specific key. This is used, for instance, to choose among a set of keys within a JWK Set during key rollover. The structure of the \"kid\" value is unspecified. When \"kid\" values are used within a JWK Set, different keys within the JWK Set SHOULD use distinct \"kid\" values. (One example in which different keys might use the same \"kid\" value is if they have different \"kty\" (key type) values but are considered to be equivalent alternatives by the application using them.) The \"kid\" value is a case-sensitive string. * @type {string} * @memberof JsonWebKey */ 'kid': string; /** * The \"kty\" (key type) parameter identifies the cryptographic algorithm family used with the key, such as \"RSA\" or \"EC\". \"kty\" values should either be registered in the IANA \"JSON Web Key Types\" registry established by [JWA] or be a value that contains a Collision- Resistant Name. The \"kty\" value is a case-sensitive string. * @type {string} * @memberof JsonWebKey */ 'kty': string; /** * * @type {string} * @memberof JsonWebKey */ 'n'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'p'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'q'?: string; /** * * @type {string} * @memberof JsonWebKey */ 'qi'?: string; /** * Use (\"public key use\") identifies the intended use of the public key. The \"use\" parameter is employed to indicate whether a public key is used for encrypting data or verifying the signature on data. Values are commonly \"sig\" (signature) or \"enc\" (encryption). * @type {string} * @memberof JsonWebKey */ 'use': string; /** * * @type {string} * @memberof JsonWebKey */ 'x'?: string; /** * The \"x5c\" (X.509 certificate chain) parameter contains a chain of one or more PKIX certificates [RFC5280]. The certificate chain is represented as a JSON array of certificate value strings. Each string in the array is a base64-encoded (Section 4 of [RFC4648] -- not base64url-encoded) DER [ITU.X690.1994] PKIX certificate value. The PKIX certificate containing the key value MUST be the first certificate. * @type {Array} * @memberof JsonWebKey */ 'x5c'?: Array; /** * * @type {string} * @memberof JsonWebKey */ 'y'?: string; } /** * JSON Web Key Set * @export * @interface JsonWebKeySet */ export interface JsonWebKeySet { /** * List of JSON Web Keys The value of the \"keys\" parameter is an array of JSON Web Key (JWK) values. By default, the order of the JWK values within the array does not imply an order of preference among them, although applications of JWK Sets can choose to assign a meaning to the order for their purposes, if desired. * @type {Array} * @memberof JsonWebKeySet */ 'keys'?: Array; } /** * * @export * @interface KetoNamespace */ export interface KetoNamespace { /** * * @type {number} * @memberof KetoNamespace */ 'id'?: number; /** * * @type {string} * @memberof KetoNamespace */ 'name'?: string; } /** * * @export * @interface LineItemV1 */ export interface LineItemV1 { /** * * @type {number} * @memberof LineItemV1 */ 'amount_in_cent'?: number; /** * * @type {string} * @memberof LineItemV1 */ 'description'?: string; /** * Each line item can have sub-items to create a hierarchy. * @type {Array} * @memberof LineItemV1 */ 'items'?: Array; /** * * @type {number} * @memberof LineItemV1 */ 'quantity'?: number; /** * * @type {string} * @memberof LineItemV1 */ 'title'?: string; /** * * @type {string} * @memberof LineItemV1 */ 'unit_price'?: string; } /** * Event Stream List * @export * @interface ListEventStreams */ export interface ListEventStreams { /** * * @type {Array} * @memberof ListEventStreams */ 'event_streams'?: Array; } /** * * @export * @interface ListInvoicesResponse */ export interface ListInvoicesResponse { /** * * @type {Array} * @memberof ListInvoicesResponse */ 'buckets': Array; /** * * @type {boolean} * @memberof ListInvoicesResponse */ 'has_next_page': boolean; /** * * @type {string} * @memberof ListInvoicesResponse */ 'next_page_token': string; } /** * B2B SSO Organization List * @export * @interface ListOrganizationsResponse */ export interface ListOrganizationsResponse { /** * * @type {boolean} * @memberof ListOrganizationsResponse */ 'has_next_page': boolean; /** * * @type {string} * @memberof ListOrganizationsResponse */ 'next_page_token': string; /** * The list of organizations * @type {Array} * @memberof ListOrganizationsResponse */ 'organizations': Array; } /** * * @export * @interface ListWorkspaceProjects */ export interface ListWorkspaceProjects { /** * * @type {boolean} * @memberof ListWorkspaceProjects */ 'has_next_page': boolean; /** * * @type {string} * @memberof ListWorkspaceProjects */ 'next_page': string; /** * * @type {Array} * @memberof ListWorkspaceProjects */ 'projects': Array; } /** * * @export * @interface ListWorkspaces */ export interface ListWorkspaces { /** * * @type {boolean} * @memberof ListWorkspaces */ 'has_next_page': boolean; /** * * @type {string} * @memberof ListWorkspaces */ 'next_page_token': string; /** * * @type {Array} * @memberof ListWorkspaces */ 'workspaces': Array; } /** * This object represents a login flow. A login flow is initiated at the \"Initiate Login API / Browser Flow\" endpoint by a client. Once a login flow is completed successfully, a session cookie or session token will be issued. * @export * @interface LoginFlow */ export interface LoginFlow { /** * The active login method If set contains the login method used. If the flow is new, it is unset. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML link_recovery CredentialsTypeRecoveryLink CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow). It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode * @type {string} * @memberof LoginFlow */ 'active'?: LoginFlowActiveEnum; /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof LoginFlow */ 'created_at'?: string; /** * ExpiresAt is the time (UTC) when the flow expires. If the user still wishes to log in, a new flow has to be initiated. * @type {string} * @memberof LoginFlow */ 'expires_at': string; /** * ID represents the flow\'s unique ID. When performing the login flow, this represents the id in the login UI\'s query parameter: http:///?flow= * @type {string} * @memberof LoginFlow */ 'id': string; /** * IssuedAt is the time (UTC) when the flow started. * @type {string} * @memberof LoginFlow */ 'issued_at': string; /** * Ory OAuth 2.0 Login Challenge. This value is set using the `login_challenge` query parameter of the registration and login endpoints. If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider. * @type {string} * @memberof LoginFlow */ 'oauth2_login_challenge'?: string; /** * * @type {OAuth2LoginRequest} * @memberof LoginFlow */ 'oauth2_login_request'?: OAuth2LoginRequest; /** * * @type {string} * @memberof LoginFlow */ 'organization_id'?: string | null; /** * Refresh stores whether this login flow should enforce re-authentication. * @type {boolean} * @memberof LoginFlow */ 'refresh'?: boolean; /** * RequestURL is the initial URL that was requested from Ory Kratos. It can be used to forward information contained in the URL\'s path or query for example. * @type {string} * @memberof LoginFlow */ 'request_url': string; /** * * @type {AuthenticatorAssuranceLevel} * @memberof LoginFlow */ 'requested_aal'?: AuthenticatorAssuranceLevel; /** * ReturnTo contains the requested return_to URL. * @type {string} * @memberof LoginFlow */ 'return_to'?: string; /** * SessionTokenExchangeCode holds the secret code that the client can use to retrieve a session token after the login flow has been completed. This is only set if the client has requested a session token exchange code, and if the flow is of type \"api\", and only on creating the login flow. * @type {string} * @memberof LoginFlow */ 'session_token_exchange_code'?: string; /** * State represents the state of this request: choose_method: ask the user to choose a method to sign in with sent_email: the email has been sent to the user passed_challenge: the request was successful and the login challenge was passed. * @type {any} * @memberof LoginFlow */ 'state': any; /** * TransientPayload is used to pass data from the login to hooks and email templates * @type {object} * @memberof LoginFlow */ 'transient_payload'?: object; /** * The flow type can either be `api` or `browser`. * @type {string} * @memberof LoginFlow */ 'type': string; /** * * @type {UiContainer} * @memberof LoginFlow */ 'ui': UiContainer; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof LoginFlow */ 'updated_at'?: string; } export const LoginFlowActiveEnum = { Password: 'password', Oidc: 'oidc', Totp: 'totp', LookupSecret: 'lookup_secret', Webauthn: 'webauthn', Code: 'code', Passkey: 'passkey', Profile: 'profile', Saml: 'saml', LinkRecovery: 'link_recovery', CodeRecovery: 'code_recovery', UnknownDefaultOpenApi: '11184809' } as const; export type LoginFlowActiveEnum = typeof LoginFlowActiveEnum[keyof typeof LoginFlowActiveEnum]; /** * The experimental state represents the state of a login flow. This field is EXPERIMENTAL and subject to change! * @export * @enum {string} */ export const LoginFlowState = { ChooseMethod: 'choose_method', SentEmail: 'sent_email', PassedChallenge: 'passed_challenge', UnknownDefaultOpenApi: '11184809' } as const; export type LoginFlowState = typeof LoginFlowState[keyof typeof LoginFlowState]; /** * Logout Flow * @export * @interface LogoutFlow */ export interface LogoutFlow { /** * LogoutToken can be used to perform logout using AJAX. * @type {string} * @memberof LogoutFlow */ 'logout_token': string; /** * LogoutURL can be opened in a browser to sign the user out. format: uri * @type {string} * @memberof LogoutFlow */ 'logout_url': string; } /** * Together the name and identity uuid are a unique index constraint. This prevents a user from having schemas with the same name. This also allows schemas to have the same name across the system. * @export * @interface ManagedIdentitySchema */ export interface ManagedIdentitySchema { /** * The gcs file name This is a randomly generated name which is used to uniquely identify the file on the blob storage * @type {string} * @memberof ManagedIdentitySchema */ 'blob_name': string; /** * The publicly accessible url of the schema * @type {string} * @memberof ManagedIdentitySchema */ 'blob_url': string; /** * The Content Hash Contains a hash of the schema\'s content. * @type {string} * @memberof ManagedIdentitySchema */ 'content_hash'?: string; /** * The Schema\'s Creation Date * @type {string} * @memberof ManagedIdentitySchema */ 'created_at': string; /** * The schema\'s ID. * @type {string} * @memberof ManagedIdentitySchema */ 'id': string; /** * The schema name This is set by the user and is for them to easily recognise their schema * @type {string} * @memberof ManagedIdentitySchema */ 'name': string; /** * Last Time Schema was Updated * @type {string} * @memberof ManagedIdentitySchema */ 'updated_at': string; } /** * Ory Identity Schema Validation Result * @export * @interface ManagedIdentitySchemaValidationResult */ export interface ManagedIdentitySchemaValidationResult { /** * * @type {string} * @memberof ManagedIdentitySchemaValidationResult */ 'message'?: string; /** * * @type {boolean} * @memberof ManagedIdentitySchemaValidationResult */ 'valid'?: boolean; } /** * * @export * @interface MemberInvite */ export interface MemberInvite { /** * The Project\'s Revision Creation Date * @type {string} * @memberof MemberInvite */ 'created_at': string; /** * The invite\'s ID. * @type {string} * @memberof MemberInvite */ 'id': string; /** * The invitee\'s email * @type {string} * @memberof MemberInvite */ 'invitee_email': string; /** * * @type {string} * @memberof MemberInvite */ 'invitee_id'?: string | null; /** * The invite owner\'s email Usually the project\'s owner email * @type {string} * @memberof MemberInvite */ 'owner_email': string; /** * The invite owner\'s ID Usually the project\'s owner * @type {string} * @memberof MemberInvite */ 'owner_id': string; /** * * @type {string} * @memberof MemberInvite */ 'project_id'?: string | null; /** * * @type {string} * @memberof MemberInvite */ 'role'?: string | null; /** * The invite\'s status Keeps track of the invites status such as pending, accepted, declined, expired pending PENDING accepted ACCEPTED declined DECLINED expired EXPIRED cancelled CANCELLED removed REMOVED * @type {string} * @memberof MemberInvite */ 'status': MemberInviteStatusEnum; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof MemberInvite */ 'updated_at': string; /** * * @type {string} * @memberof MemberInvite */ 'workspace_id'?: string | null; } export const MemberInviteStatusEnum = { Pending: 'pending', Accepted: 'accepted', Declined: 'declined', Expired: 'expired', Cancelled: 'cancelled', Removed: 'removed', UnknownDefaultOpenApi: '11184809' } as const; export type MemberInviteStatusEnum = typeof MemberInviteStatusEnum[keyof typeof MemberInviteStatusEnum]; /** * * @export * @interface Message */ export interface Message { /** * * @type {string} * @memberof Message */ 'body': string; /** * * @type {string} * @memberof Message */ 'channel'?: string; /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof Message */ 'created_at': string; /** * Dispatches store information about the attempts of delivering a message May contain an error if any happened, or just the `success` state. * @type {Array} * @memberof Message */ 'dispatches'?: Array; /** * * @type {string} * @memberof Message */ 'id': string; /** * * @type {string} * @memberof Message */ 'recipient': string; /** * * @type {number} * @memberof Message */ 'send_count': number; /** * * @type {CourierMessageStatus} * @memberof Message */ 'status': CourierMessageStatus; /** * * @type {string} * @memberof Message */ 'subject': string; /** * recovery_invalid TypeRecoveryInvalid recovery_valid TypeRecoveryValid recovery_code_invalid TypeRecoveryCodeInvalid recovery_code_valid TypeRecoveryCodeValid verification_invalid TypeVerificationInvalid verification_valid TypeVerificationValid verification_code_invalid TypeVerificationCodeInvalid verification_code_valid TypeVerificationCodeValid stub TypeTestStub login_code_valid TypeLoginCodeValid registration_code_valid TypeRegistrationCodeValid * @type {string} * @memberof Message */ 'template_type': MessageTemplateTypeEnum; /** * * @type {CourierMessageType} * @memberof Message */ 'type': CourierMessageType; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof Message */ 'updated_at': string; } export const MessageTemplateTypeEnum = { RecoveryInvalid: 'recovery_invalid', RecoveryValid: 'recovery_valid', RecoveryCodeInvalid: 'recovery_code_invalid', RecoveryCodeValid: 'recovery_code_valid', VerificationInvalid: 'verification_invalid', VerificationValid: 'verification_valid', VerificationCodeInvalid: 'verification_code_invalid', VerificationCodeValid: 'verification_code_valid', Stub: 'stub', LoginCodeValid: 'login_code_valid', RegistrationCodeValid: 'registration_code_valid', UnknownDefaultOpenApi: '11184809' } as const; export type MessageTemplateTypeEnum = typeof MessageTemplateTypeEnum[keyof typeof MessageTemplateTypeEnum]; /** * MessageDispatch represents an attempt of sending a courier message It contains the status of the attempt (failed or successful) and the error if any occured * @export * @interface MessageDispatch */ export interface MessageDispatch { /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof MessageDispatch */ 'created_at': string; /** * * @type {object} * @memberof MessageDispatch */ 'error'?: object; /** * The ID of this message dispatch * @type {string} * @memberof MessageDispatch */ 'id': string; /** * The ID of the message being dispatched * @type {string} * @memberof MessageDispatch */ 'message_id': string; /** * The status of this dispatch Either \"failed\" or \"success\" failed CourierMessageDispatchStatusFailed success CourierMessageDispatchStatusSuccess * @type {string} * @memberof MessageDispatch */ 'status': MessageDispatchStatusEnum; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof MessageDispatch */ 'updated_at': string; } export const MessageDispatchStatusEnum = { Failed: 'failed', Success: 'success', UnknownDefaultOpenApi: '11184809' } as const; export type MessageDispatchStatusEnum = typeof MessageDispatchStatusEnum[keyof typeof MessageDispatchStatusEnum]; /** * Represents a single datapoint/bucket of a time series * @export * @interface MetricsDatapoint */ export interface MetricsDatapoint { /** * The count of events that occured in this time * @type {number} * @memberof MetricsDatapoint */ 'count': number; /** * The time of the bucket * @type {string} * @memberof MetricsDatapoint */ 'time': string; } /** * * @export * @interface Money */ export interface Money { /** * * @type {number} * @memberof Money */ 'Cents'?: number; /** * * @type {string} * @memberof Money */ 'String'?: string; /** * * @type {string} * @memberof Money */ 'Unit'?: string; } /** * * @export * @interface Namespace */ export interface Namespace { /** * Name of the namespace. * @type {string} * @memberof Namespace */ 'name'?: string; } /** * * @export * @interface NeedsPrivilegedSessionError */ export interface NeedsPrivilegedSessionError { /** * * @type {GenericError} * @memberof NeedsPrivilegedSessionError */ 'error'?: GenericError; /** * Points to where to redirect the user to next. * @type {string} * @memberof NeedsPrivilegedSessionError */ 'redirect_browser_to': string; } /** * * @export * @interface NormalizedProject */ export interface NormalizedProject { /** * The Project\'s Creation Date * @type {string} * @memberof NormalizedProject */ 'created_at': string; /** * * @type {NormalizedProjectRevision} * @memberof NormalizedProject */ 'current_revision': NormalizedProjectRevision; /** * The environment of the project. prod Production stage Staging dev Development * @type {string} * @memberof NormalizedProject */ 'environment': NormalizedProjectEnvironmentEnum; /** * The project\'s data home region. eu-central EUCentral asia-northeast AsiaNorthEast us-east USEast us-west USWest us US global Global * @type {string} * @memberof NormalizedProject */ 'home_region': NormalizedProjectHomeRegionEnum; /** * * @type {Array} * @memberof NormalizedProject */ 'hosts': Array; /** * The project\'s ID. * @type {string} * @memberof NormalizedProject */ 'id': string; /** * The project\'s slug * @type {string} * @memberof NormalizedProject */ 'slug': string; /** * The state of the project. running Running halted Halted deleted Deleted * @type {string} * @memberof NormalizedProject */ 'state': NormalizedProjectStateEnum; /** * * @type {string} * @memberof NormalizedProject */ 'subscription_id'?: string | null; /** * * @type {string} * @memberof NormalizedProject */ 'subscription_plan'?: string | null; /** * Last Time Project was Updated * @type {string} * @memberof NormalizedProject */ 'updated_at': string; /** * * @type {Workspace} * @memberof NormalizedProject */ 'workspace'?: Workspace; /** * * @type {string} * @memberof NormalizedProject */ 'workspace_id': string | null; } export const NormalizedProjectEnvironmentEnum = { Prod: 'prod', Stage: 'stage', Dev: 'dev', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectEnvironmentEnum = typeof NormalizedProjectEnvironmentEnum[keyof typeof NormalizedProjectEnvironmentEnum]; export const NormalizedProjectHomeRegionEnum = { EuCentral: 'eu-central', AsiaNortheast: 'asia-northeast', UsEast: 'us-east', UsWest: 'us-west', Us: 'us', Global: 'global', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectHomeRegionEnum = typeof NormalizedProjectHomeRegionEnum[keyof typeof NormalizedProjectHomeRegionEnum]; export const NormalizedProjectStateEnum = { Running: 'running', Halted: 'halted', Deleted: 'deleted', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectStateEnum = typeof NormalizedProjectStateEnum[keyof typeof NormalizedProjectStateEnum]; /** * * @export * @interface NormalizedProjectRevision */ export interface NormalizedProjectRevision { /** * Holds the URL to the account experience\'s dark theme favicon (currently unused). * @type {string} * @memberof NormalizedProjectRevision */ 'account_experience_favicon_dark'?: string; /** * Holds the URL to the account experience\'s favicon. * @type {string} * @memberof NormalizedProjectRevision */ 'account_experience_favicon_light'?: string; /** * Holds the URL to the account experience\'s dark theme logo (currently unused). * @type {string} * @memberof NormalizedProjectRevision */ 'account_experience_logo_dark'?: string; /** * Holds the URL to the account experience\'s logo. * @type {string} * @memberof NormalizedProjectRevision */ 'account_experience_logo_light'?: string; /** * Holds the URL to the account experience\'s dark theme variables. * @type {string} * @memberof NormalizedProjectRevision */ 'account_experience_theme_variables_dark'?: string; /** * Holds the URL to the account experience\'s light theme variables. * @type {string} * @memberof NormalizedProjectRevision */ 'account_experience_theme_variables_light'?: string; /** * The Project\'s Revision Creation Date * @type {string} * @memberof NormalizedProjectRevision */ 'created_at'?: string; /** * Whether to disable the account experience welcome screen, which is hosted under `/ui/welcome`. * @type {boolean} * @memberof NormalizedProjectRevision */ 'disable_account_experience_welcome_screen'?: boolean; /** * Whether the new account experience is enabled and reachable. * @type {boolean} * @memberof NormalizedProjectRevision */ 'enable_ax_v2'?: boolean; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_allowed_top_level_claims'?: Array; /** * Automatically grant authorized OAuth2 Scope in OAuth2 Client Credentials Flow. Each OAuth2 Client is allowed to request a predefined OAuth2 Scope (for example `read write`). If this option is enabled, the full scope is automatically granted when performing the OAuth2 Client Credentials flow. If disabled, the OAuth2 Client has to request the scope in the OAuth2 request by providing the `scope` query parameter. Setting this option to true is common if you need compatibility with MITREid. This governs the \"oauth2.client_credentials.default_grant_allowed_scope\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_client_credentials_default_grant_allowed_scope'?: boolean; /** * Set to true if you want to exclude claim `nbf (not before)` part of access token. This governs the \"oauth2.exclude_not_before_claim\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_exclude_not_before_claim'?: boolean; /** * Configures if the issued at (`iat`) claim is required in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523). If set to `false`, the `iat` claim is required. Set this value to `true` only after careful consideration. This governs the \"oauth2.grant.jwt.iat_optional\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_grant_jwt_iat_optional'?: boolean; /** * Configures if the JSON Web Token ID (`jti`) claim is required in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523). If set to `false`, the `jti` claim is required. Set this value to `true` only after careful consideration. This governs the \"oauth2.grant.jwt.jti_optional\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_grant_jwt_jti_optional'?: boolean; /** * Configures what the maximum age of a JWT assertion used in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523) can be. This feature uses the `exp` claim and `iat` claim to calculate assertion age. Assertions exceeding the max age will be denied. Useful as a safety measure and recommended to keep below 720h. This governs the \"oauth2.grant.jwt.max_ttl\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_grant_jwt_max_ttl'?: string; /** * Configures the OAuth2 Grant Refresh Token Rotation Grace Period If set to `null` or `\"0s\"`, the graceful refresh token rotation is disabled. This governs the \"oauth2.grant.refresh_token_rotation_grace_period\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_grant_refresh_token_rotation_grace_period'?: string; /** * Set to false if you don\'t want to mirror custom claims under \'ext\'. This governs the \"oauth2.mirror_top_level_claims\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_mirror_top_level_claims'?: boolean; /** * Configures whether PKCE should be enforced for all OAuth2 Clients. This governs the \"oauth2.pkce.enforced\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_pkce_enforced'?: boolean; /** * Configures whether PKCE should be enforced for OAuth2 Clients without a client secret (public clients). This governs the \"oauth2.pkce.enforced_for_public_clients\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_pkce_enforced_for_public_clients'?: boolean; /** * Sets the Refresh Token Hook Endpoint. If set this endpoint will be called during the OAuth2 Token Refresh grant update the OAuth2 Access Token claims. This governs the \"oauth2.refresh_token_hook\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_refresh_token_hook'?: string; /** * Sets the token hook endpoint for all grant types. If set it will be called while providing token to customize claims. This governs the \"oauth2.token_hook.url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_oauth2_token_hook'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_oidc_dynamic_client_registration_default_scope'?: Array; /** * Configures OpenID Connect Dynamic Client Registration. This governs the \"oidc.dynamic_client_registration.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_oidc_dynamic_client_registration_enabled'?: boolean; /** * Configures OpenID Connect Discovery and overwrites the pairwise algorithm This governs the \"oidc.subject_identifiers.pairwise_salt\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_oidc_subject_identifiers_pairwise_salt'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_oidc_subject_identifiers_supported_types'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_secrets_cookie'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_secrets_system'?: Array; /** * Configures the Ory Hydra Cookie Same Site Legacy Workaround This governs the \"serve.cookies.same_site_legacy_workaround\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'hydra_serve_cookies_same_site_legacy_workaround'?: boolean; /** * Configures the Ory Hydra Cookie Same Site Mode This governs the \"serve.cookies.same_site_mode\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_serve_cookies_same_site_mode'?: string; /** * Defines access token type This governs the \"strategies.access_token\" setting. opaque Oauth2AccessTokenStrategyOpaque jwt Oauth2AccessTokenStrategyJwt * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_strategies_access_token'?: NormalizedProjectRevisionHydraStrategiesAccessTokenEnum; /** * Define the claim to use as the scope in the access token. This governs the \"strategies.jwt.scope_claim\" setting: list: The scope claim is an array of strings named `scope`: `{ \"scope\": [\"read\", \"write\"] }` string: The scope claim is a space delimited list of strings named `scp`: `{ \"scp\": \"read write\" }` both: The scope claim is both a space delimited list and an array of strings named `scope` and `scp`: `{ \"scope\": [\"read\", \"write\"], \"scp\": \"read write\" }` list OAuth2JWTScopeClaimList string OAuth2JWTScopeClaimString both OAuth2JWTScopeClaimBoth * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_strategies_jwt_scope_claim'?: NormalizedProjectRevisionHydraStrategiesJwtScopeClaimEnum; /** * Defines how scopes are matched. For more details have a look at https://github.com/ory/fosite#scopes This governs the \"strategies.scope\" setting. exact Oauth2ScopeStrategyExact wildcard Oauth2ScopeStrategyWildcard * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_strategies_scope'?: NormalizedProjectRevisionHydraStrategiesScopeEnum; /** * This governs the \"ttl.access_token\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_ttl_access_token'?: string; /** * Configures how long refresh tokens are valid. Set to -1 for refresh tokens to never expire. This is not recommended! This governs the \"ttl.auth_code\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_ttl_auth_code'?: string; /** * This governs the \"ttl.id_token\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_ttl_id_token'?: string; /** * Configures how long a user login and consent flow may take. This governs the \"ttl.login_consent_request\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_ttl_login_consent_request'?: string; /** * Configures how long refresh tokens are valid. Set to -1 for refresh tokens to never expire. This is not recommended! This governs the \"ttl.refresh_token\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_ttl_refresh_token'?: string; /** * Sets the OAuth2 Consent Endpoint URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.consent\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_consent'?: string; /** * Sets the OAuth2 Error URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.error\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_error'?: string; /** * Sets the OAuth2 Login Endpoint URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.login\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_login'?: string; /** * Sets the logout endpoint. Defaults to the Ory Account Experience if left empty. This governs the \"urls.logout\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_logout'?: string; /** * When an OAuth2-related user agent requests to log out, they will be redirected to this url afterwards per default. Defaults to the Ory Account Experience in development and your application in production mode when a custom domain is connected. This governs the \"urls.post_logout_redirect\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_post_logout_redirect'?: string; /** * Sets the OAuth2 Registration Endpoint URL of the OAuth2 User Login & Consent flow. Defaults to the Ory Account Experience if left empty. This governs the \"urls.registration\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_registration'?: string; /** * This value will be used as the issuer in access and ID tokens. It must be specified and using HTTPS protocol, unless the development mode is enabled. On the Ory Network it will be very rare that you want to modify this value. If left empty, it will default to the correct value for the Ory Network. This governs the \"urls.self.issuer\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_urls_self_issuer'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_jwks_broadcast_keys'?: Array; /** * Configures OpenID Connect Discovery and overwrites the OAuth2 Authorization URL. This governs the \"webfinger.oidc.discovery.auth_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_auth_url'?: string; /** * Configures OpenID Connect Discovery and overwrites the OpenID Connect Dynamic Client Registration Endpoint. This governs the \"webfinger.oidc.discovery.client_registration_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_client_registration_url'?: string; /** * Configures OpenID Connect Discovery and overwrites the JWKS URL. This governs the \"webfinger.oidc.discovery.jwks_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_jwks_url'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_supported_claims'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_supported_scope'?: Array; /** * Configures OpenID Connect Discovery and overwrites the OAuth2 Token URL. This governs the \"webfinger.oidc.discovery.token_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_token_url'?: string; /** * Configures OpenID Connect Discovery and overwrites userinfo endpoint to be advertised at the OpenID Connect Discovery endpoint /.well-known/openid-configuration. Defaults to Ory Hydra\'s userinfo endpoint at /userinfo. Set this value if you want to handle this endpoint yourself. This governs the \"webfinger.oidc.discovery.userinfo_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'hydra_webfinger_oidc_discovery_userinfo_url'?: string; /** * The revision ID. * @type {string} * @memberof NormalizedProjectRevision */ 'id'?: string; /** * The Revisions\' Keto Namespace Configuration The string is a URL pointing to an OPL file with the configuration. * @type {string} * @memberof NormalizedProjectRevision */ 'keto_namespace_configuration'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'keto_namespaces'?: Array; /** * Configures the Ory Kratos Cookie SameSite Attribute This governs the \"cookies.same_site\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_cookies_same_site'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_courier_channels'?: Array; /** * The delivery strategy to use when sending emails `smtp`: Use SMTP server `http`: Use the built in HTTP client to send the email to some remote service * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_delivery_strategy'?: string; /** * The location of the API key to use in the HTTP email sending service\'s authentication `header`: Send the key value pair as a header `cookie`: Send the key value pair as a cookie This governs the \"courier.http.auth.config.in\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_auth_api_key_in'?: string; /** * The name of the API key to use in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.name\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_auth_api_key_name'?: string; /** * The value of the API key to use in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.value\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_auth_api_key_value'?: string; /** * The password to use for basic auth in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.password\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_auth_basic_auth_password'?: string; /** * The user to use for basic auth in the HTTP email sending service\'s authentication This governs the \"courier.http.auth.config.user\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_auth_basic_auth_user'?: string; /** * The authentication type to use while contacting the remote HTTP email sending service `basic_auth`: Use Basic Authentication `api_key`: Use API Key Authentication in a header or cookie * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_auth_type'?: string; /** * The Jsonnet template to generate the body to send to the remote HTTP email sending service Should be valid Jsonnet and base64 encoded This governs the \"courier.http.body\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_body'?: string; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_headers'?: object | null; /** * The http METHOD to use when calling the remote HTTP email sending service * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_method'?: string; /** * The URL of the remote HTTP email sending service This governs the \"courier.http.url\" setting * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_http_request_config_url'?: string; /** * Configures the Ory Kratos SMTP Connection URI This governs the \"courier.smtp.connection_uri\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_smtp_connection_uri'?: string; /** * Configures the Ory Kratos SMTP From Address This governs the \"courier.smtp.from_address\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_smtp_from_address'?: string; /** * Configures the Ory Kratos SMTP From Name This governs the \"courier.smtp.from_name\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_smtp_from_name'?: string; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof NormalizedProjectRevision */ 'kratos_courier_smtp_headers'?: object | null; /** * Configures the local_name to use in SMTP connections This governs the \"courier.smtp.local_name\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_smtp_local_name'?: string; /** * Configures the Ory Kratos Valid Login via Code Email Body HTML Template This governs the \"courier.smtp.templates.login_code.valid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_login_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Login via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.login_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_login_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Login via Code Email Subject Template This governs the \"courier.smtp.templates.login_code.valid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_login_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Login via Code SMS plain text body This governs the \"courier.smtp.templates.login_code.valid.sms.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_login_code_valid_sms_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Recovery via Code Email Body HTML Template This governs the \"courier.smtp.templates.recovery_code.invalid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_code_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Recovery via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery_code.invalid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_code_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Recovery via Code Email Subject Template This governs the \"courier.smtp.templates.recovery_code.invalid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_code_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Recovery via Code Email Body HTML Template This governs the \"courier.smtp.templates.recovery_code.valid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Recovery via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Recovery via Code Email Subject Template This governs the \"courier.smtp.templates.recovery_code.valid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Invalid Recovery Email Body HTML Template This governs the \"courier.smtp.templates.recovery.invalid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Recovery Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery.invalid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Recovery Email Subject Template This governs the \"courier.smtp.templates.recovery.invalid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Recovery Email Body HTML Template This governs the \"courier.smtp.templates.recovery.valid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Recovery Email Body Plaintext Template This governs the \"courier.smtp.templates.recovery.valid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Recovery Email Subject Template This governs the \"courier.smtp.templates.recovery.valid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_recovery_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Body HTML Template This governs the \"courier.smtp.templates.registration_code.valid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_registration_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.registration_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_registration_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Subject Template This governs the \"courier.smtp.templates.registration_code.valid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_registration_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Registration via Code Email Subject Template This governs the \"courier.smtp.templates.registration_code.valid.sms.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_registration_code_valid_sms_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification via Code Email Body HTML Template This governs the \"courier.smtp.templates.verification_code.invalid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Verification via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.verification_code.invalid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification via Code Email Subject Template This governs the \"courier.smtp.templates.verification_code.invalid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Verification via Code Email Body HTML Template This governs the \"courier.smtp.templates.verification_code.valid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Verification via Code Email Body Plaintext Template This governs the \"courier.smtp.templates.verification_code.valid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Verification via Code Email Subject Template This governs the \"courier.smtp.templates.verification_code.valid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_valid_email_subject'?: string; /** * Configures the Ory Kratos Valid Verification via Code SMS Body Plaintext This governs the \"courier.smtp.templates.verification_code.valid.sms.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_code_valid_sms_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification Email Body HTML Template This governs the \"courier.smtp.templates.verification.invalid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_invalid_email_body_html'?: string; /** * Configures the Ory Kratos Invalid Verification Email Body Plaintext Template This governs the \"courier.smtp.templates.verification.invalid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_invalid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Invalid Verification Email Subject Template This governs the \"courier.smtp.templates.verification.invalid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_invalid_email_subject'?: string; /** * Configures the Ory Kratos Valid Verification Email Body HTML Template This governs the \"courier.smtp.templates.verification.valid.email.body.html\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_valid_email_body_html'?: string; /** * Configures the Ory Kratos Valid Verification Email Body Plaintext Template This governs the \"courier.smtp.templates.verification.valid.email.body.plaintext\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_valid_email_body_plaintext'?: string; /** * Configures the Ory Kratos Valid Verification Email Subject Template This governs the \"courier.smtp.templates.verification.valid.email.subject\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_courier_templates_verification_valid_email_subject'?: string; /** * Configures the Ory Kratos Session caching feature flag This governs the \"feature_flags.cacheable_sessions\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_feature_flags_cacheable_sessions'?: boolean; /** * Configures the Ory Kratos Session caching max-age feature flag This governs the \"feature_flags.cacheable_sessions_max_age\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_feature_flags_cacheable_sessions_max_age'?: string; /** * Configures the Ory Kratos Faster Session Extend setting If enabled allows faster session extension by skipping the session lookup and returning 201 instead of 200. Disabling this feature will be deprecated in the future. This governs the \"feature_flags.faster_session_extend\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_feature_flags_faster_session_extend'?: boolean; /** * Configures the Ory Kratos Session use_continue_with_transitions flag This governs the \"feature_flags.use_continue_with_transitions\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_feature_flags_use_continue_with_transitions'?: boolean; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_identity_schemas'?: Array; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof NormalizedProjectRevision */ 'kratos_oauth2_provider_headers'?: object | null; /** * Kratos OAuth2 Provider Override Return To Enabling this allows Kratos to set the return_to parameter automatically to the OAuth2 request URL on the login flow, allowing complex flows such as recovery to continue to the initial OAuth2 flow. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_oauth2_provider_override_return_to'?: boolean; /** * The Revisions\' OAuth2 Provider Integration URL This governs the \"oauth2_provider.url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_oauth2_provider_url'?: string; /** * Configures the default read consistency level for identity APIs This governs the `preview.default_read_consistency_level` setting. The read consistency level determines the consistency guarantee for reads: strong (slow): The read is guaranteed to return the most recent data committed at the start of the read. eventual (very fast): The result will return data that is about 4.8 seconds old. Setting the default consistency level to `eventual` may cause regressions in the future as we add consistency controls to more APIs. Currently, the following APIs will be affected by this setting: `GET /admin/identities` Defaults to \"strong\" for new and existing projects. This feature is in preview. Use with caution. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_preview_default_read_consistency_level'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_secrets_cipher'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_secrets_cookie'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_secrets_default'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_allowed_return_urls'?: Array; /** * Configures the Ory Kratos Default Return URL This governs the \"selfservice.allowed_return_urls\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_default_browser_return_url'?: string; /** * Configures the Ory Kratos Error UI URL This governs the \"selfservice.flows.error.ui_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_error_ui_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.code.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_code_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login Default Return URL This governs the \"selfservice.flows.login.after.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.lookup_secret.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_lookup_secret_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After OIDC Default Return URL This governs the \"selfservice.flows.login.after.oidc.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_oidc_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Passkey Default Return URL This governs the \"selfservice.flows.login.after.passkey.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_passkey_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.login.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_password_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After Password Default Return URL This governs the \"selfservice.flows.totp.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_totp_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login After WebAuthn Default Return URL This governs the \"selfservice.flows.login.after.webauthn.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_after_webauthn_default_browser_return_url'?: string; /** * Configures the Ory Kratos Login Lifespan This governs the \"selfservice.flows.login.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_lifespan'?: string; /** * Configures the Ory Kratos Login UI URL This governs the \"selfservice.flows.login.ui_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_login_ui_url'?: string; /** * Configures the Ory Kratos Logout Default Return URL This governs the \"selfservice.flows.logout.after.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_logout_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Recovery Default Return URL This governs the \"selfservice.flows.recovery.after.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_recovery_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Recovery Enabled Setting This governs the \"selfservice.flows.recovery.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_recovery_enabled'?: boolean; /** * Configures the Ory Kratos Recovery Lifespan This governs the \"selfservice.flows.recovery.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_recovery_lifespan'?: string; /** * Configures whether to notify unknown recipients of a Ory Kratos recovery flow This governs the \"selfservice.flows.recovery.notify_unknown_recipients\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_recovery_notify_unknown_recipients'?: boolean; /** * Configures the Ory Kratos Recovery UI URL This governs the \"selfservice.flows.recovery.ui_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_recovery_ui_url'?: string; /** * Configures the Ory Kratos Recovery strategy to use (\"link\" or \"code\") This governs the \"selfservice.flows.recovery.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_recovery_use'?: NormalizedProjectRevisionKratosSelfserviceFlowsRecoveryUseEnum; /** * Configures the Ory Kratos Registration After Code Default Return URL This governs the \"selfservice.flows.registration.after.code.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_after_code_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration Default Return URL This governs the \"selfservice.flows.registration.after.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After OIDC Default Return URL This governs the \"selfservice.flows.registration.after.oidc.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_after_oidc_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After Passkey Default Return URL This governs the \"selfservice.flows.registration.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_after_passkey_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After Password Default Return URL This governs the \"selfservice.flows.registration.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_after_password_default_browser_return_url'?: string; /** * Configures the Ory Kratos Registration After Webauthn Default Return URL This governs the \"selfservice.flows.registration.after.webauthn.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_after_webauthn_default_browser_return_url'?: string; /** * Disable two-step registration Two-step registration is a significantly improved sign up flow and recommended when using more than one sign up methods. To revert to one-step registration, set this to `true`. This governs the \"selfservice.flows.registration.enable_legacy_one_step\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_enable_legacy_one_step'?: boolean; /** * Configures the Whether Ory Kratos Registration is Enabled This governs the \"selfservice.flows.registration.enabled\" setting.0 * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_enabled'?: boolean; /** * Configures the Ory Kratos Registration Lifespan This governs the \"selfservice.flows.registration.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_lifespan'?: string; /** * Configures the Ory Kratos Registration Login Hints Shows helpful information when a user tries to sign up with a duplicate account. This governs the \"selfservice.flows.registration.login_hints\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_login_hints'?: boolean; /** * Configures the Ory Kratos Registration UI URL This governs the \"selfservice.flows.registration.ui_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_registration_ui_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL This governs the \"selfservice.flows.settings.after.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Lookup Secrets This governs the \"selfservice.flows.settings.after.lookup_secret.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_lookup_secret_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Social Sign In This governs the \"selfservice.flows.settings.after.oidc.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_oidc_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Passkey This governs the \"selfservice.flows.settings.after.passkey.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_passkey_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Passwords This governs the \"selfservice.flows.settings.after.password.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_password_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating Profiles This governs the \"selfservice.flows.settings.after.profile.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_profile_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating TOTP This governs the \"selfservice.flows.settings.after.totp.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_totp_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Default Return URL After Updating WebAuthn This governs the \"selfservice.flows.settings.after.webauthn.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_after_webauthn_default_browser_return_url'?: string; /** * Configures the Ory Kratos Settings Lifespan This governs the \"selfservice.flows.settings.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_lifespan'?: string; /** * Configures the Ory Kratos Settings Privileged Session Max Age This governs the \"selfservice.flows.settings.privileged_session_max_age\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_privileged_session_max_age'?: string; /** * Configures the Ory Kratos Settings Required AAL This governs the \"selfservice.flows.settings.required_aal\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_required_aal'?: string; /** * Configures the Ory Kratos Settings UI URL This governs the \"selfservice.flows.settings.ui_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_settings_ui_url'?: string; /** * Configures the Ory Kratos Verification Default Return URL This governs the \"selfservice.flows.verification.after.default_browser_return_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_verification_after_default_browser_return_url'?: string; /** * Configures the Ory Kratos Verification Enabled Setting This governs the \"selfservice.flows.verification.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_verification_enabled'?: boolean; /** * Configures the Ory Kratos Verification Lifespan This governs the \"selfservice.flows.verification.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_verification_lifespan'?: string; /** * Configures whether to notify unknown recipients of a Ory Kratos verification flow This governs the \"selfservice.flows.verification.notify_unknown_recipients\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_verification_notify_unknown_recipients'?: boolean; /** * Configures the Ory Kratos Verification UI URL This governs the \"selfservice.flows.verification.ui_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_verification_ui_url'?: string; /** * Configures the Ory Kratos Strategy to use for Verification This governs the \"selfservice.flows.verification.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_flows_verification_use'?: NormalizedProjectRevisionKratosSelfserviceFlowsVerificationUseEnum; /** * Configures the Cloudflare Turnstile site secret for CAPTCHA protection The site secret is private and will be never be shared with the client. This key is write only and the value will not be returned in response to a read request. Reach out to your account manager to enable this feature. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_captcha_config_cf_turnstile_secret'?: string; /** * Configures the Cloudflare Turnstile site key for CAPTCHA protection The site key is public and will be shared with the client. Reach out to your account manager to enable this feature. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey'?: string; /** * Configures the Ory Kratos Self-Service Methods\' Captcha Enabled Setting Reach out to your account manager to enable this feature. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_captcha_enabled'?: boolean; /** * Configures the Ory Kratos Code Method\'s lifespan This governs the \"selfservice.methods.code.config.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_code_config_lifespan'?: string; /** * Enables a fallback method required in certain legacy use cases. This governs the \"selfservice.methods.code.config.missing_credential_fallback_enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_code_config_missing_credential_fallback_enabled'?: boolean; /** * Configures whether Ory Kratos Code Method is enabled This governs the \"selfservice.methods.code.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_code_enabled'?: boolean; /** * Configures whether the code method can be used to fulfil MFA flows This governs the \"selfservice.methods.code.mfa_enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_code_mfa_enabled'?: boolean; /** * Configures whether Ory Kratos Passwordless should use the Code Method This governs the \"selfservice.methods.code.passwordless_enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_code_passwordless_enabled'?: boolean; /** * This setting allows the code method to always login a user with code if they have registered with another authentication method such as password or social sign in. This governs the \"selfservice.methods.code.passwordless_login_fallback_enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_code_passwordless_login_fallback_enabled'?: boolean; /** * Configures the Base URL which Recovery, Verification, and Login Links Point to It is recommended to leave this value empty. It will be appropriately configured to the best matching domain (e.g. when using custom domains) automatically. This governs the \"selfservice.methods.link.config.base_url\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_link_config_base_url'?: string; /** * Configures the Ory Kratos Link Method\'s lifespan This governs the \"selfservice.methods.link.config.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_link_config_lifespan'?: string; /** * Configures whether Ory Kratos Link Method is enabled This governs the \"selfservice.methods.link.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_link_enabled'?: boolean; /** * Configures whether Ory Kratos TOTP Lookup Secret is enabled This governs the \"selfservice.methods.lookup_secret.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_lookup_secret_enabled'?: boolean; /** * Configures the Ory Kratos Third Party / OpenID Connect base redirect URI This governs the \"selfservice.methods.oidc.config.base_redirect_uri\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_oidc_config_base_redirect_uri'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_oidc_config_providers'?: Array; /** * Configures whether Ory Kratos allows auto-linking of OIDC credentials without a subject This governs the \"selfservice.methods.oidc.enable_auto_link_policy\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_oidc_enable_auto_link_policy'?: boolean; /** * Configures whether Ory Kratos Third Party / OpenID Connect Login is enabled This governs the \"selfservice.methods.oidc.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_oidc_enabled'?: boolean; /** * Configures the Ory Kratos Passkey RP Display Name This governs the \"selfservice.methods.passkey.config.rp.display_name\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_passkey_config_rp_display_name'?: string; /** * Configures the Ory Kratos Passkey RP ID This governs the \"selfservice.methods.passkey.config.rp.id\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_passkey_config_rp_id'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_passkey_config_rp_origins'?: Array; /** * Configures whether Ory Kratos Passkey authentication is enabled This governs the \"selfservice.methods.passkey.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_passkey_enabled'?: boolean; /** * Configures whether Ory Kratos Password HIBP Checks is enabled This governs the \"selfservice.methods.password.config.haveibeenpwned_enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_password_config_haveibeenpwned_enabled'?: boolean; /** * Configures whether Ory Kratos Password should disable the similarity policy. This governs the \"selfservice.methods.password.config.identifier_similarity_check_enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_password_config_identifier_similarity_check_enabled'?: boolean; /** * Configures whether Ory Kratos Password Should ignore HIBPWND Network Errors This governs the \"selfservice.methods.password.config.ignore_network_errors\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_password_config_ignore_network_errors'?: boolean; /** * Configures Ory Kratos Password Max Breaches Detection This governs the \"selfservice.methods.password.config.max_breaches\" setting. * @type {number} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_password_config_max_breaches'?: number; /** * Configures the minimum length of passwords. This governs the \"selfservice.methods.password.config.min_password_length\" setting. * @type {number} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_password_config_min_password_length'?: number; /** * Configures whether Ory Kratos Password Method is enabled This governs the \"selfservice.methods.password.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_password_enabled'?: boolean; /** * Configures whether Ory Kratos Profile Method is enabled This governs the \"selfservice.methods.profile.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_profile_enabled'?: boolean; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_saml_config_providers'?: Array; /** * Configures whether Ory Kratos SAML Login is enabled This governs the \"selfservice.methods.saml.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_saml_enabled'?: boolean; /** * Configures Ory Kratos TOTP Issuer This governs the \"selfservice.methods.totp.config.issuer\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_totp_config_issuer'?: string; /** * Configures whether Ory Kratos TOTP Method is enabled This governs the \"selfservice.methods.totp.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_totp_enabled'?: boolean; /** * Configures whether Ory Kratos Webauthn is used for passwordless flows This governs the \"selfservice.methods.webauthn.config.passwordless\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_webauthn_config_passwordless'?: boolean; /** * Configures the Ory Kratos Webauthn RP Display Name This governs the \"selfservice.methods.webauthn.config.rp.display_name\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_webauthn_config_rp_display_name'?: string; /** * Configures the Ory Kratos Webauthn RP Icon This governs the \"selfservice.methods.webauthn.config.rp.icon\" setting. Deprecated: This value will be ignored due to security considerations. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_webauthn_config_rp_icon'?: string; /** * Configures the Ory Kratos Webauthn RP ID This governs the \"selfservice.methods.webauthn.config.rp.id\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_webauthn_config_rp_id'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_webauthn_config_rp_origins'?: Array; /** * Configures whether Ory Kratos Webauthn is enabled This governs the \"selfservice.methods.webauthn.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_selfservice_methods_webauthn_enabled'?: boolean; /** * Configures the Ory Kratos Session Cookie Persistent Attribute This governs the \"session.cookie.persistent\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'kratos_session_cookie_persistent'?: boolean; /** * Configures the Ory Kratos Session Cookie SameSite Attribute This governs the \"session.cookie.same_site\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_session_cookie_same_site'?: string; /** * Configures the Ory Kratos Session Lifespan This governs the \"session.lifespan\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_session_lifespan'?: string; /** * Configures the Ory Kratos Session Whoami AAL requirement This governs the \"session.whoami.required_aal\" setting. * @type {string} * @memberof NormalizedProjectRevision */ 'kratos_session_whoami_required_aal'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'kratos_session_whoami_tokenizer_templates'?: Array; /** * The project\'s name. * @type {string} * @memberof NormalizedProjectRevision */ 'name': string; /** * The Revision\'s Project ID * @type {string} * @memberof NormalizedProjectRevision */ 'project_id'?: string; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'project_revision_hooks'?: Array; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'serve_admin_cors_allowed_origins'?: Array; /** * Enable CORS headers on all admin APIs This governs the \"serve.admin.cors.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'serve_admin_cors_enabled'?: boolean; /** * * @type {Array} * @memberof NormalizedProjectRevision */ 'serve_public_cors_allowed_origins'?: Array; /** * Enable CORS headers on all public APIs This governs the \"serve.public.cors.enabled\" setting. * @type {boolean} * @memberof NormalizedProjectRevision */ 'serve_public_cors_enabled'?: boolean; /** * Whether the project should employ strict security measures. Setting this to true is recommended for going into production. * @type {boolean} * @memberof NormalizedProjectRevision */ 'strict_security'?: boolean; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof NormalizedProjectRevision */ 'updated_at'?: string; } export const NormalizedProjectRevisionHydraStrategiesAccessTokenEnum = { Opaque: 'opaque', Jwt: 'jwt', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionHydraStrategiesAccessTokenEnum = typeof NormalizedProjectRevisionHydraStrategiesAccessTokenEnum[keyof typeof NormalizedProjectRevisionHydraStrategiesAccessTokenEnum]; export const NormalizedProjectRevisionHydraStrategiesJwtScopeClaimEnum = { List: 'list', String: 'string', Both: 'both', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionHydraStrategiesJwtScopeClaimEnum = typeof NormalizedProjectRevisionHydraStrategiesJwtScopeClaimEnum[keyof typeof NormalizedProjectRevisionHydraStrategiesJwtScopeClaimEnum]; export const NormalizedProjectRevisionHydraStrategiesScopeEnum = { Exact: 'exact', Wildcard: 'wildcard', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionHydraStrategiesScopeEnum = typeof NormalizedProjectRevisionHydraStrategiesScopeEnum[keyof typeof NormalizedProjectRevisionHydraStrategiesScopeEnum]; export const NormalizedProjectRevisionKratosSelfserviceFlowsRecoveryUseEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionKratosSelfserviceFlowsRecoveryUseEnum = typeof NormalizedProjectRevisionKratosSelfserviceFlowsRecoveryUseEnum[keyof typeof NormalizedProjectRevisionKratosSelfserviceFlowsRecoveryUseEnum]; export const NormalizedProjectRevisionKratosSelfserviceFlowsVerificationUseEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionKratosSelfserviceFlowsVerificationUseEnum = typeof NormalizedProjectRevisionKratosSelfserviceFlowsVerificationUseEnum[keyof typeof NormalizedProjectRevisionKratosSelfserviceFlowsVerificationUseEnum]; /** * * @export * @interface NormalizedProjectRevisionCourierChannel */ export interface NormalizedProjectRevisionCourierChannel { /** * The Channel\'s public ID * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'channel_id': string; /** * The creation date * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'created_at'?: string; /** * API key location Can either be \"header\" or \"query\" * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_auth_config_api_key_in'?: string; /** * API key name Only used if the auth type is api_key * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_auth_config_api_key_name'?: string; /** * API key value Only used if the auth type is api_key * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_auth_config_api_key_value'?: string; /** * Basic Auth Password Only used if the auth type is basic_auth * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_auth_config_basic_auth_password'?: string; /** * Basic Auth Username Only used if the auth type is basic_auth * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_auth_config_basic_auth_user'?: string; /** * HTTP Auth Method to use for the HTTP call Can either be basic_auth or api_key basic_auth CourierChannelAuthTypeBasicAuth api_key CourierChannelAuthTypeApiKey * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_auth_type'?: NormalizedProjectRevisionCourierChannelRequestConfigAuthTypeEnum; /** * URI pointing to the JsonNet template used for HTTP body payload generation. * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_body': string; /** * NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable- * @type {object} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_headers'?: object | null; /** * The HTTP method to use (GET, POST, etc) for the HTTP call * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_method': string; /** * * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'request_config_url'?: string; /** * Last upate time * @type {string} * @memberof NormalizedProjectRevisionCourierChannel */ 'updated_at'?: string; } export const NormalizedProjectRevisionCourierChannelRequestConfigAuthTypeEnum = { BasicAuth: 'basic_auth', ApiKey: 'api_key', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionCourierChannelRequestConfigAuthTypeEnum = typeof NormalizedProjectRevisionCourierChannelRequestConfigAuthTypeEnum[keyof typeof NormalizedProjectRevisionCourierChannelRequestConfigAuthTypeEnum]; /** * * @export * @interface NormalizedProjectRevisionHook */ export interface NormalizedProjectRevisionHook { /** * The Hooks Config Key * @type {string} * @memberof NormalizedProjectRevisionHook */ 'config_key': string; /** * The Project\'s Revision Creation Date * @type {string} * @memberof NormalizedProjectRevisionHook */ 'created_at'?: string; /** * The Hook Type * @type {string} * @memberof NormalizedProjectRevisionHook */ 'hook': string; /** * ID of the entry * @type {string} * @memberof NormalizedProjectRevisionHook */ 'id'?: string; /** * The Revision\'s ID this schema belongs to * @type {string} * @memberof NormalizedProjectRevisionHook */ 'project_revision_id'?: string; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof NormalizedProjectRevisionHook */ 'updated_at'?: string; /** * Whether to send the API Key in the HTTP Header or as a HTTP Cookie * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_auth_api_key_in'?: string; /** * The name of the api key * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_auth_api_key_name'?: string; /** * The value of the api key * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_auth_api_key_value'?: string; /** * The password to be sent in the HTTP Basic Auth Header * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_auth_basic_auth_password'?: string; /** * The username to be sent in the HTTP Basic Auth Header * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_auth_basic_auth_user'?: string; /** * HTTP Auth Method to use for the Web-Hook * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_auth_type'?: string; /** * URI pointing to the JsonNet template used for Web-Hook payload generation. Only used for those HTTP methods, which support HTTP body payloads. * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_body'?: string; /** * If enabled allows the web hook to interrupt / abort the self-service flow. It only applies to certain flows (registration/verification/login/settings) and requires a valid response format. * @type {boolean} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_can_interrupt'?: boolean; /** * The HTTP method to use (GET, POST, etc) for the Web-Hook * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_method'?: string; /** * Whether to ignore the Web Hook response * @type {boolean} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_response_ignore'?: boolean; /** * Whether to parse the Web Hook response * @type {boolean} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_response_parse'?: boolean; /** * The URL the Web-Hook should call * @type {string} * @memberof NormalizedProjectRevisionHook */ 'web_hook_config_url'?: string; } /** * * @export * @interface NormalizedProjectRevisionIdentitySchema */ export interface NormalizedProjectRevisionIdentitySchema { /** * The Project\'s Revision Creation Date * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'created_at'?: string; /** * The unique ID of this entry. * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'id'?: string; /** * * @type {ManagedIdentitySchema} * @memberof NormalizedProjectRevisionIdentitySchema */ 'identity_schema'?: ManagedIdentitySchema; /** * * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'identity_schema_id'?: string | null; /** * The imported (named) ID of the Identity Schema referenced in the Ory Kratos config. * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'import_id'?: string; /** * The ImportURL can be used to import an Identity Schema from a bse64 encoded string. In the future, this key also support HTTPS and other sources! If you import an Ory Kratos configuration, this would be akin to the `identity.schemas.#.url` key. The configuration will always return the import URL when you fetch it from the API. * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'import_url'?: string; /** * If true sets the default schema for identities Only one schema can ever be the default schema. If you try to add two schemas with default to true, the request will fail. * @type {boolean} * @memberof NormalizedProjectRevisionIdentitySchema */ 'is_default'?: boolean; /** * Use a preset instead of a custom identity schema. * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'preset'?: string; /** * The Revision\'s ID this schema belongs to * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'project_revision_id'?: string; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof NormalizedProjectRevisionIdentitySchema */ 'updated_at'?: string; } /** * * @export * @interface NormalizedProjectRevisionSAMLProvider */ export interface NormalizedProjectRevisionSAMLProvider { /** * The Project\'s Revision Creation Date * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'created_at'?: string; /** * * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'id'?: string; /** * Label represents an optional label which can be used in the UI generation. * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'label'?: string; /** * Mapper specifies the JSONNet code snippet which uses the OpenID Connect Provider\'s data (e.g. GitHub or Google profile information) to hydrate the identity\'s data. * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'mapper_url'?: string; /** * * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'organization_id'?: string | null; /** * The Revision\'s ID this schema belongs to * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'project_revision_id'?: string; /** * ID is the provider\'s ID * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'provider_id'?: string; /** * RawIDPMetadataXML is the raw XML metadata of the IDP. * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'raw_idp_metadata_xml'?: string; /** * State indicates the state of the provider Only providers with state `enabled` will be used for authentication enabled ThirdPartyProviderStateEnabled disabled ThirdPartyProviderStateDisabled * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'state'?: NormalizedProjectRevisionSAMLProviderStateEnum; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof NormalizedProjectRevisionSAMLProvider */ 'updated_at'?: string; } export const NormalizedProjectRevisionSAMLProviderStateEnum = { Enabled: 'enabled', Disabled: 'disabled', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionSAMLProviderStateEnum = typeof NormalizedProjectRevisionSAMLProviderStateEnum[keyof typeof NormalizedProjectRevisionSAMLProviderStateEnum]; /** * * @export * @interface NormalizedProjectRevisionThirdPartyProvider */ export interface NormalizedProjectRevisionThirdPartyProvider { /** * * @type {Array} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'additional_id_token_audiences'?: Array; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'apple_private_key'?: string | null; /** * Apple Private Key Identifier Sign In with Apple Private Key Identifier needed for generating a JWT token for client secret * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'apple_private_key_id'?: string; /** * Apple Developer Team ID Apple Developer Team ID needed for generating a JWT token for client secret * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'apple_team_id'?: string; /** * AuthURL is the authorize url, typically something like: https://example.org/oauth2/auth Should only be used when the OAuth2 / OpenID Connect server is not supporting OpenID Connect Discovery and when `provider` is set to `generic`. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'auth_url'?: string; /** * Tenant is the Azure AD Tenant to use for authentication, and must be set when `provider` is set to `microsoft`. Can be either `common`, `organizations`, `consumers` for a multitenant application or a specific tenant like `8eaef023-2b34-4da1-9baa-8bc8c9d6a490` or `contoso.onmicrosoft.com`. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'azure_tenant'?: string; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'claims_source'?: string | null; /** * ClientID is the application\'s Client ID. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'client_id'?: string; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'client_secret'?: string | null; /** * The Project\'s Revision Creation Date * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'created_at'?: string; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'fedcm_config_url'?: string | null; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'id'?: string; /** * IssuerURL is the OpenID Connect Server URL. You can leave this empty if `provider` is not set to `generic`. If set, neither `auth_url` nor `token_url` are required. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'issuer_url'?: string; /** * Label represents an optional label which can be used in the UI generation. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'label'?: string; /** * Mapper specifies the JSONNet code snippet which uses the OpenID Connect Provider\'s data (e.g. GitHub or Google profile information) to hydrate the identity\'s data. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'mapper_url'?: string; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'net_id_token_origin_header'?: string | null; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'organization_id'?: string | null; /** * PKCE controls if the OpenID Connect OAuth2 flow should use PKCE (Proof Key for Code Exchange). Possible values are: `auto` (default), `never`, `force`. `auto`: PKCE is used if the provider supports it. Requires setting `issuer_url`. `never`: Disable PKCE entirely for this provider, even if the provider advertises support for it. `force`: Always use PKCE, even if the provider does not advertise support for it. OAuth2 flows will fail if the provider does not support PKCE. IMPORTANT: If you set this to `force`, you must whitelist a different return URL for your OAuth2 client in the provider\'s configuration. Instead of /self-service/methods/oidc/callback/, you must use /self-service/methods/oidc/callback (Note the missing path segment and no trailing slash). * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'pkce'?: NormalizedProjectRevisionThirdPartyProviderPkceEnum | null; /** * The Revision\'s ID this schema belongs to * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'project_revision_id'?: string; /** * Provider is either \"generic\" for a generic OAuth 2.0 / OpenID Connect Provider or one of: generic google github gitlab microsoft discord slack facebook vk yandex apple * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'provider'?: string; /** * ID is the provider\'s ID * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'provider_id'?: string; /** * * @type {object} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'requested_claims'?: object; /** * * @type {Array} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'scope'?: Array; /** * State indicates the state of the provider Only providers with state `enabled` will be used for authentication enabled ThirdPartyProviderStateEnabled disabled ThirdPartyProviderStateDisabled * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'state'?: NormalizedProjectRevisionThirdPartyProviderStateEnum; /** * * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'subject_source'?: string | null; /** * TokenURL is the token url, typically something like: https://example.org/oauth2/token Should only be used when the OAuth2 / OpenID Connect server is not supporting OpenID Connect Discovery and when `provider` is set to `generic`. * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'token_url'?: string; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof NormalizedProjectRevisionThirdPartyProvider */ 'updated_at'?: string; } export const NormalizedProjectRevisionThirdPartyProviderPkceEnum = { Auto: 'auto', Never: 'never', Force: 'force', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionThirdPartyProviderPkceEnum = typeof NormalizedProjectRevisionThirdPartyProviderPkceEnum[keyof typeof NormalizedProjectRevisionThirdPartyProviderPkceEnum]; export const NormalizedProjectRevisionThirdPartyProviderStateEnum = { Enabled: 'enabled', Disabled: 'disabled', UnknownDefaultOpenApi: '11184809' } as const; export type NormalizedProjectRevisionThirdPartyProviderStateEnum = typeof NormalizedProjectRevisionThirdPartyProviderStateEnum[keyof typeof NormalizedProjectRevisionThirdPartyProviderStateEnum]; /** * * @export * @interface NormalizedProjectRevisionTokenizerTemplate */ export interface NormalizedProjectRevisionTokenizerTemplate { /** * Claims mapper URL * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'claims_mapper_url'?: string; /** * The Project\'s Revision Creation Date * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'created_at'?: string; /** * The revision ID. * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'id'?: string; /** * JSON Web Key URL * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'jwks_url'?: string; /** * The unique key of the template * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'key'?: string; /** * The Revision\'s ID this schema belongs to * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'project_revision_id'?: string; /** * Token time to live * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'ttl'?: string; /** * Last Time Project\'s Revision was Updated * @type {string} * @memberof NormalizedProjectRevisionTokenizerTemplate */ 'updated_at'?: string; } /** * OAuth 2.0 Clients are used to perform OAuth 2.0 and OpenID Connect flows. Usually, OAuth 2.0 clients are generated for applications which want to consume your OAuth 2.0 or OpenID Connect capabilities. * @export * @interface OAuth2Client */ export interface OAuth2Client { /** * OAuth 2.0 Access Token Strategy AccessTokenStrategy is the strategy used to generate access tokens. Valid options are `jwt` and `opaque`. `jwt` is a bad idea, see https://www.ory.sh/docs/oauth2-oidc/jwt-access-token Setting the stragegy here overrides the global setting in `strategies.access_token`. * @type {string} * @memberof OAuth2Client */ 'access_token_strategy'?: string; /** * * @type {Array} * @memberof OAuth2Client */ 'allowed_cors_origins'?: Array; /** * * @type {Array} * @memberof OAuth2Client */ 'audience'?: Array; /** * * @type {string} * @memberof OAuth2Client */ 'authorization_code_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2Client */ 'authorization_code_grant_id_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2Client */ 'authorization_code_grant_refresh_token_lifespan'?: string | null; /** * OpenID Connect Back-Channel Logout Session Required Boolean value specifying whether the RP requires that a sid (session ID) Claim be included in the Logout Token to identify the RP session with the OP when the backchannel_logout_uri is used. If omitted, the default value is false. * @type {boolean} * @memberof OAuth2Client */ 'backchannel_logout_session_required'?: boolean; /** * OpenID Connect Back-Channel Logout URI RP URL that will cause the RP to log itself out when sent a Logout Token by the OP. * @type {string} * @memberof OAuth2Client */ 'backchannel_logout_uri'?: string; /** * * @type {string} * @memberof OAuth2Client */ 'client_credentials_grant_access_token_lifespan'?: string | null; /** * OAuth 2.0 Client ID The ID is immutable. If no ID is provided, a UUID4 will be generated. * @type {string} * @memberof OAuth2Client */ 'client_id'?: string; /** * OAuth 2.0 Client Name The human-readable name of the client to be presented to the end-user during authorization. * @type {string} * @memberof OAuth2Client */ 'client_name'?: string; /** * OAuth 2.0 Client Secret The secret will be included in the create request as cleartext, and then never again. The secret is kept in hashed format and is not recoverable once lost. * @type {string} * @memberof OAuth2Client */ 'client_secret'?: string; /** * OAuth 2.0 Client Secret Expires At The field is currently not supported and its value is always 0. * @type {number} * @memberof OAuth2Client */ 'client_secret_expires_at'?: number; /** * OAuth 2.0 Client URI ClientURI is a URL string of a web page providing information about the client. If present, the server SHOULD display this URL to the end-user in a clickable fashion. * @type {string} * @memberof OAuth2Client */ 'client_uri'?: string; /** * * @type {Array} * @memberof OAuth2Client */ 'contacts'?: Array; /** * OAuth 2.0 Client Creation Date CreatedAt returns the timestamp of the client\'s creation. * @type {string} * @memberof OAuth2Client */ 'created_at'?: string; /** * OpenID Connect Front-Channel Logout Session Required Boolean value specifying whether the RP requires that iss (issuer) and sid (session ID) query parameters be included to identify the RP session with the OP when the frontchannel_logout_uri is used. If omitted, the default value is false. * @type {boolean} * @memberof OAuth2Client */ 'frontchannel_logout_session_required'?: boolean; /** * OpenID Connect Front-Channel Logout URI RP URL that will cause the RP to log itself out when rendered in an iframe by the OP. An iss (issuer) query parameter and a sid (session ID) query parameter MAY be included by the OP to enable the RP to validate the request and to determine which of the potentially multiple sessions is to be logged out; if either is included, both MUST be. * @type {string} * @memberof OAuth2Client */ 'frontchannel_logout_uri'?: string; /** * * @type {Array} * @memberof OAuth2Client */ 'grant_types'?: Array; /** * * @type {string} * @memberof OAuth2Client */ 'implicit_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2Client */ 'implicit_grant_id_token_lifespan'?: string | null; /** * OAuth 2.0 Client JSON Web Key Set Client\'s JSON Web Key Set [JWK] document, passed by value. The semantics of the jwks parameter are the same as the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference. This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri parameter, for instance, by native applications that might not have a location to host the contents of the JWK Set. If a Client can use jwks_uri, it MUST NOT use jwks. One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in Section 10 of OpenID Connect Core 1.0 [OpenID.Core]). The jwks_uri and jwks parameters MUST NOT be used together. * @type {any} * @memberof OAuth2Client */ 'jwks'?: any; /** * OAuth 2.0 Client JSON Web Key Set URL URL for the Client\'s JSON Web Key Set [JWK] document. If the Client signs requests to the Server, it contains the signing key(s) the Server uses to validate signatures from the Client. The JWK Set MAY also contain the Client\'s encryption keys(s), which are used by the Server to encrypt responses to the Client. When both signing and encryption keys are made available, a use (Key Use) parameter value is REQUIRED for all keys in the referenced JWK Set to indicate each key\'s intended usage. Although some algorithms allow the same key to be used for both signatures and encryption, doing so is NOT RECOMMENDED, as it is less secure. The JWK x5c parameter MAY be used to provide X.509 representations of keys provided. When used, the bare key values MUST still be present and MUST match those in the certificate. * @type {string} * @memberof OAuth2Client */ 'jwks_uri'?: string; /** * * @type {string} * @memberof OAuth2Client */ 'jwt_bearer_grant_access_token_lifespan'?: string | null; /** * OAuth 2.0 Client Logo URI A URL string referencing the client\'s logo. * @type {string} * @memberof OAuth2Client */ 'logo_uri'?: string; /** * * @type {object} * @memberof OAuth2Client */ 'metadata'?: object; /** * OAuth 2.0 Client Owner Owner is a string identifying the owner of the OAuth 2.0 Client. * @type {string} * @memberof OAuth2Client */ 'owner'?: string; /** * OAuth 2.0 Client Policy URI PolicyURI is a URL string that points to a human-readable privacy policy document that describes how the deployment organization collects, uses, retains, and discloses personal data. * @type {string} * @memberof OAuth2Client */ 'policy_uri'?: string; /** * * @type {Array} * @memberof OAuth2Client */ 'post_logout_redirect_uris'?: Array; /** * * @type {Array} * @memberof OAuth2Client */ 'redirect_uris'?: Array; /** * * @type {string} * @memberof OAuth2Client */ 'refresh_token_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2Client */ 'refresh_token_grant_id_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2Client */ 'refresh_token_grant_refresh_token_lifespan'?: string | null; /** * OpenID Connect Dynamic Client Registration Access Token RegistrationAccessToken can be used to update, get, or delete the OAuth2 Client. It is sent when creating a client using Dynamic Client Registration. * @type {string} * @memberof OAuth2Client */ 'registration_access_token'?: string; /** * OpenID Connect Dynamic Client Registration URL RegistrationClientURI is the URL used to update, get, or delete the OAuth2 Client. * @type {string} * @memberof OAuth2Client */ 'registration_client_uri'?: string; /** * OpenID Connect Request Object Signing Algorithm JWS [JWS] alg algorithm [JWA] that MUST be used for signing Request Objects sent to the OP. All Request Objects from this Client MUST be rejected, if not signed with this algorithm. * @type {string} * @memberof OAuth2Client */ 'request_object_signing_alg'?: string; /** * * @type {Array} * @memberof OAuth2Client */ 'request_uris'?: Array; /** * * @type {Array} * @memberof OAuth2Client */ 'response_types'?: Array; /** * OAuth 2.0 Client Scope Scope is a string containing a space-separated list of scope values (as described in Section 3.3 of OAuth 2.0 [RFC6749]) that the client can use when requesting access tokens. * @type {string} * @memberof OAuth2Client */ 'scope'?: string; /** * OpenID Connect Sector Identifier URI URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OP. The URL references a file with a single JSON array of redirect_uri values. * @type {string} * @memberof OAuth2Client */ 'sector_identifier_uri'?: string; /** * SkipConsent skips the consent screen for this client. This field can only be set from the admin API. * @type {boolean} * @memberof OAuth2Client */ 'skip_consent'?: boolean; /** * SkipLogoutConsent skips the logout consent screen for this client. This field can only be set from the admin API. * @type {boolean} * @memberof OAuth2Client */ 'skip_logout_consent'?: boolean; /** * OpenID Connect Subject Type The `subject_types_supported` Discovery parameter contains a list of the supported subject_type values for this server. Valid types include `pairwise` and `public`. * @type {string} * @memberof OAuth2Client */ 'subject_type'?: string; /** * OAuth 2.0 Token Endpoint Authentication Method Requested Client Authentication method for the Token Endpoint. The options are: `client_secret_basic`: (default) Send `client_id` and `client_secret` as `application/x-www-form-urlencoded` encoded in the HTTP Authorization header. `client_secret_post`: Send `client_id` and `client_secret` as `application/x-www-form-urlencoded` in the HTTP body. `private_key_jwt`: Use JSON Web Tokens to authenticate the client. `none`: Used for public clients (native apps, mobile apps) which can not have secrets. * @type {string} * @memberof OAuth2Client */ 'token_endpoint_auth_method'?: string; /** * OAuth 2.0 Token Endpoint Signing Algorithm Requested Client Authentication signing algorithm for the Token Endpoint. * @type {string} * @memberof OAuth2Client */ 'token_endpoint_auth_signing_alg'?: string; /** * OAuth 2.0 Client Terms of Service URI A URL string pointing to a human-readable terms of service document for the client that describes a contractual relationship between the end-user and the client that the end-user accepts when authorizing the client. * @type {string} * @memberof OAuth2Client */ 'tos_uri'?: string; /** * OAuth 2.0 Client Last Update Date UpdatedAt returns the timestamp of the last update. * @type {string} * @memberof OAuth2Client */ 'updated_at'?: string; /** * OpenID Connect Request Userinfo Signed Response Algorithm JWS alg algorithm [JWA] REQUIRED for signing UserInfo Responses. If this is specified, the response will be JWT [JWT] serialized, and signed using JWS. The default, if omitted, is for the UserInfo Response to return the Claims as a UTF-8 encoded JSON object using the application/json content-type. * @type {string} * @memberof OAuth2Client */ 'userinfo_signed_response_alg'?: string; } /** * Lifespans of different token types issued for this OAuth 2.0 Client. * @export * @interface OAuth2ClientTokenLifespans */ export interface OAuth2ClientTokenLifespans { /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'authorization_code_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'authorization_code_grant_id_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'authorization_code_grant_refresh_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'client_credentials_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'implicit_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'implicit_grant_id_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'jwt_bearer_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'refresh_token_grant_access_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'refresh_token_grant_id_token_lifespan'?: string | null; /** * * @type {string} * @memberof OAuth2ClientTokenLifespans */ 'refresh_token_grant_refresh_token_lifespan'?: string | null; } /** * * @export * @interface OAuth2ConsentRequest */ export interface OAuth2ConsentRequest { /** * ACR represents the Authentication AuthorizationContext Class Reference value for this authentication session. You can use it to express that, for example, a user authenticated using two factor authentication. * @type {string} * @memberof OAuth2ConsentRequest */ 'acr'?: string; /** * * @type {Array} * @memberof OAuth2ConsentRequest */ 'amr'?: Array; /** * Challenge is used to retrieve/accept/deny the consent request. * @type {string} * @memberof OAuth2ConsentRequest */ 'challenge': string; /** * * @type {OAuth2Client} * @memberof OAuth2ConsentRequest */ 'client'?: OAuth2Client; /** * ConsentRequestID is the ID of the consent request. * @type {string} * @memberof OAuth2ConsentRequest */ 'consent_request_id'?: string; /** * * @type {object} * @memberof OAuth2ConsentRequest */ 'context'?: object; /** * LoginChallenge is the login challenge this consent challenge belongs to. It can be used to associate a login and consent request in the login & consent app. * @type {string} * @memberof OAuth2ConsentRequest */ 'login_challenge'?: string; /** * LoginSessionID is the login session ID. If the user-agent reuses a login session (via cookie / remember flag) this ID will remain the same. If the user-agent did not have an existing authentication session (e.g. remember is false) this will be a new random value. This value is used as the \"sid\" parameter in the ID Token and in OIDC Front-/Back- channel logout. It\'s value can generally be used to associate consecutive login requests by a certain user. * @type {string} * @memberof OAuth2ConsentRequest */ 'login_session_id'?: string; /** * * @type {OAuth2ConsentRequestOpenIDConnectContext} * @memberof OAuth2ConsentRequest */ 'oidc_context'?: OAuth2ConsentRequestOpenIDConnectContext; /** * RequestURL is the original OAuth 2.0 Authorization URL requested by the OAuth 2.0 client. It is the URL which initiates the OAuth 2.0 Authorization Code or OAuth 2.0 Implicit flow. This URL is typically not needed, but might come in handy if you want to deal with additional request parameters. * @type {string} * @memberof OAuth2ConsentRequest */ 'request_url'?: string; /** * * @type {Array} * @memberof OAuth2ConsentRequest */ 'requested_access_token_audience'?: Array; /** * * @type {Array} * @memberof OAuth2ConsentRequest */ 'requested_scope'?: Array; /** * Skip, if true, implies that the client has requested the same scopes from the same user previously. If true, you must not ask the user to grant the requested scopes. You must however either allow or deny the consent request using the usual API call. * @type {boolean} * @memberof OAuth2ConsentRequest */ 'skip'?: boolean; /** * Subject is the user ID of the end-user that authenticated. Now, that end user needs to grant or deny the scope requested by the OAuth 2.0 client. * @type {string} * @memberof OAuth2ConsentRequest */ 'subject'?: string; } /** * * @export * @interface OAuth2ConsentRequestOpenIDConnectContext */ export interface OAuth2ConsentRequestOpenIDConnectContext { /** * ACRValues is the Authentication AuthorizationContext Class Reference requested in the OAuth 2.0 Authorization request. It is a parameter defined by OpenID Connect and expresses which level of authentication (e.g. 2FA) is required. OpenID Connect defines it as follows: > Requested Authentication AuthorizationContext Class Reference values. Space-separated string that specifies the acr values that the Authorization Server is being requested to use for processing this Authentication Request, with the values appearing in order of preference. The Authentication AuthorizationContext Class satisfied by the authentication performed is returned as the acr Claim Value, as specified in Section 2. The acr Claim is requested as a Voluntary Claim by this parameter. * @type {Array} * @memberof OAuth2ConsentRequestOpenIDConnectContext */ 'acr_values'?: Array; /** * Display is a string value that specifies how the Authorization Server displays the authentication and consent user interface pages to the End-User. The defined values are: page: The Authorization Server SHOULD display the authentication and consent UI consistent with a full User Agent page view. If the display parameter is not specified, this is the default display mode. popup: The Authorization Server SHOULD display the authentication and consent UI consistent with a popup User Agent window. The popup User Agent window should be of an appropriate size for a login-focused dialog and should not obscure the entire window that it is popping up over. touch: The Authorization Server SHOULD display the authentication and consent UI consistent with a device that leverages a touch interface. wap: The Authorization Server SHOULD display the authentication and consent UI consistent with a \"feature phone\" type display. The Authorization Server MAY also attempt to detect the capabilities of the User Agent and present an appropriate display. * @type {string} * @memberof OAuth2ConsentRequestOpenIDConnectContext */ 'display'?: string; /** * IDTokenHintClaims are the claims of the ID Token previously issued by the Authorization Server being passed as a hint about the End-User\'s current or past authenticated session with the Client. * @type {{ [key: string]: any; }} * @memberof OAuth2ConsentRequestOpenIDConnectContext */ 'id_token_hint_claims'?: { [key: string]: any; }; /** * LoginHint hints about the login identifier the End-User might use to log in (if necessary). This hint can be used by an RP if it first asks the End-User for their e-mail address (or other identifier) and then wants to pass that value as a hint to the discovered authorization service. This value MAY also be a phone number in the format specified for the phone_number Claim. The use of this parameter is optional. * @type {string} * @memberof OAuth2ConsentRequestOpenIDConnectContext */ 'login_hint'?: string; /** * UILocales is the End-User\'id preferred languages and scripts for the user interface, represented as a space-separated list of BCP47 [RFC5646] language tag values, ordered by preference. For instance, the value \"fr-CA fr en\" represents a preference for French as spoken in Canada, then French (without a region designation), followed by English (without a region designation). An error SHOULD NOT result if some or all of the requested locales are not supported by the OpenID Provider. * @type {Array} * @memberof OAuth2ConsentRequestOpenIDConnectContext */ 'ui_locales'?: Array; } /** * A completed OAuth 2.0 Consent Session. * @export * @interface OAuth2ConsentSession */ export interface OAuth2ConsentSession { /** * * @type {OAuth2ConsentRequest} * @memberof OAuth2ConsentSession */ 'consent_request'?: OAuth2ConsentRequest; /** * ConsentRequestID is the identifier of the consent request that initiated this consent session. * @type {string} * @memberof OAuth2ConsentSession */ 'consent_request_id'?: string; /** * * @type {object} * @memberof OAuth2ConsentSession */ 'context'?: object; /** * * @type {OAuth2ConsentSessionExpiresAt} * @memberof OAuth2ConsentSession */ 'expires_at'?: OAuth2ConsentSessionExpiresAt; /** * * @type {Array} * @memberof OAuth2ConsentSession */ 'grant_access_token_audience'?: Array; /** * * @type {Array} * @memberof OAuth2ConsentSession */ 'grant_scope'?: Array; /** * * @type {string} * @memberof OAuth2ConsentSession */ 'handled_at'?: string; /** * Remember Consent Remember, if set to true, tells ORY Hydra to remember this consent authorization and reuse it if the same client asks the same user for the same, or a subset of, scope. * @type {boolean} * @memberof OAuth2ConsentSession */ 'remember'?: boolean; /** * Remember Consent For RememberFor sets how long the consent authorization should be remembered for in seconds. If set to `0`, the authorization will be remembered indefinitely. * @type {number} * @memberof OAuth2ConsentSession */ 'remember_for'?: number; /** * * @type {AcceptOAuth2ConsentRequestSession} * @memberof OAuth2ConsentSession */ 'session'?: AcceptOAuth2ConsentRequestSession; } /** * * @export * @interface OAuth2ConsentSessionExpiresAt */ export interface OAuth2ConsentSessionExpiresAt { /** * * @type {string} * @memberof OAuth2ConsentSessionExpiresAt */ 'access_token'?: string; /** * * @type {string} * @memberof OAuth2ConsentSessionExpiresAt */ 'authorize_code'?: string; /** * * @type {string} * @memberof OAuth2ConsentSessionExpiresAt */ 'id_token'?: string; /** * * @type {string} * @memberof OAuth2ConsentSessionExpiresAt */ 'par_context'?: string; /** * * @type {string} * @memberof OAuth2ConsentSessionExpiresAt */ 'refresh_token'?: string; } /** * * @export * @interface OAuth2LoginRequest */ export interface OAuth2LoginRequest { /** * ID is the identifier of the login request. * @type {string} * @memberof OAuth2LoginRequest */ 'challenge': string; /** * * @type {OAuth2Client} * @memberof OAuth2LoginRequest */ 'client': OAuth2Client; /** * * @type {OAuth2ConsentRequestOpenIDConnectContext} * @memberof OAuth2LoginRequest */ 'oidc_context'?: OAuth2ConsentRequestOpenIDConnectContext; /** * RequestURL is the original OAuth 2.0 Authorization URL requested by the OAuth 2.0 client. It is the URL which initiates the OAuth 2.0 Authorization Code or OAuth 2.0 Implicit flow. This URL is typically not needed, but might come in handy if you want to deal with additional request parameters. * @type {string} * @memberof OAuth2LoginRequest */ 'request_url': string; /** * * @type {Array} * @memberof OAuth2LoginRequest */ 'requested_access_token_audience'?: Array; /** * * @type {Array} * @memberof OAuth2LoginRequest */ 'requested_scope'?: Array; /** * SessionID is the login session ID. If the user-agent reuses a login session (via cookie / remember flag) this ID will remain the same. If the user-agent did not have an existing authentication session (e.g. remember is false) this will be a new random value. This value is used as the \"sid\" parameter in the ID Token and in OIDC Front-/Back- channel logout. It\'s value can generally be used to associate consecutive login requests by a certain user. * @type {string} * @memberof OAuth2LoginRequest */ 'session_id'?: string; /** * Skip, if true, implies that the client has requested the same scopes from the same user previously. If true, you can skip asking the user to grant the requested scopes, and simply forward the user to the redirect URL. This feature allows you to update / set session information. * @type {boolean} * @memberof OAuth2LoginRequest */ 'skip': boolean; /** * Subject is the user ID of the end-user that authenticated. Now, that end user needs to grant or deny the scope requested by the OAuth 2.0 client. If this value is set and `skip` is true, you MUST include this subject type when accepting the login request, or the request will fail. * @type {string} * @memberof OAuth2LoginRequest */ 'subject': string; } /** * * @export * @interface OAuth2LogoutRequest */ export interface OAuth2LogoutRequest { /** * Challenge is the identifier of the logout authentication request. * @type {string} * @memberof OAuth2LogoutRequest */ 'challenge'?: string; /** * * @type {OAuth2Client} * @memberof OAuth2LogoutRequest */ 'client'?: OAuth2Client; /** * * @type {string} * @memberof OAuth2LogoutRequest */ 'expires_at'?: string; /** * RequestURL is the original Logout URL requested. * @type {string} * @memberof OAuth2LogoutRequest */ 'request_url'?: string; /** * * @type {string} * @memberof OAuth2LogoutRequest */ 'requested_at'?: string; /** * RPInitiated is set to true if the request was initiated by a Relying Party (RP), also known as an OAuth 2.0 Client. * @type {boolean} * @memberof OAuth2LogoutRequest */ 'rp_initiated'?: boolean; /** * SessionID is the login session ID that was requested to log out. * @type {string} * @memberof OAuth2LogoutRequest */ 'sid'?: string; /** * Subject is the user for whom the logout was request. * @type {string} * @memberof OAuth2LogoutRequest */ 'subject'?: string; } /** * Contains a redirect URL used to complete a login, consent, or logout request. * @export * @interface OAuth2RedirectTo */ export interface OAuth2RedirectTo { /** * RedirectURL is the URL which you should redirect the user\'s browser to once the authentication process is completed. * @type {string} * @memberof OAuth2RedirectTo */ 'redirect_to': string; } /** * OAuth2 Token Exchange Result * @export * @interface OAuth2TokenExchange */ export interface OAuth2TokenExchange { /** * The access token issued by the authorization server. * @type {string} * @memberof OAuth2TokenExchange */ 'access_token'?: string; /** * The lifetime in seconds of the access token. For example, the value \"3600\" denotes that the access token will expire in one hour from the time the response was generated. * @type {number} * @memberof OAuth2TokenExchange */ 'expires_in'?: number; /** * To retrieve a refresh token request the id_token scope. * @type {string} * @memberof OAuth2TokenExchange */ 'id_token'?: string; /** * The refresh token, which can be used to obtain new access tokens. To retrieve it add the scope \"offline\" to your access token request. * @type {string} * @memberof OAuth2TokenExchange */ 'refresh_token'?: string; /** * The scope of the access token * @type {string} * @memberof OAuth2TokenExchange */ 'scope'?: string; /** * The type of the token issued * @type {string} * @memberof OAuth2TokenExchange */ 'token_type'?: string; } /** * Includes links to several endpoints (for example `/oauth2/token`) and exposes information on supported signature algorithms among others. * @export * @interface OidcConfiguration */ export interface OidcConfiguration { /** * OAuth 2.0 Authorization Endpoint URL * @type {string} * @memberof OidcConfiguration */ 'authorization_endpoint': string; /** * OpenID Connect Back-Channel Logout Session Required Boolean value specifying whether the OP can pass a sid (session ID) Claim in the Logout Token to identify the RP session with the OP. If supported, the sid Claim is also included in ID Tokens issued by the OP * @type {boolean} * @memberof OidcConfiguration */ 'backchannel_logout_session_supported'?: boolean; /** * OpenID Connect Back-Channel Logout Supported Boolean value specifying whether the OP supports back-channel logout, with true indicating support. * @type {boolean} * @memberof OidcConfiguration */ 'backchannel_logout_supported'?: boolean; /** * OpenID Connect Claims Parameter Parameter Supported Boolean value specifying whether the OP supports use of the claims parameter, with true indicating support. * @type {boolean} * @memberof OidcConfiguration */ 'claims_parameter_supported'?: boolean; /** * OpenID Connect Supported Claims JSON array containing a list of the Claim Names of the Claims that the OpenID Provider MAY be able to supply values for. Note that for privacy or other reasons, this might not be an exhaustive list. * @type {Array} * @memberof OidcConfiguration */ 'claims_supported'?: Array; /** * OAuth 2.0 PKCE Supported Code Challenge Methods JSON array containing a list of Proof Key for Code Exchange (PKCE) [RFC7636] code challenge methods supported by this authorization server. * @type {Array} * @memberof OidcConfiguration */ 'code_challenge_methods_supported'?: Array; /** * OpenID Connect Verifiable Credentials Endpoint Contains the URL of the Verifiable Credentials Endpoint. * @type {string} * @memberof OidcConfiguration */ 'credentials_endpoint_draft_00'?: string; /** * OpenID Connect Verifiable Credentials Supported JSON array containing a list of the Verifiable Credentials supported by this authorization server. * @type {Array} * @memberof OidcConfiguration */ 'credentials_supported_draft_00'?: Array; /** * OpenID Connect End-Session Endpoint URL at the OP to which an RP can perform a redirect to request that the End-User be logged out at the OP. * @type {string} * @memberof OidcConfiguration */ 'end_session_endpoint'?: string; /** * OpenID Connect Front-Channel Logout Session Required Boolean value specifying whether the OP can pass iss (issuer) and sid (session ID) query parameters to identify the RP session with the OP when the frontchannel_logout_uri is used. If supported, the sid Claim is also included in ID Tokens issued by the OP. * @type {boolean} * @memberof OidcConfiguration */ 'frontchannel_logout_session_supported'?: boolean; /** * OpenID Connect Front-Channel Logout Supported Boolean value specifying whether the OP supports HTTP-based logout, with true indicating support. * @type {boolean} * @memberof OidcConfiguration */ 'frontchannel_logout_supported'?: boolean; /** * OAuth 2.0 Supported Grant Types JSON array containing a list of the OAuth 2.0 Grant Type values that this OP supports. * @type {Array} * @memberof OidcConfiguration */ 'grant_types_supported'?: Array; /** * OpenID Connect Default ID Token Signing Algorithms Algorithm used to sign OpenID Connect ID Tokens. * @type {Array} * @memberof OidcConfiguration */ 'id_token_signed_response_alg': Array; /** * OpenID Connect Supported ID Token Signing Algorithms JSON array containing a list of the JWS signing algorithms (alg values) supported by the OP for the ID Token to encode the Claims in a JWT. * @type {Array} * @memberof OidcConfiguration */ 'id_token_signing_alg_values_supported': Array; /** * OpenID Connect Issuer URL An URL using the https scheme with no query or fragment component that the OP asserts as its IssuerURL Identifier. If IssuerURL discovery is supported , this value MUST be identical to the issuer value returned by WebFinger. This also MUST be identical to the iss Claim value in ID Tokens issued from this IssuerURL. * @type {string} * @memberof OidcConfiguration */ 'issuer': string; /** * OpenID Connect Well-Known JSON Web Keys URL URL of the OP\'s JSON Web Key Set [JWK] document. This contains the signing key(s) the RP uses to validate signatures from the OP. The JWK Set MAY also contain the Server\'s encryption key(s), which are used by RPs to encrypt requests to the Server. When both signing and encryption keys are made available, a use (Key Use) parameter value is REQUIRED for all keys in the referenced JWK Set to indicate each key\'s intended usage. Although some algorithms allow the same key to be used for both signatures and encryption, doing so is NOT RECOMMENDED, as it is less secure. The JWK x5c parameter MAY be used to provide X.509 representations of keys provided. When used, the bare key values MUST still be present and MUST match those in the certificate. * @type {string} * @memberof OidcConfiguration */ 'jwks_uri': string; /** * OpenID Connect Dynamic Client Registration Endpoint URL * @type {string} * @memberof OidcConfiguration */ 'registration_endpoint'?: string; /** * OpenID Connect Supported Request Object Signing Algorithms JSON array containing a list of the JWS signing algorithms (alg values) supported by the OP for Request Objects, which are described in Section 6.1 of OpenID Connect Core 1.0 [OpenID.Core]. These algorithms are used both when the Request Object is passed by value (using the request parameter) and when it is passed by reference (using the request_uri parameter). * @type {Array} * @memberof OidcConfiguration */ 'request_object_signing_alg_values_supported'?: Array; /** * OpenID Connect Request Parameter Supported Boolean value specifying whether the OP supports use of the request parameter, with true indicating support. * @type {boolean} * @memberof OidcConfiguration */ 'request_parameter_supported'?: boolean; /** * OpenID Connect Request URI Parameter Supported Boolean value specifying whether the OP supports use of the request_uri parameter, with true indicating support. * @type {boolean} * @memberof OidcConfiguration */ 'request_uri_parameter_supported'?: boolean; /** * OpenID Connect Requires Request URI Registration Boolean value specifying whether the OP requires any request_uri values used to be pre-registered using the request_uris registration parameter. * @type {boolean} * @memberof OidcConfiguration */ 'require_request_uri_registration'?: boolean; /** * OAuth 2.0 Supported Response Modes JSON array containing a list of the OAuth 2.0 response_mode values that this OP supports. * @type {Array} * @memberof OidcConfiguration */ 'response_modes_supported'?: Array; /** * OAuth 2.0 Supported Response Types JSON array containing a list of the OAuth 2.0 response_type values that this OP supports. Dynamic OpenID Providers MUST support the code, id_token, and the token id_token Response Type values. * @type {Array} * @memberof OidcConfiguration */ 'response_types_supported': Array; /** * OAuth 2.0 Token Revocation URL URL of the authorization server\'s OAuth 2.0 revocation endpoint. * @type {string} * @memberof OidcConfiguration */ 'revocation_endpoint'?: string; /** * OAuth 2.0 Supported Scope Values JSON array containing a list of the OAuth 2.0 [RFC6749] scope values that this server supports. The server MUST support the openid scope value. Servers MAY choose not to advertise some supported scope values even when this parameter is used * @type {Array} * @memberof OidcConfiguration */ 'scopes_supported'?: Array; /** * OpenID Connect Supported Subject Types JSON array containing a list of the Subject Identifier types that this OP supports. Valid types include pairwise and public. * @type {Array} * @memberof OidcConfiguration */ 'subject_types_supported': Array; /** * OAuth 2.0 Token Endpoint URL * @type {string} * @memberof OidcConfiguration */ 'token_endpoint': string; /** * OAuth 2.0 Supported Client Authentication Methods JSON array containing a list of Client Authentication methods supported by this Token Endpoint. The options are client_secret_post, client_secret_basic, client_secret_jwt, and private_key_jwt, as described in Section 9 of OpenID Connect Core 1.0 * @type {Array} * @memberof OidcConfiguration */ 'token_endpoint_auth_methods_supported'?: Array; /** * OpenID Connect Userinfo URL URL of the OP\'s UserInfo Endpoint. * @type {string} * @memberof OidcConfiguration */ 'userinfo_endpoint'?: string; /** * OpenID Connect User Userinfo Signing Algorithm Algorithm used to sign OpenID Connect Userinfo Responses. * @type {Array} * @memberof OidcConfiguration */ 'userinfo_signed_response_alg': Array; /** * OpenID Connect Supported Userinfo Signing Algorithm JSON array containing a list of the JWS [JWS] signing algorithms (alg values) [JWA] supported by the UserInfo Endpoint to encode the Claims in a JWT [JWT]. * @type {Array} * @memberof OidcConfiguration */ 'userinfo_signing_alg_values_supported'?: Array; } /** * OpenID Connect Userinfo * @export * @interface OidcUserInfo */ export interface OidcUserInfo { /** * End-User\'s birthday, represented as an ISO 8601:2004 [ISO8601‑2004] YYYY-MM-DD format. The year MAY be 0000, indicating that it is omitted. To represent only the year, YYYY format is allowed. Note that depending on the underlying platform\'s date related function, providing just year can result in varying month and day, so the implementers need to take this factor into account to correctly process the dates. * @type {string} * @memberof OidcUserInfo */ 'birthdate'?: string; /** * End-User\'s preferred e-mail address. Its value MUST conform to the RFC 5322 [RFC5322] addr-spec syntax. The RP MUST NOT rely upon this value being unique, as discussed in Section 5.7. * @type {string} * @memberof OidcUserInfo */ 'email'?: string; /** * True if the End-User\'s e-mail address has been verified; otherwise false. When this Claim Value is true, this means that the OP took affirmative steps to ensure that this e-mail address was controlled by the End-User at the time the verification was performed. The means by which an e-mail address is verified is context-specific, and dependent upon the trust framework or contractual agreements within which the parties are operating. * @type {boolean} * @memberof OidcUserInfo */ 'email_verified'?: boolean; /** * Surname(s) or last name(s) of the End-User. Note that in some cultures, people can have multiple family names or no family name; all can be present, with the names being separated by space characters. * @type {string} * @memberof OidcUserInfo */ 'family_name'?: string; /** * End-User\'s gender. Values defined by this specification are female and male. Other values MAY be used when neither of the defined values are applicable. * @type {string} * @memberof OidcUserInfo */ 'gender'?: string; /** * Given name(s) or first name(s) of the End-User. Note that in some cultures, people can have multiple given names; all can be present, with the names being separated by space characters. * @type {string} * @memberof OidcUserInfo */ 'given_name'?: string; /** * End-User\'s locale, represented as a BCP47 [RFC5646] language tag. This is typically an ISO 639-1 Alpha-2 [ISO639‑1] language code in lowercase and an ISO 3166-1 Alpha-2 [ISO3166‑1] country code in uppercase, separated by a dash. For example, en-US or fr-CA. As a compatibility note, some implementations have used an underscore as the separator rather than a dash, for example, en_US; Relying Parties MAY choose to accept this locale syntax as well. * @type {string} * @memberof OidcUserInfo */ 'locale'?: string; /** * Middle name(s) of the End-User. Note that in some cultures, people can have multiple middle names; all can be present, with the names being separated by space characters. Also note that in some cultures, middle names are not used. * @type {string} * @memberof OidcUserInfo */ 'middle_name'?: string; /** * End-User\'s full name in displayable form including all name parts, possibly including titles and suffixes, ordered according to the End-User\'s locale and preferences. * @type {string} * @memberof OidcUserInfo */ 'name'?: string; /** * Casual name of the End-User that may or may not be the same as the given_name. For instance, a nickname value of Mike might be returned alongside a given_name value of Michael. * @type {string} * @memberof OidcUserInfo */ 'nickname'?: string; /** * End-User\'s preferred telephone number. E.164 [E.164] is RECOMMENDED as the format of this Claim, for example, +1 (425) 555-1212 or +56 (2) 687 2400. If the phone number contains an extension, it is RECOMMENDED that the extension be represented using the RFC 3966 [RFC3966] extension syntax, for example, +1 (604) 555-1234;ext=5678. * @type {string} * @memberof OidcUserInfo */ 'phone_number'?: string; /** * True if the End-User\'s phone number has been verified; otherwise false. When this Claim Value is true, this means that the OP took affirmative steps to ensure that this phone number was controlled by the End-User at the time the verification was performed. The means by which a phone number is verified is context-specific, and dependent upon the trust framework or contractual agreements within which the parties are operating. When true, the phone_number Claim MUST be in E.164 format and any extensions MUST be represented in RFC 3966 format. * @type {boolean} * @memberof OidcUserInfo */ 'phone_number_verified'?: boolean; /** * URL of the End-User\'s profile picture. This URL MUST refer to an image file (for example, a PNG, JPEG, or GIF image file), rather than to a Web page containing an image. Note that this URL SHOULD specifically reference a profile photo of the End-User suitable for displaying when describing the End-User, rather than an arbitrary photo taken by the End-User. * @type {string} * @memberof OidcUserInfo */ 'picture'?: string; /** * Non-unique shorthand name by which the End-User wishes to be referred to at the RP, such as janedoe or j.doe. This value MAY be any valid JSON string including special characters such as @, /, or whitespace. * @type {string} * @memberof OidcUserInfo */ 'preferred_username'?: string; /** * URL of the End-User\'s profile page. The contents of this Web page SHOULD be about the End-User. * @type {string} * @memberof OidcUserInfo */ 'profile'?: string; /** * Subject - Identifier for the End-User at the IssuerURL. * @type {string} * @memberof OidcUserInfo */ 'sub'?: string; /** * Time the End-User\'s information was last updated. Its value is a JSON number representing the number of seconds from 1970-01-01T0:0:0Z as measured in UTC until the date/time. * @type {number} * @memberof OidcUserInfo */ 'updated_at'?: number; /** * URL of the End-User\'s Web page or blog. This Web page SHOULD contain information published by the End-User or an organization that the End-User is affiliated with. * @type {string} * @memberof OidcUserInfo */ 'website'?: string; /** * String from zoneinfo [zoneinfo] time zone database representing the End-User\'s time zone. For example, Europe/Paris or America/Los_Angeles. * @type {string} * @memberof OidcUserInfo */ 'zoneinfo'?: string; } /** * B2B SSO Organization * @export * @interface Organization */ export interface Organization { /** * The organization\'s creation date. * @type {string} * @memberof Organization */ 'created_at': string; /** * * @type {Array} * @memberof Organization */ 'domains': Array; /** * The organization\'s ID. * @type {string} * @memberof Organization */ 'id': string; /** * The organization\'s human-readable label. * @type {string} * @memberof Organization */ 'label': string; /** * The project\'s ID. * @type {string} * @memberof Organization */ 'project_id': string; /** * The last time the organization was updated. * @type {string} * @memberof Organization */ 'updated_at': string; } /** * Create B2B SSO Organization Request Body * @export * @interface OrganizationBody */ export interface OrganizationBody { /** * Domains contains the list of organization\'s domains. * @type {Array} * @memberof OrganizationBody */ 'domains'?: Array; /** * Label contains the organization\'s label. * @type {string} * @memberof OrganizationBody */ 'label'?: string; } /** * * @export * @interface Pagination */ export interface Pagination { /** * Items per page This is the number of items per page to return. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {number} * @memberof Pagination */ 'page_size'?: number; /** * Next Page Token The next page token. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {string} * @memberof Pagination */ 'page_token'?: string; } /** * * @export * @interface PaginationHeaders */ export interface PaginationHeaders { /** * The link header contains pagination links. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). in: header * @type {string} * @memberof PaginationHeaders */ 'link'?: string; /** * The total number of clients. in: header * @type {string} * @memberof PaginationHeaders */ 'x-total-count'?: string; } /** * * @export * @interface ParseError */ export interface ParseError { /** * * @type {SourcePosition} * @memberof ParseError */ 'end'?: SourcePosition; /** * * @type {string} * @memberof ParseError */ 'message'?: string; /** * * @type {SourcePosition} * @memberof ParseError */ 'start'?: SourcePosition; } /** * Patch Identities Body * @export * @interface PatchIdentitiesBody */ export interface PatchIdentitiesBody { /** * Identities holds the list of patches to apply required * @type {Array} * @memberof PatchIdentitiesBody */ 'identities'?: Array; } /** * Perform Native Logout Request Body * @export * @interface PerformNativeLogoutBody */ export interface PerformNativeLogoutBody { /** * The Session Token Invalidate this session token. * @type {string} * @memberof PerformNativeLogoutBody */ 'session_token': string; } /** * Get Permissions on Project Request Parameters * @export * @interface PermissionsOnWorkspace */ export interface PermissionsOnWorkspace { /** * * @type {{ [key: string]: boolean; }} * @memberof PermissionsOnWorkspace */ 'permissions'?: { [key: string]: boolean; }; } /** * * @export * @interface Plan */ export interface Plan { /** * Name is the name of the plan. * @type {string} * @memberof Plan */ 'name': string; /** * Version is the version of the plan. The combination of `name@version` must be unique. * @type {number} * @memberof Plan */ 'version': number; } /** * * @export * @interface PlanDetails */ export interface PlanDetails { /** * BaseFeeMonthly is the monthly base fee for the plan. * @type {number} * @memberof PlanDetails */ 'base_fee_monthly': number; /** * BaseFeeYearly is the yearly base fee for the plan. * @type {number} * @memberof PlanDetails */ 'base_fee_yearly': number; /** * Custom is true if the plan is custom. This means it will be hidden from the pricing page. * @type {boolean} * @memberof PlanDetails */ 'custom': boolean; /** * Description is the description of the plan. * @type {string} * @memberof PlanDetails */ 'description': string; /** * * @type {{ [key: string]: GenericUsage; }} * @memberof PlanDetails */ 'features': { [key: string]: GenericUsage; }; /** * Latest is true if the plan is the latest version of a plan and should be available for self-service usage. * @type {boolean} * @memberof PlanDetails */ 'latest'?: boolean; /** * Name is the name of the plan. * @type {string} * @memberof PlanDetails */ 'name': string; /** * Version is the version of the plan. The combination of `name@version` must be unique. * @type {number} * @memberof PlanDetails */ 'version': number; } /** * Check Permission using Post Request Body * @export * @interface PostCheckPermissionBody */ export interface PostCheckPermissionBody { /** * Namespace to query * @type {string} * @memberof PostCheckPermissionBody */ 'namespace'?: string; /** * Object to query * @type {string} * @memberof PostCheckPermissionBody */ 'object'?: string; /** * Relation to query * @type {string} * @memberof PostCheckPermissionBody */ 'relation'?: string; /** * SubjectID to query Either SubjectSet or SubjectID can be provided. * @type {string} * @memberof PostCheckPermissionBody */ 'subject_id'?: string; /** * * @type {SubjectSet} * @memberof PostCheckPermissionBody */ 'subject_set'?: SubjectSet; } /** * Post Check Permission Or Error Body * @export * @interface PostCheckPermissionOrErrorBody */ export interface PostCheckPermissionOrErrorBody { /** * Namespace to query * @type {string} * @memberof PostCheckPermissionOrErrorBody */ 'namespace'?: string; /** * Object to query * @type {string} * @memberof PostCheckPermissionOrErrorBody */ 'object'?: string; /** * Relation to query * @type {string} * @memberof PostCheckPermissionOrErrorBody */ 'relation'?: string; /** * SubjectID to query Either SubjectSet or SubjectID can be provided. * @type {string} * @memberof PostCheckPermissionOrErrorBody */ 'subject_id'?: string; /** * * @type {SubjectSet} * @memberof PostCheckPermissionOrErrorBody */ 'subject_set'?: SubjectSet; } /** * * @export * @interface Project */ export interface Project { /** * * @type {ProjectCors} * @memberof Project */ 'cors_admin'?: ProjectCors; /** * * @type {ProjectCors} * @memberof Project */ 'cors_public'?: ProjectCors; /** * The environment of the project. prod Production stage Staging dev Development * @type {string} * @memberof Project */ 'environment': ProjectEnvironmentEnum; /** * The project home region. This is used to set where the project data is stored and where the project\'s endpoints are located. eu-central EUCentral asia-northeast AsiaNorthEast us-east USEast us-west USWest us US global Global * @type {string} * @memberof Project */ 'home_region': ProjectHomeRegionEnum; /** * The project\'s ID. * @type {string} * @memberof Project */ 'id': string; /** * The name of the project. * @type {string} * @memberof Project */ 'name': string; /** * The configuration revision ID. * @type {string} * @memberof Project */ 'revision_id': string; /** * * @type {ProjectServices} * @memberof Project */ 'services': ProjectServices; /** * The project\'s slug * @type {string} * @memberof Project */ 'slug': string; /** * The state of the project. running Running halted Halted deleted Deleted * @type {string} * @memberof Project */ 'state': ProjectStateEnum; /** * * @type {string} * @memberof Project */ 'workspace_id'?: string | null; } export const ProjectEnvironmentEnum = { Prod: 'prod', Stage: 'stage', Dev: 'dev', UnknownDefaultOpenApi: '11184809' } as const; export type ProjectEnvironmentEnum = typeof ProjectEnvironmentEnum[keyof typeof ProjectEnvironmentEnum]; export const ProjectHomeRegionEnum = { EuCentral: 'eu-central', AsiaNortheast: 'asia-northeast', UsEast: 'us-east', UsWest: 'us-west', Us: 'us', Global: 'global', UnknownDefaultOpenApi: '11184809' } as const; export type ProjectHomeRegionEnum = typeof ProjectHomeRegionEnum[keyof typeof ProjectHomeRegionEnum]; export const ProjectStateEnum = { Running: 'running', Halted: 'halted', Deleted: 'deleted', UnknownDefaultOpenApi: '11184809' } as const; export type ProjectStateEnum = typeof ProjectStateEnum[keyof typeof ProjectStateEnum]; /** * * @export * @interface ProjectApiKey */ export interface ProjectApiKey { /** * The token\'s creation date * @type {string} * @memberof ProjectApiKey */ 'created_at'?: string; /** * * @type {string} * @memberof ProjectApiKey */ 'expires_at'?: string; /** * The token\'s ID. * @type {string} * @memberof ProjectApiKey */ 'id': string; /** * The Token\'s Name Set this to help you remember, for example, where you use the token. * @type {string} * @memberof ProjectApiKey */ 'name': string; /** * The token\'s owner * @type {string} * @memberof ProjectApiKey */ 'owner_id': string; /** * The Token\'s Project ID * @type {string} * @memberof ProjectApiKey */ 'project_id'?: string; /** * The token\'s last update date * @type {string} * @memberof ProjectApiKey */ 'updated_at'?: string; /** * The token\'s value * @type {string} * @memberof ProjectApiKey */ 'value'?: string; } /** * * @export * @interface ProjectBranding */ export interface ProjectBranding { /** * The Customization Creation Date * @type {string} * @memberof ProjectBranding */ 'created_at': string; /** * * @type {ProjectBrandingTheme} * @memberof ProjectBranding */ 'default_theme': ProjectBrandingTheme; /** * The customization ID. * @type {string} * @memberof ProjectBranding */ 'id': string; /** * The Project\'s ID this customization is associated with * @type {string} * @memberof ProjectBranding */ 'project_id': string; /** * * @type {Array} * @memberof ProjectBranding */ 'themes': Array; /** * Last Time Branding was Updated * @type {string} * @memberof ProjectBranding */ 'updated_at': string; } /** * * @export * @interface ProjectBrandingColors */ export interface ProjectBrandingColors { /** * AccentDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'accent_default_color'?: string; /** * AccentDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'accent_disabled_color'?: string; /** * AccentEmphasisColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'accent_emphasis_color'?: string; /** * AccentMutedColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'accent_muted_color'?: string; /** * AccentSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'accent_subtle_color'?: string; /** * BackgroundCanvasColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'background_canvas_color'?: string; /** * BackgroundSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'background_subtle_color'?: string; /** * BackgroundSurfaceColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'background_surface_color'?: string; /** * BorderDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'border_default_color'?: string; /** * ErrorDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'error_default_color'?: string; /** * ErrorEmphasisColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'error_emphasis_color'?: string; /** * ErrorMutedColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'error_muted_color'?: string; /** * ErrorSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'error_subtle_color'?: string; /** * ForegroundDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_default_color'?: string; /** * ForegroundDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_disabled_color'?: string; /** * ForegroundMutedColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_muted_color'?: string; /** * ForegroundOnAccentColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_on_accent_color'?: string; /** * ForegroundOnDarkColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_on_dark_color'?: string; /** * ForegroundOnDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_on_disabled_color'?: string; /** * ForegroundSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'foreground_subtle_color'?: string; /** * InputBackgroundColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'input_background_color'?: string; /** * InputDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'input_disabled_color'?: string; /** * InputPlaceholderColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'input_placeholder_color'?: string; /** * InputTextColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'input_text_color'?: string; /** * Primary color is an hsla color value used to derive the other colors from for the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'primary_color'?: string; /** * Secondary color is a hsla color code used to derive the other colors from for the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'secondary_color'?: string; /** * SuccessEmphasisColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'success_emphasis_color'?: string; /** * TextDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'text_default_color'?: string; /** * TextDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingColors */ 'text_disabled_color'?: string; } /** * * @export * @interface ProjectBrandingTheme */ export interface ProjectBrandingTheme { /** * AccentDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'accent_default_color'?: string; /** * AccentDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'accent_disabled_color'?: string; /** * AccentEmphasisColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'accent_emphasis_color'?: string; /** * AccentMutedColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'accent_muted_color'?: string; /** * AccentSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'accent_subtle_color'?: string; /** * The Account Experience Theme Variables. * @type {Array} * @memberof ProjectBrandingTheme */ 'account_experience_variables'?: Array; /** * AccountExperienceVariableStylesheet holds a reference to the current stylesheet that can be used in the AX * @type {string} * @memberof ProjectBrandingTheme */ 'account_experience_variables_stylesheet'?: string; /** * BackgroundCanvasColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'background_canvas_color'?: string; /** * BackgroundSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'background_subtle_color'?: string; /** * BackgroundSurfaceColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'background_surface_color'?: string; /** * BorderDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'border_default_color'?: string; /** * The Customization Creation Date. * @type {string} * @memberof ProjectBrandingTheme */ 'created_at': string; /** * ErrorDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'error_default_color'?: string; /** * ErrorEmphasisColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'error_emphasis_color'?: string; /** * ErrorMutedColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'error_muted_color'?: string; /** * ErrorSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'error_subtle_color'?: string; /** * Favicon Type The Favicon mime type. * @type {string} * @memberof ProjectBrandingTheme */ 'favicon_type'?: string; /** * Favicon URL Favicon can be an https:// or base64:// URL. If the URL is not allowed, the favicon will be stored inside the Ory Network storage bucket. * @type {string} * @memberof ProjectBrandingTheme */ 'favicon_url'?: string; /** * ForegroundDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_default_color'?: string; /** * ForegroundDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_disabled_color'?: string; /** * ForegroundMutedColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_muted_color'?: string; /** * ForegroundOnAccentColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_on_accent_color'?: string; /** * ForegroundOnDarkColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_on_dark_color'?: string; /** * ForegroundOnDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_on_disabled_color'?: string; /** * ForegroundSubtleColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'foreground_subtle_color'?: string; /** * The customization theme ID. * @type {string} * @memberof ProjectBrandingTheme */ 'id': string; /** * InputBackgroundColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'input_background_color'?: string; /** * InputDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'input_disabled_color'?: string; /** * InputPlaceholderColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'input_placeholder_color'?: string; /** * InputTextColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'input_text_color'?: string; /** * Logo Type The Logo mime type. * @type {string} * @memberof ProjectBrandingTheme */ 'logo_type'?: string; /** * Logo URL Logo can be an https:// or base64:// URL. If the URL is not allowed, the logo will be stored inside the Ory Network storage bucket. * @type {string} * @memberof ProjectBrandingTheme */ 'logo_url'?: string; /** * The customization theme name. * @type {string} * @memberof ProjectBrandingTheme */ 'name': string; /** * Primary color is an hsla color value used to derive the other colors from for the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'primary_color'?: string; /** * The ProjectBranding ID this customization is associated with. * @type {string} * @memberof ProjectBrandingTheme */ 'project_branding_id': string; /** * Secondary color is a hsla color code used to derive the other colors from for the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'secondary_color'?: string; /** * SuccessEmphasisColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'success_emphasis_color'?: string; /** * TextDefaultColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'text_default_color'?: string; /** * TextDisabledColor is a hex color code used by the Ory Account Experience theme. * @type {string} * @memberof ProjectBrandingTheme */ 'text_disabled_color'?: string; /** * Last Time Branding was Updated. * @type {string} * @memberof ProjectBrandingTheme */ 'updated_at': string; } /** * * @export * @interface ProjectCors */ export interface ProjectCors { /** * Whether CORS is enabled for this endpoint. * @type {boolean} * @memberof ProjectCors */ 'enabled'?: boolean; /** * The allowed origins. Use `*` to allow all origins. A wildcard can also be used in the subdomain, i.e. `https://_*.example.com` will allow all origins on all subdomains of `example.com`. * @type {Array} * @memberof ProjectCors */ 'origins'?: Array; } /** * * @export * @interface ProjectEventsDatapoint */ export interface ProjectEventsDatapoint { /** * Event attributes with details * @type {Array} * @memberof ProjectEventsDatapoint */ 'attributes': Array; /** * Name of the event * @type {string} * @memberof ProjectEventsDatapoint */ 'name': string; /** * Time of occurence * @type {string} * @memberof ProjectEventsDatapoint */ 'timestamp': string; } /** * * @export * @interface ProjectHost */ export interface ProjectHost { /** * The project\'s host. * @type {string} * @memberof ProjectHost */ 'host': string; /** * The mapping\'s ID. * @type {string} * @memberof ProjectHost */ 'id': string; /** * The Revision\'s Project ID * @type {string} * @memberof ProjectHost */ 'project_id': string; } /** * * @export * @interface ProjectMember */ export interface ProjectMember { /** * * @type {string} * @memberof ProjectMember */ 'email': string; /** * * @type {boolean} * @memberof ProjectMember */ 'email_verified': boolean; /** * * @type {string} * @memberof ProjectMember */ 'id': string; /** * * @type {string} * @memberof ProjectMember */ 'name': string; /** * * @type {string} * @memberof ProjectMember */ 'role': string; } /** * * @export * @interface ProjectMetadata */ export interface ProjectMetadata { /** * The Project\'s Creation Date * @type {string} * @memberof ProjectMetadata */ 'created_at': string; /** * The environment of the project. prod Production stage Staging dev Development * @type {string} * @memberof ProjectMetadata */ 'environment': ProjectMetadataEnvironmentEnum; /** * The project\'s data home region eu-central EUCentral asia-northeast AsiaNorthEast us-east USEast us-west USWest us US global Global * @type {string} * @memberof ProjectMetadata */ 'home_region': ProjectMetadataHomeRegionEnum; /** * * @type {Array} * @memberof ProjectMetadata */ 'hosts': Array; /** * The project\'s ID. * @type {string} * @memberof ProjectMetadata */ 'id': string; /** * The project\'s name if set * @type {string} * @memberof ProjectMetadata */ 'name': string; /** * The project\'s slug * @type {string} * @memberof ProjectMetadata */ 'slug': string; /** * The state of the project. running Running halted Halted deleted Deleted * @type {string} * @memberof ProjectMetadata */ 'state': ProjectMetadataStateEnum; /** * * @type {string} * @memberof ProjectMetadata */ 'subscription_id'?: string | null; /** * * @type {string} * @memberof ProjectMetadata */ 'subscription_plan'?: string | null; /** * Last Time Project was Updated * @type {string} * @memberof ProjectMetadata */ 'updated_at': string; /** * * @type {Workspace} * @memberof ProjectMetadata */ 'workspace'?: Workspace; /** * * @type {string} * @memberof ProjectMetadata */ 'workspace_id'?: string | null; } export const ProjectMetadataEnvironmentEnum = { Prod: 'prod', Stage: 'stage', Dev: 'dev', UnknownDefaultOpenApi: '11184809' } as const; export type ProjectMetadataEnvironmentEnum = typeof ProjectMetadataEnvironmentEnum[keyof typeof ProjectMetadataEnvironmentEnum]; export const ProjectMetadataHomeRegionEnum = { EuCentral: 'eu-central', AsiaNortheast: 'asia-northeast', UsEast: 'us-east', UsWest: 'us-west', Us: 'us', Global: 'global', UnknownDefaultOpenApi: '11184809' } as const; export type ProjectMetadataHomeRegionEnum = typeof ProjectMetadataHomeRegionEnum[keyof typeof ProjectMetadataHomeRegionEnum]; export const ProjectMetadataStateEnum = { Running: 'running', Halted: 'halted', Deleted: 'deleted', UnknownDefaultOpenApi: '11184809' } as const; export type ProjectMetadataStateEnum = typeof ProjectMetadataStateEnum[keyof typeof ProjectMetadataStateEnum]; /** * * @export * @interface ProjectServiceIdentity */ export interface ProjectServiceIdentity { /** * * @type {object} * @memberof ProjectServiceIdentity */ 'config': object; } /** * * @export * @interface ProjectServiceOAuth2 */ export interface ProjectServiceOAuth2 { /** * * @type {object} * @memberof ProjectServiceOAuth2 */ 'config': object; } /** * * @export * @interface ProjectServicePermission */ export interface ProjectServicePermission { /** * * @type {object} * @memberof ProjectServicePermission */ 'config': object; } /** * * @export * @interface ProjectServices */ export interface ProjectServices { /** * * @type {ProjectServiceIdentity} * @memberof ProjectServices */ 'identity'?: ProjectServiceIdentity; /** * * @type {ProjectServiceOAuth2} * @memberof ProjectServices */ 'oauth2'?: ProjectServiceOAuth2; /** * * @type {ProjectServicePermission} * @memberof ProjectServices */ 'permission'?: ProjectServicePermission; } /** * * @export * @interface Provider */ export interface Provider { /** * The RP\'s client identifier, issued by the IdP. * @type {string} * @memberof Provider */ 'client_id'?: string; /** * A full path of the IdP config file. * @type {string} * @memberof Provider */ 'config_url'?: string; /** * By specifying one of domain_hints values provided by the accounts endpoints, the FedCM dialog selectively shows the specified account. * @type {string} * @memberof Provider */ 'domain_hint'?: string; /** * Array of strings that specifies the user information (\"name\", \" email\", \"picture\") that RP needs IdP to share with them. Note: Field API is supported by Chrome 132 and later. * @type {Array} * @memberof Provider */ 'fields'?: Array; /** * By specifying one of login_hints values provided by the accounts endpoints, the FedCM dialog selectively shows the specified account. * @type {string} * @memberof Provider */ 'login_hint'?: string; /** * A random string to ensure the response is issued for this specific request. Prevents replay attacks. * @type {string} * @memberof Provider */ 'nonce'?: string; /** * Custom object that allows to specify additional key-value parameters: scope: A string value containing additional permissions that RP needs to request, for example \" drive.readonly calendar.readonly\" nonce: A random string to ensure the response is issued for this specific request. Prevents replay attacks. Other custom key-value parameters. Note: parameters is supported from Chrome 132. * @type {{ [key: string]: string; }} * @memberof Provider */ 'parameters'?: { [key: string]: string; }; } /** * * @export * @interface QuotaUsage */ export interface QuotaUsage { /** * The additional price per unit in cents. * @type {string} * @memberof QuotaUsage */ 'additional_price': string; /** * * @type {boolean} * @memberof QuotaUsage */ 'can_use_more': boolean; /** * production_projects ProductionProjects staging_projects StagingProjects development_projects DevelopmentProjects daily_active_users DailyActiveUsers custom_domains CustomDomains event_streams EventStreams event_stream_events EventStreamEvents sla SLA collaborator_seats CollaboratorSeats edge_cache EdgeCache branding_themes BrandingThemes zendesk_support ZendeskSupport project_metrics ProjectMetrics project_metrics_time_window ProjectMetricsTimeWindow project_metrics_events_history ProjectMetricsEventsHistory organizations Organizations rop_grant ResourceOwnerPasswordGrant concierge_onboarding ConciergeOnboarding credit Credit data_location_global DataLocationGlobal data_location_us DataLocationUS data_location_asiane DataLocationAsiaNorthEast m2m_token_issuance M2MTokenIssuance permission_checks PermissionChecks captcha Captcha saml_sp SAMLSP saml_idp SAMLIDP auto_link_policy AutoLinkPolicy data_location_regional DataLocationRegional Required Features rate_limit_tier RateLimitTier session_rate_limit_tier RateLimitTierSessions identities_list_rate_limit_tier RateLimitTierIdentitiesList permission_checks_rate_limit_tier RateLimitTierPermissionChecks oauth2_introspect_rate_limit_tier RateLimitTierOAuth2Introspect create_recovery_admin_rate_limit_tier RateLimitTierCreateAdminRecovery * @type {string} * @memberof QuotaUsage */ 'feature': QuotaUsageFeatureEnum; /** * * @type {boolean} * @memberof QuotaUsage */ 'feature_available': boolean; /** * * @type {number} * @memberof QuotaUsage */ 'included': number; /** * * @type {boolean} * @memberof QuotaUsage */ 'is_unlimited': boolean; /** * * @type {number} * @memberof QuotaUsage */ 'used': number; } export const QuotaUsageFeatureEnum = { ProductionProjects: 'production_projects', StagingProjects: 'staging_projects', DevelopmentProjects: 'development_projects', DailyActiveUsers: 'daily_active_users', CustomDomains: 'custom_domains', EventStreams: 'event_streams', EventStreamEvents: 'event_stream_events', Sla: 'sla', CollaboratorSeats: 'collaborator_seats', EdgeCache: 'edge_cache', BrandingThemes: 'branding_themes', ZendeskSupport: 'zendesk_support', ProjectMetrics: 'project_metrics', ProjectMetricsTimeWindow: 'project_metrics_time_window', ProjectMetricsEventsHistory: 'project_metrics_events_history', Organizations: 'organizations', RopGrant: 'rop_grant', ConciergeOnboarding: 'concierge_onboarding', Credit: 'credit', DataLocationGlobal: 'data_location_global', DataLocationUs: 'data_location_us', DataLocationAsiane: 'data_location_asiane', M2mTokenIssuance: 'm2m_token_issuance', PermissionChecks: 'permission_checks', Captcha: 'captcha', SamlSp: 'saml_sp', SamlIdp: 'saml_idp', AutoLinkPolicy: 'auto_link_policy', DataLocationRegional: 'data_location_regional', RateLimitTier: 'rate_limit_tier', SessionRateLimitTier: 'session_rate_limit_tier', IdentitiesListRateLimitTier: 'identities_list_rate_limit_tier', PermissionChecksRateLimitTier: 'permission_checks_rate_limit_tier', Oauth2IntrospectRateLimitTier: 'oauth2_introspect_rate_limit_tier', CreateRecoveryAdminRateLimitTier: 'create_recovery_admin_rate_limit_tier', UnknownDefaultOpenApi: '11184809' } as const; export type QuotaUsageFeatureEnum = typeof QuotaUsageFeatureEnum[keyof typeof QuotaUsageFeatureEnum]; /** * * @export * @interface RFC6749ErrorJson */ export interface RFC6749ErrorJson { /** * * @type {string} * @memberof RFC6749ErrorJson */ 'error'?: string; /** * * @type {string} * @memberof RFC6749ErrorJson */ 'error_debug'?: string; /** * * @type {string} * @memberof RFC6749ErrorJson */ 'error_description'?: string; /** * * @type {string} * @memberof RFC6749ErrorJson */ 'error_hint'?: string; /** * * @type {number} * @memberof RFC6749ErrorJson */ 'status_code'?: number; } /** * Used when an administrator creates a recovery code for an identity. * @export * @interface RecoveryCodeForIdentity */ export interface RecoveryCodeForIdentity { /** * Expires At is the timestamp of when the recovery flow expires The timestamp when the recovery code expires. * @type {string} * @memberof RecoveryCodeForIdentity */ 'expires_at'?: string; /** * RecoveryCode is the code that can be used to recover the account * @type {string} * @memberof RecoveryCodeForIdentity */ 'recovery_code': string; /** * RecoveryLink with flow This link opens the recovery UI with an empty `code` field. * @type {string} * @memberof RecoveryCodeForIdentity */ 'recovery_link': string; } /** * This request is used when an identity wants to recover their account. We recommend reading the [Account Recovery Documentation](../self-service/flows/password-reset-account-recovery) * @export * @interface RecoveryFlow */ export interface RecoveryFlow { /** * Active, if set, contains the recovery method that is being used. It is initially not set. * @type {string} * @memberof RecoveryFlow */ 'active'?: string; /** * Contains possible actions that could follow this flow * @type {Array} * @memberof RecoveryFlow */ 'continue_with'?: Array; /** * ExpiresAt is the time (UTC) when the request expires. If the user still wishes to update the setting, a new request has to be initiated. * @type {string} * @memberof RecoveryFlow */ 'expires_at': string; /** * ID represents the request\'s unique ID. When performing the recovery flow, this represents the id in the recovery ui\'s query parameter: http://?request= * @type {string} * @memberof RecoveryFlow */ 'id': string; /** * IssuedAt is the time (UTC) when the request occurred. * @type {string} * @memberof RecoveryFlow */ 'issued_at': string; /** * RequestURL is the initial URL that was requested from Ory Kratos. It can be used to forward information contained in the URL\'s path or query for example. * @type {string} * @memberof RecoveryFlow */ 'request_url': string; /** * ReturnTo contains the requested return_to URL. * @type {string} * @memberof RecoveryFlow */ 'return_to'?: string; /** * State represents the state of this request: choose_method: ask the user to choose a method (e.g. recover account via email) sent_email: the email has been sent to the user passed_challenge: the request was successful and the recovery challenge was passed. * @type {any} * @memberof RecoveryFlow */ 'state': any; /** * TransientPayload is used to pass data from the recovery flow to hooks and email templates * @type {object} * @memberof RecoveryFlow */ 'transient_payload'?: object; /** * The flow type can either be `api` or `browser`. * @type {string} * @memberof RecoveryFlow */ 'type': string; /** * * @type {UiContainer} * @memberof RecoveryFlow */ 'ui': UiContainer; } /** * The experimental state represents the state of a recovery flow. This field is EXPERIMENTAL and subject to change! * @export * @enum {string} */ export const RecoveryFlowState = { ChooseMethod: 'choose_method', SentEmail: 'sent_email', PassedChallenge: 'passed_challenge', UnknownDefaultOpenApi: '11184809' } as const; export type RecoveryFlowState = typeof RecoveryFlowState[keyof typeof RecoveryFlowState]; /** * * @export * @interface RecoveryIdentityAddress */ export interface RecoveryIdentityAddress { /** * CreatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof RecoveryIdentityAddress */ 'created_at'?: string; /** * * @type {string} * @memberof RecoveryIdentityAddress */ 'id': string; /** * UpdatedAt is a helper struct field for gobuffalo.pop. * @type {string} * @memberof RecoveryIdentityAddress */ 'updated_at'?: string; /** * * @type {string} * @memberof RecoveryIdentityAddress */ 'value': string; /** * * @type {string} * @memberof RecoveryIdentityAddress */ 'via': string; } /** * Used when an administrator creates a recovery link for an identity. * @export * @interface RecoveryLinkForIdentity */ export interface RecoveryLinkForIdentity { /** * Recovery Link Expires At The timestamp when the recovery link expires. * @type {string} * @memberof RecoveryLinkForIdentity */ 'expires_at'?: string; /** * Recovery Link This link can be used to recover the account. * @type {string} * @memberof RecoveryLinkForIdentity */ 'recovery_link': string; } /** * * @export * @interface RegistrationFlow */ export interface RegistrationFlow { /** * Active, if set, contains the registration method that is being used. It is initially not set. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML link_recovery CredentialsTypeRecoveryLink CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow). It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode * @type {string} * @memberof RegistrationFlow */ 'active'?: RegistrationFlowActiveEnum; /** * ExpiresAt is the time (UTC) when the flow expires. If the user still wishes to log in, a new flow has to be initiated. * @type {string} * @memberof RegistrationFlow */ 'expires_at': string; /** * ID represents the flow\'s unique ID. When performing the registration flow, this represents the id in the registration ui\'s query parameter: http:///?flow= * @type {string} * @memberof RegistrationFlow */ 'id': string; /** * IssuedAt is the time (UTC) when the flow occurred. * @type {string} * @memberof RegistrationFlow */ 'issued_at': string; /** * Ory OAuth 2.0 Login Challenge. This value is set using the `login_challenge` query parameter of the registration and login endpoints. If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider. * @type {string} * @memberof RegistrationFlow */ 'oauth2_login_challenge'?: string; /** * * @type {OAuth2LoginRequest} * @memberof RegistrationFlow */ 'oauth2_login_request'?: OAuth2LoginRequest; /** * * @type {string} * @memberof RegistrationFlow */ 'organization_id'?: string | null; /** * RequestURL is the initial URL that was requested from Ory Kratos. It can be used to forward information contained in the URL\'s path or query for example. * @type {string} * @memberof RegistrationFlow */ 'request_url': string; /** * ReturnTo contains the requested return_to URL. * @type {string} * @memberof RegistrationFlow */ 'return_to'?: string; /** * SessionTokenExchangeCode holds the secret code that the client can use to retrieve a session token after the flow has been completed. This is only set if the client has requested a session token exchange code, and if the flow is of type \"api\", and only on creating the flow. * @type {string} * @memberof RegistrationFlow */ 'session_token_exchange_code'?: string; /** * State represents the state of this request: choose_method: ask the user to choose a method (e.g. registration with email) sent_email: the email has been sent to the user passed_challenge: the request was successful and the registration challenge was passed. * @type {any} * @memberof RegistrationFlow */ 'state': any; /** * TransientPayload is used to pass data from the registration to a webhook * @type {object} * @memberof RegistrationFlow */ 'transient_payload'?: object; /** * The flow type can either be `api` or `browser`. * @type {string} * @memberof RegistrationFlow */ 'type': string; /** * * @type {UiContainer} * @memberof RegistrationFlow */ 'ui': UiContainer; } export const RegistrationFlowActiveEnum = { Password: 'password', Oidc: 'oidc', Totp: 'totp', LookupSecret: 'lookup_secret', Webauthn: 'webauthn', Code: 'code', Passkey: 'passkey', Profile: 'profile', Saml: 'saml', LinkRecovery: 'link_recovery', CodeRecovery: 'code_recovery', UnknownDefaultOpenApi: '11184809' } as const; export type RegistrationFlowActiveEnum = typeof RegistrationFlowActiveEnum[keyof typeof RegistrationFlowActiveEnum]; /** * The experimental state represents the state of a registration flow. This field is EXPERIMENTAL and subject to change! * @export * @enum {string} */ export const RegistrationFlowState = { ChooseMethod: 'choose_method', SentEmail: 'sent_email', PassedChallenge: 'passed_challenge', UnknownDefaultOpenApi: '11184809' } as const; export type RegistrationFlowState = typeof RegistrationFlowState[keyof typeof RegistrationFlowState]; /** * * @export * @interface RejectOAuth2Request */ export interface RejectOAuth2Request { /** * The error should follow the OAuth2 error format (e.g. `invalid_request`, `login_required`). Defaults to `request_denied`. * @type {string} * @memberof RejectOAuth2Request */ 'error'?: string; /** * Debug contains information to help resolve the problem as a developer. Usually not exposed to the public but only in the server logs. * @type {string} * @memberof RejectOAuth2Request */ 'error_debug'?: string; /** * Description of the error in a human readable format. * @type {string} * @memberof RejectOAuth2Request */ 'error_description'?: string; /** * Hint to help resolve the error. * @type {string} * @memberof RejectOAuth2Request */ 'error_hint'?: string; /** * Represents the HTTP status code of the error (e.g. 401 or 403) Defaults to 400 * @type {number} * @memberof RejectOAuth2Request */ 'status_code'?: number; } /** * Relation Query * @export * @interface RelationQuery */ export interface RelationQuery { /** * Namespace to query * @type {string} * @memberof RelationQuery */ 'namespace'?: string; /** * Object to query * @type {string} * @memberof RelationQuery */ 'object'?: string; /** * Relation to query * @type {string} * @memberof RelationQuery */ 'relation'?: string; /** * SubjectID to query Either SubjectSet or SubjectID can be provided. * @type {string} * @memberof RelationQuery */ 'subject_id'?: string; /** * * @type {SubjectSet} * @memberof RelationQuery */ 'subject_set'?: SubjectSet; } /** * Relationship * @export * @interface Relationship */ export interface Relationship { /** * Namespace of the Relation Tuple * @type {string} * @memberof Relationship */ 'namespace': string; /** * Object of the Relation Tuple * @type {string} * @memberof Relationship */ 'object': string; /** * Relation of the Relation Tuple * @type {string} * @memberof Relationship */ 'relation': string; /** * SubjectID of the Relation Tuple Either SubjectSet or SubjectID can be provided. * @type {string} * @memberof Relationship */ 'subject_id'?: string; /** * * @type {SubjectSet} * @memberof Relationship */ 'subject_set'?: SubjectSet; } /** * Relationship Namespace List * @export * @interface RelationshipNamespaces */ export interface RelationshipNamespaces { /** * * @type {Array} * @memberof RelationshipNamespaces */ 'namespaces'?: Array; } /** * Payload for patching a relationship * @export * @interface RelationshipPatch */ export interface RelationshipPatch { /** * * @type {string} * @memberof RelationshipPatch */ 'action'?: RelationshipPatchActionEnum; /** * * @type {Relationship} * @memberof RelationshipPatch */ 'relation_tuple'?: Relationship; } export const RelationshipPatchActionEnum = { Insert: 'insert', Delete: 'delete', UnknownDefaultOpenApi: '11184809' } as const; export type RelationshipPatchActionEnum = typeof RelationshipPatchActionEnum[keyof typeof RelationshipPatchActionEnum]; /** * Paginated Relationship List * @export * @interface Relationships */ export interface Relationships { /** * The opaque token to provide in a subsequent request to get the next page. It is the empty string iff this is the last page. * @type {string} * @memberof Relationships */ 'next_page_token'?: string; /** * * @type {Array} * @memberof Relationships */ 'relation_tuples'?: Array; } /** * * @export * @interface SchemaPatch */ export interface SchemaPatch { /** * The json schema * @type {object} * @memberof SchemaPatch */ 'data': object; /** * The user defined schema name * @type {string} * @memberof SchemaPatch */ 'name': string; } /** * Is sent when a flow is expired * @export * @interface SelfServiceFlowExpiredError */ export interface SelfServiceFlowExpiredError { /** * * @type {GenericError} * @memberof SelfServiceFlowExpiredError */ 'error'?: GenericError; /** * When the flow has expired * @type {string} * @memberof SelfServiceFlowExpiredError */ 'expired_at'?: string; /** * A Duration represents the elapsed time between two instants as an int64 nanosecond count. The representation limits the largest representable duration to approximately 290 years. * @type {number} * @memberof SelfServiceFlowExpiredError */ 'since'?: number; /** * The flow ID that should be used for the new flow as it contains the correct messages. * @type {string} * @memberof SelfServiceFlowExpiredError */ 'use_flow_id'?: string; } /** * A Session * @export * @interface Session */ export interface Session { /** * Active state. If false the session is no longer active. * @type {boolean} * @memberof Session */ 'active'?: boolean; /** * The Session Authentication Timestamp When this session was authenticated at. If multi-factor authentication was used this is the time when the last factor was authenticated (e.g. the TOTP code challenge was completed). * @type {string} * @memberof Session */ 'authenticated_at'?: string; /** * A list of authenticators which were used to authenticate the session. * @type {Array} * @memberof Session */ 'authentication_methods'?: Array; /** * * @type {AuthenticatorAssuranceLevel} * @memberof Session */ 'authenticator_assurance_level'?: AuthenticatorAssuranceLevel; /** * Devices has history of all endpoints where the session was used * @type {Array} * @memberof Session */ 'devices'?: Array; /** * The Session Expiry When this session expires at. * @type {string} * @memberof Session */ 'expires_at'?: string; /** * Session ID * @type {string} * @memberof Session */ 'id': string; /** * * @type {Identity} * @memberof Session */ 'identity'?: Identity; /** * The Session Issuance Timestamp When this session was issued at. Usually equal or close to `authenticated_at`. * @type {string} * @memberof Session */ 'issued_at'?: string; /** * Tokenized is the tokenized (e.g. JWT) version of the session. It is only set when the `tokenize` query parameter was set to a valid tokenize template during calls to `/session/whoami`. * @type {string} * @memberof Session */ 'tokenized'?: string; } /** * * @export * @interface SessionActivityDatapoint */ export interface SessionActivityDatapoint { /** * Country of the events * @type {string} * @memberof SessionActivityDatapoint */ 'country': string; /** * Number of events that failed in the given timeframe * @type {number} * @memberof SessionActivityDatapoint */ 'failed': number; /** * Number of events that succeeded in the given timeframe * @type {number} * @memberof SessionActivityDatapoint */ 'succeeded': number; } /** * A singular authenticator used during authentication / login. * @export * @interface SessionAuthenticationMethod */ export interface SessionAuthenticationMethod { /** * * @type {AuthenticatorAssuranceLevel} * @memberof SessionAuthenticationMethod */ 'aal'?: AuthenticatorAssuranceLevel; /** * When the authentication challenge was completed. * @type {string} * @memberof SessionAuthenticationMethod */ 'completed_at'?: string; /** * * @type {string} * @memberof SessionAuthenticationMethod */ 'method'?: SessionAuthenticationMethodMethodEnum; /** * The Organization id used for authentication * @type {string} * @memberof SessionAuthenticationMethod */ 'organization'?: string; /** * OIDC or SAML provider id used for authentication * @type {string} * @memberof SessionAuthenticationMethod */ 'provider'?: string; } export const SessionAuthenticationMethodMethodEnum = { LinkRecovery: 'link_recovery', CodeRecovery: 'code_recovery', Password: 'password', Code: 'code', Totp: 'totp', Oidc: 'oidc', Webauthn: 'webauthn', LookupSecret: 'lookup_secret', V06LegacySession: 'v0.6_legacy_session', UnknownDefaultOpenApi: '11184809' } as const; export type SessionAuthenticationMethodMethodEnum = typeof SessionAuthenticationMethodMethodEnum[keyof typeof SessionAuthenticationMethodMethodEnum]; /** * Device corresponding to a Session * @export * @interface SessionDevice */ export interface SessionDevice { /** * Device record ID * @type {string} * @memberof SessionDevice */ 'id': string; /** * IPAddress of the client * @type {string} * @memberof SessionDevice */ 'ip_address'?: string; /** * Geo Location corresponding to the IP Address * @type {string} * @memberof SessionDevice */ 'location'?: string; /** * UserAgent of the client * @type {string} * @memberof SessionDevice */ 'user_agent'?: string; } /** * Set active project in the Ory Network Console Request Body * @export * @interface SetActiveProjectInConsoleBody */ export interface SetActiveProjectInConsoleBody { /** * Project ID The Project ID you want to set active. format: uuid * @type {string} * @memberof SetActiveProjectInConsoleBody */ 'project_id': string; } /** * Update Custom Hostname Body * @export * @interface SetCustomDomainBody */ export interface SetCustomDomainBody { /** * The domain where cookies will be set. Has to be a parent domain of the custom hostname to work. * @type {string} * @memberof SetCustomDomainBody */ 'cookie_domain'?: string; /** * CORS Allowed origins for the custom hostname. * @type {Array} * @memberof SetCustomDomainBody */ 'cors_allowed_origins'?: Array; /** * CORS Enabled for the custom hostname. * @type {boolean} * @memberof SetCustomDomainBody */ 'cors_enabled'?: boolean; /** * The custom UI base URL where the UI will be exposed. * @type {string} * @memberof SetCustomDomainBody */ 'custom_ui_base_url'?: string; /** * The custom hostname where the API will be exposed. * @type {string} * @memberof SetCustomDomainBody */ 'hostname'?: string; } /** * Update Event Stream Body * @export * @interface SetEventStreamBody */ export interface SetEventStreamBody { /** * The AWS IAM role ARN to assume when publishing to the SNS topic. * @type {string} * @memberof SetEventStreamBody */ 'role_arn': string; /** * The AWS SNS topic ARN. * @type {string} * @memberof SetEventStreamBody */ 'topic_arn': string; /** * The type of the event stream (AWS SNS, GCP Pub/Sub, etc). * @type {string} * @memberof SetEventStreamBody */ 'type': SetEventStreamBodyTypeEnum; } export const SetEventStreamBodyTypeEnum = { Sns: 'sns', UnknownDefaultOpenApi: '11184809' } as const; export type SetEventStreamBodyTypeEnum = typeof SetEventStreamBodyTypeEnum[keyof typeof SetEventStreamBodyTypeEnum]; /** * * @export * @interface SetProject */ export interface SetProject { /** * * @type {ProjectCors} * @memberof SetProject */ 'cors_admin': ProjectCors; /** * * @type {ProjectCors} * @memberof SetProject */ 'cors_public': ProjectCors; /** * The name of the project. * @type {string} * @memberof SetProject */ 'name': string; /** * * @type {ProjectServices} * @memberof SetProject */ 'services': ProjectServices; } /** * * @export * @interface SetProjectBrandingThemeBody */ export interface SetProjectBrandingThemeBody { /** * Favicon Type * @type {string} * @memberof SetProjectBrandingThemeBody */ 'favicon_type'?: string; /** * Favicon URL * @type {string} * @memberof SetProjectBrandingThemeBody */ 'favicon_url'?: string; /** * Logo type * @type {string} * @memberof SetProjectBrandingThemeBody */ 'logo_type'?: string; /** * Logo URL * @type {string} * @memberof SetProjectBrandingThemeBody */ 'logo_url'?: string; /** * Branding name * @type {string} * @memberof SetProjectBrandingThemeBody */ 'name'?: string; /** * * @type {ProjectBrandingColors} * @memberof SetProjectBrandingThemeBody */ 'theme'?: ProjectBrandingColors; } /** * This flow is used when an identity wants to update settings (e.g. profile data, passwords, ...) in a selfservice manner. We recommend reading the [User Settings Documentation](../self-service/flows/user-settings) * @export * @interface SettingsFlow */ export interface SettingsFlow { /** * Active, if set, contains the registration method that is being used. It is initially not set. * @type {string} * @memberof SettingsFlow */ 'active'?: string; /** * Contains a list of actions, that could follow this flow It can, for example, contain a reference to the verification flow, created as part of the user\'s registration. * @type {Array} * @memberof SettingsFlow */ 'continue_with'?: Array; /** * ExpiresAt is the time (UTC) when the flow expires. If the user still wishes to update the setting, a new flow has to be initiated. * @type {string} * @memberof SettingsFlow */ 'expires_at': string; /** * ID represents the flow\'s unique ID. When performing the settings flow, this represents the id in the settings ui\'s query parameter: http://?flow= * @type {string} * @memberof SettingsFlow */ 'id': string; /** * * @type {Identity} * @memberof SettingsFlow */ 'identity': Identity; /** * IssuedAt is the time (UTC) when the flow occurred. * @type {string} * @memberof SettingsFlow */ 'issued_at': string; /** * RequestURL is the initial URL that was requested from Ory Kratos. It can be used to forward information contained in the URL\'s path or query for example. * @type {string} * @memberof SettingsFlow */ 'request_url': string; /** * ReturnTo contains the requested return_to URL. * @type {string} * @memberof SettingsFlow */ 'return_to'?: string; /** * State represents the state of this flow. It knows two states: show_form: No user data has been collected, or it is invalid, and thus the form should be shown. success: Indicates that the settings flow has been updated successfully with the provided data. Done will stay true when repeatedly checking. If set to true, done will revert back to false only when a flow with invalid (e.g. \"please use a valid phone number\") data was sent. * @type {any} * @memberof SettingsFlow */ 'state': any; /** * TransientPayload is used to pass data from the settings flow to hooks and email templates * @type {object} * @memberof SettingsFlow */ 'transient_payload'?: object; /** * The flow type can either be `api` or `browser`. * @type {string} * @memberof SettingsFlow */ 'type': string; /** * * @type {UiContainer} * @memberof SettingsFlow */ 'ui': UiContainer; } /** * The experimental state represents the state of a settings flow. This field is EXPERIMENTAL and subject to change! * @export * @enum {string} */ export const SettingsFlowState = { ShowForm: 'show_form', Success: 'success', UnknownDefaultOpenApi: '11184809' } as const; export type SettingsFlowState = typeof SettingsFlowState[keyof typeof SettingsFlowState]; /** * * @export * @interface SourcePosition */ export interface SourcePosition { /** * * @type {number} * @memberof SourcePosition */ 'Line'?: number; /** * * @type {number} * @memberof SourcePosition */ 'column'?: number; } /** * * @export * @interface SubjectSet */ export interface SubjectSet { /** * Namespace of the Subject Set * @type {string} * @memberof SubjectSet */ 'namespace': string; /** * Object of the Subject Set * @type {string} * @memberof SubjectSet */ 'object': string; /** * Relation of the Subject Set * @type {string} * @memberof SubjectSet */ 'relation': string; } /** * * @export * @interface Subscription */ export interface Subscription { /** * * @type {string} * @memberof Subscription */ 'created_at': string; /** * The currency of the subscription. To change this, a new subscription must be created. usd USD eur Euro * @type {string} * @memberof Subscription */ 'currency': SubscriptionCurrencyEnum; /** * The currently active interval of the subscription monthly Monthly yearly Yearly * @type {string} * @memberof Subscription */ 'current_interval': SubscriptionCurrentIntervalEnum; /** * The currently active plan of the subscription * @type {string} * @memberof Subscription */ 'current_plan': string; /** * * @type {PlanDetails} * @memberof Subscription */ 'current_plan_details'?: PlanDetails; /** * The ID of the stripe customer * @type {string} * @memberof Subscription */ 'customer_id': string; /** * The ID of the subscription * @type {string} * @memberof Subscription */ 'id': string; /** * * @type {string} * @memberof Subscription */ 'interval_changes_to': string | null; /** * * @type {string} * @memberof Subscription */ 'ongoing_stripe_checkout_id'?: string | null; /** * Until when the subscription is payed * @type {string} * @memberof Subscription */ 'payed_until': string; /** * * @type {string} * @memberof Subscription */ 'plan_changes_at'?: string; /** * * @type {string} * @memberof Subscription */ 'plan_changes_to': string | null; /** * For `collection_method=charge_automatically` a subscription moves into `incomplete` if the initial payment attempt fails. A subscription in this status can only have metadata and default_source updated. Once the first invoice is paid, the subscription moves into an `active` status. If the first invoice is not paid within 23 hours, the subscription transitions to `incomplete_expired`. This is a terminal status, the open invoice will be voided and no further invoices will be generated. A subscription that is currently in a trial period is `trialing` and moves to `active` when the trial period is over. A subscription can only enter a `paused` status [when a trial ends without a payment method](https://stripe.com/billing/subscriptions/trials#create-free-trials-without-payment). A `paused` subscription doesn\'t generate invoices and can be resumed after your customer adds their payment method. The `paused` status is different from [pausing collection](https://stripe.com/billing/subscriptions/pause-payment), which still generates invoices and leaves the subscription\'s status unchanged. If subscription `collection_method=charge_automatically`, it becomes `past_due` when payment is required but cannot be paid (due to failed payment or awaiting additional user actions). Once Stripe has exhausted all payment retry attempts, the subscription will become `canceled` or `unpaid` (depending on your subscriptions settings). If subscription `collection_method=send_invoice` it becomes `past_due` when its invoice is not paid by the due date, and `canceled` or `unpaid` if it is still not paid by an additional deadline after that. Note that when a subscription has a status of `unpaid`, no subsequent invoices will be attempted (invoices will be created, but then immediately automatically closed). After receiving updated payment information from a customer, you may choose to reopen and pay their closed invoices. * @type {string} * @memberof Subscription */ 'status': string; /** * * @type {string} * @memberof Subscription */ 'stripe_checkout_expires_at'?: string; /** * * @type {string} * @memberof Subscription */ 'updated_at': string; } export const SubscriptionCurrencyEnum = { Usd: 'usd', Eur: 'eur', UnknownDefaultOpenApi: '11184809' } as const; export type SubscriptionCurrencyEnum = typeof SubscriptionCurrencyEnum[keyof typeof SubscriptionCurrencyEnum]; export const SubscriptionCurrentIntervalEnum = { Monthly: 'monthly', Yearly: 'yearly', UnknownDefaultOpenApi: '11184809' } as const; export type SubscriptionCurrentIntervalEnum = typeof SubscriptionCurrentIntervalEnum[keyof typeof SubscriptionCurrentIntervalEnum]; /** * The Response for Registration Flows via API * @export * @interface SuccessfulCodeExchangeResponse */ export interface SuccessfulCodeExchangeResponse { /** * * @type {Session} * @memberof SuccessfulCodeExchangeResponse */ 'session': Session; /** * The Session Token A session token is equivalent to a session cookie, but it can be sent in the HTTP Authorization Header: Authorization: bearer ${session-token} The session token is only issued for API flows, not for Browser flows! * @type {string} * @memberof SuccessfulCodeExchangeResponse */ 'session_token'?: string; } /** * The Response for Login Flows via API * @export * @interface SuccessfulNativeLogin */ export interface SuccessfulNativeLogin { /** * Contains a list of actions, that could follow this flow It can, for example, this will contain a reference to the verification flow, created as part of the user\'s registration or the token of the session. * @type {Array} * @memberof SuccessfulNativeLogin */ 'continue_with'?: Array; /** * * @type {Session} * @memberof SuccessfulNativeLogin */ 'session': Session; /** * The Session Token A session token is equivalent to a session cookie, but it can be sent in the HTTP Authorization Header: Authorization: bearer ${session-token} The session token is only issued for API flows, not for Browser flows! * @type {string} * @memberof SuccessfulNativeLogin */ 'session_token'?: string; } /** * The Response for Registration Flows via API * @export * @interface SuccessfulNativeRegistration */ export interface SuccessfulNativeRegistration { /** * Contains a list of actions, that could follow this flow It can, for example, this will contain a reference to the verification flow, created as part of the user\'s registration or the token of the session. * @type {Array} * @memberof SuccessfulNativeRegistration */ 'continue_with'?: Array; /** * * @type {Identity} * @memberof SuccessfulNativeRegistration */ 'identity': Identity; /** * * @type {Session} * @memberof SuccessfulNativeRegistration */ 'session'?: Session; /** * The Session Token This field is only set when the session hook is configured as a post-registration hook. A session token is equivalent to a session cookie, but it can be sent in the HTTP Authorization Header: Authorization: bearer ${session-token} The session token is only issued for API flows, not for Browser flows! * @type {string} * @memberof SuccessfulNativeRegistration */ 'session_token'?: string; } /** * * @export * @interface SuccessfulProjectUpdate */ export interface SuccessfulProjectUpdate { /** * * @type {Project} * @memberof SuccessfulProjectUpdate */ 'project': Project; /** * Import Warnings Not all configuration items can be imported to the Ory Network. For example, setting the port does not make sense because the Ory Network provides the runtime and networking. This field contains warnings where configuration keys were found but can not be imported. These keys will be ignored by the Ory Network. This field will help you understand why certain configuration keys might not be respected! * @type {Array} * @memberof SuccessfulProjectUpdate */ 'warnings': Array; } /** * * @export * @interface TaxLineItem */ export interface TaxLineItem { /** * * @type {number} * @memberof TaxLineItem */ 'amount_in_cent'?: number; /** * * @type {string} * @memberof TaxLineItem */ 'title'?: string; } /** * * @export * @interface TimeInterval */ export interface TimeInterval { /** * The end of the time period. * @type {string} * @memberof TimeInterval */ 'end': string; /** * The start of the time period. * @type {string} * @memberof TimeInterval */ 'start': string; } /** * * @export * @interface TokenPagination */ export interface TokenPagination { /** * Items per page This is the number of items per page to return. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {number} * @memberof TokenPagination */ 'page_size'?: number; /** * Next Page Token The next page token. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {string} * @memberof TokenPagination */ 'page_token'?: string; } /** * * @export * @interface TokenPaginationHeaders */ export interface TokenPaginationHeaders { /** * The link header contains pagination links. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). in: header * @type {string} * @memberof TokenPaginationHeaders */ 'link'?: string; /** * The total number of clients. in: header * @type {string} * @memberof TokenPaginationHeaders */ 'x-total-count'?: string; } /** * The `Link` HTTP header contains multiple links (`first`, `next`, `last`, `previous`) formatted as: `; rel=\"{page}\"` For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @export * @interface TokenPaginationRequestParameters */ export interface TokenPaginationRequestParameters { /** * Items per Page This is the number of items per page to return. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {number} * @memberof TokenPaginationRequestParameters */ 'page_size'?: number; /** * Next Page Token The next page token. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {string} * @memberof TokenPaginationRequestParameters */ 'page_token'?: string; } /** * The `Link` HTTP header contains multiple links (`first`, `next`, `last`, `previous`) formatted as: `; rel=\"{page}\"` For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @export * @interface TokenPaginationResponseHeaders */ export interface TokenPaginationResponseHeaders { /** * The Link HTTP Header The `Link` header contains a comma-delimited list of links to the following pages: first: The first page of results. next: The next page of results. prev: The previous page of results. last: The last page of results. Pages are omitted if they do not exist. For example, if there is no next page, the `next` link is omitted. Examples: ; rel=\"first\",; rel=\"next\",; rel=\"prev\",; rel=\"last\" * @type {string} * @memberof TokenPaginationResponseHeaders */ 'link'?: string; /** * The X-Total-Count HTTP Header The `X-Total-Count` header contains the total number of items in the collection. * @type {number} * @memberof TokenPaginationResponseHeaders */ 'x-total-count'?: number; } /** * Trust OAuth2 JWT Bearer Grant Type Issuer Request Body * @export * @interface TrustOAuth2JwtGrantIssuer */ export interface TrustOAuth2JwtGrantIssuer { /** * The \"allow_any_subject\" indicates that the issuer is allowed to have any principal as the subject of the JWT. * @type {boolean} * @memberof TrustOAuth2JwtGrantIssuer */ 'allow_any_subject'?: boolean; /** * The \"expires_at\" indicates, when grant will expire, so we will reject assertion from \"issuer\" targeting \"subject\". * @type {string} * @memberof TrustOAuth2JwtGrantIssuer */ 'expires_at': string; /** * The \"issuer\" identifies the principal that issued the JWT assertion (same as \"iss\" claim in JWT). * @type {string} * @memberof TrustOAuth2JwtGrantIssuer */ 'issuer': string; /** * * @type {JsonWebKey} * @memberof TrustOAuth2JwtGrantIssuer */ 'jwk': JsonWebKey; /** * The \"scope\" contains list of scope values (as described in Section 3.3 of OAuth 2.0 [RFC6749]) * @type {Array} * @memberof TrustOAuth2JwtGrantIssuer */ 'scope': Array; /** * The \"subject\" identifies the principal that is the subject of the JWT. * @type {string} * @memberof TrustOAuth2JwtGrantIssuer */ 'subject'?: string; } /** * OAuth2 JWT Bearer Grant Type Issuer Trust Relationship * @export * @interface TrustedOAuth2JwtGrantIssuer */ export interface TrustedOAuth2JwtGrantIssuer { /** * The \"allow_any_subject\" indicates that the issuer is allowed to have any principal as the subject of the JWT. * @type {boolean} * @memberof TrustedOAuth2JwtGrantIssuer */ 'allow_any_subject'?: boolean; /** * The \"created_at\" indicates, when grant was created. * @type {string} * @memberof TrustedOAuth2JwtGrantIssuer */ 'created_at'?: string; /** * The \"expires_at\" indicates, when grant will expire, so we will reject assertion from \"issuer\" targeting \"subject\". * @type {string} * @memberof TrustedOAuth2JwtGrantIssuer */ 'expires_at'?: string; /** * * @type {string} * @memberof TrustedOAuth2JwtGrantIssuer */ 'id'?: string; /** * The \"issuer\" identifies the principal that issued the JWT assertion (same as \"iss\" claim in JWT). * @type {string} * @memberof TrustedOAuth2JwtGrantIssuer */ 'issuer'?: string; /** * * @type {TrustedOAuth2JwtGrantJsonWebKey} * @memberof TrustedOAuth2JwtGrantIssuer */ 'public_key'?: TrustedOAuth2JwtGrantJsonWebKey; /** * The \"scope\" contains list of scope values (as described in Section 3.3 of OAuth 2.0 [RFC6749]) * @type {Array} * @memberof TrustedOAuth2JwtGrantIssuer */ 'scope'?: Array; /** * The \"subject\" identifies the principal that is the subject of the JWT. * @type {string} * @memberof TrustedOAuth2JwtGrantIssuer */ 'subject'?: string; } /** * OAuth2 JWT Bearer Grant Type Issuer Trusted JSON Web Key * @export * @interface TrustedOAuth2JwtGrantJsonWebKey */ export interface TrustedOAuth2JwtGrantJsonWebKey { /** * The \"key_id\" is key unique identifier (same as kid header in jws/jwt). * @type {string} * @memberof TrustedOAuth2JwtGrantJsonWebKey */ 'kid'?: string; /** * The \"set\" is basically a name for a group(set) of keys. Will be the same as \"issuer\" in grant. * @type {string} * @memberof TrustedOAuth2JwtGrantJsonWebKey */ 'set'?: string; } /** * Container represents a HTML Form. The container can work with both HTTP Form and JSON requests * @export * @interface UiContainer */ export interface UiContainer { /** * Action should be used as the form action URL `

`. * @type {string} * @memberof UiContainer */ 'action': string; /** * * @type {Array} * @memberof UiContainer */ 'messages'?: Array; /** * Method is the form method (e.g. POST) * @type {string} * @memberof UiContainer */ 'method': string; /** * * @type {Array} * @memberof UiContainer */ 'nodes': Array; } /** * Nodes are represented as HTML elements or their native UI equivalents. For example, a node can be an `` tag, or an `` but also `some plain text`. * @export * @interface UiNode */ export interface UiNode { /** * * @type {UiNodeAttributes} * @memberof UiNode */ 'attributes': UiNodeAttributes; /** * Group specifies which group (e.g. password authenticator) this node belongs to. default DefaultGroup password PasswordGroup oidc OpenIDConnectGroup profile ProfileGroup link LinkGroup code CodeGroup totp TOTPGroup lookup_secret LookupGroup webauthn WebAuthnGroup passkey PasskeyGroup identifier_first IdentifierFirstGroup captcha CaptchaGroup saml SAMLGroup * @type {string} * @memberof UiNode */ 'group': UiNodeGroupEnum; /** * * @type {Array} * @memberof UiNode */ 'messages': Array; /** * * @type {UiNodeMeta} * @memberof UiNode */ 'meta': UiNodeMeta; /** * The node\'s type text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNode */ 'type': UiNodeTypeEnum; } export const UiNodeGroupEnum = { Default: 'default', Password: 'password', Oidc: 'oidc', Profile: 'profile', Link: 'link', Code: 'code', Totp: 'totp', LookupSecret: 'lookup_secret', Webauthn: 'webauthn', Passkey: 'passkey', IdentifierFirst: 'identifier_first', Captcha: 'captcha', Saml: 'saml', Oauth2Consent: 'oauth2_consent', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeGroupEnum = typeof UiNodeGroupEnum[keyof typeof UiNodeGroupEnum]; export const UiNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeTypeEnum = typeof UiNodeTypeEnum[keyof typeof UiNodeTypeEnum]; /** * * @export * @interface UiNodeAnchorAttributes */ export interface UiNodeAnchorAttributes { /** * The link\'s href (destination) URL. format: uri * @type {string} * @memberof UiNodeAnchorAttributes */ 'href': string; /** * A unique identifier * @type {string} * @memberof UiNodeAnchorAttributes */ 'id': string; /** * NodeType represents this node\'s types. It is a mirror of `node.type` and is primarily used to allow compatibility with OpenAPI 3.0. In this struct it technically always is \"a\". text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNodeAnchorAttributes */ 'node_type': UiNodeAnchorAttributesNodeTypeEnum; /** * * @type {UiText} * @memberof UiNodeAnchorAttributes */ 'title': UiText; } export const UiNodeAnchorAttributesNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeAnchorAttributesNodeTypeEnum = typeof UiNodeAnchorAttributesNodeTypeEnum[keyof typeof UiNodeAnchorAttributesNodeTypeEnum]; /** * @type UiNodeAttributes * @export */ export type UiNodeAttributes = { node_type: 'a' } & UiNodeAnchorAttributes | { node_type: 'div' } & UiNodeDivisionAttributes | { node_type: 'img' } & UiNodeImageAttributes | { node_type: 'input' } & UiNodeInputAttributes | { node_type: 'script' } & UiNodeScriptAttributes | { node_type: 'text' } & UiNodeTextAttributes; /** * Division sections are used for interactive widgets that require a hook in the DOM / view. * @export * @interface UiNodeDivisionAttributes */ export interface UiNodeDivisionAttributes { /** * The script MIME type * @type {string} * @memberof UiNodeDivisionAttributes */ 'class'?: string; /** * Data is a map of key-value pairs that are passed to the division. They may be used for `data-...` attributes. * @type {{ [key: string]: string; }} * @memberof UiNodeDivisionAttributes */ 'data'?: { [key: string]: string; }; /** * A unique identifier * @type {string} * @memberof UiNodeDivisionAttributes */ 'id': string; /** * NodeType represents this node\'s types. It is a mirror of `node.type` and is primarily used to allow compatibility with OpenAPI 3.0. In this struct it technically always is \"script\". text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNodeDivisionAttributes */ 'node_type': UiNodeDivisionAttributesNodeTypeEnum; } export const UiNodeDivisionAttributesNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeDivisionAttributesNodeTypeEnum = typeof UiNodeDivisionAttributesNodeTypeEnum[keyof typeof UiNodeDivisionAttributesNodeTypeEnum]; /** * * @export * @interface UiNodeImageAttributes */ export interface UiNodeImageAttributes { /** * Height of the image * @type {number} * @memberof UiNodeImageAttributes */ 'height': number; /** * A unique identifier * @type {string} * @memberof UiNodeImageAttributes */ 'id': string; /** * NodeType represents this node\'s types. It is a mirror of `node.type` and is primarily used to allow compatibility with OpenAPI 3.0. In this struct it technically always is \"img\". text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNodeImageAttributes */ 'node_type': UiNodeImageAttributesNodeTypeEnum; /** * The image\'s source URL. format: uri * @type {string} * @memberof UiNodeImageAttributes */ 'src': string; /** * Width of the image * @type {number} * @memberof UiNodeImageAttributes */ 'width': number; } export const UiNodeImageAttributesNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeImageAttributesNodeTypeEnum = typeof UiNodeImageAttributesNodeTypeEnum[keyof typeof UiNodeImageAttributesNodeTypeEnum]; /** * InputAttributes represents the attributes of an input node * @export * @interface UiNodeInputAttributes */ export interface UiNodeInputAttributes { /** * The autocomplete attribute for the input. email InputAttributeAutocompleteEmail tel InputAttributeAutocompleteTel url InputAttributeAutocompleteUrl current-password InputAttributeAutocompleteCurrentPassword new-password InputAttributeAutocompleteNewPassword one-time-code InputAttributeAutocompleteOneTimeCode * @type {string} * @memberof UiNodeInputAttributes */ 'autocomplete'?: UiNodeInputAttributesAutocompleteEnum; /** * Sets the input\'s disabled field to true or false. * @type {boolean} * @memberof UiNodeInputAttributes */ 'disabled': boolean; /** * * @type {UiText} * @memberof UiNodeInputAttributes */ 'label'?: UiText; /** * MaxLength may contain the input\'s maximum length. * @type {number} * @memberof UiNodeInputAttributes */ 'maxlength'?: number; /** * The input\'s element name. * @type {string} * @memberof UiNodeInputAttributes */ 'name': string; /** * NodeType represents this node\'s types. It is a mirror of `node.type` and is primarily used to allow compatibility with OpenAPI 3.0. In this struct it technically always is \"input\". text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNodeInputAttributes */ 'node_type': UiNodeInputAttributesNodeTypeEnum; /** * OnClick may contain javascript which should be executed on click. This is primarily used for WebAuthn. Deprecated: Using OnClick requires the use of eval() which is a security risk. Use OnClickTrigger instead. * @type {string} * @memberof UiNodeInputAttributes */ 'onclick'?: string; /** * OnClickTrigger may contain a WebAuthn trigger which should be executed on click. The trigger maps to a JavaScript function provided by Ory, which triggers actions such as PassKey registration or login. oryWebAuthnRegistration WebAuthnTriggersWebAuthnRegistration oryWebAuthnLogin WebAuthnTriggersWebAuthnLogin oryPasskeyLogin WebAuthnTriggersPasskeyLogin oryPasskeyLoginAutocompleteInit WebAuthnTriggersPasskeyLoginAutocompleteInit oryPasskeyRegistration WebAuthnTriggersPasskeyRegistration oryPasskeySettingsRegistration WebAuthnTriggersPasskeySettingsRegistration * @type {string} * @memberof UiNodeInputAttributes */ 'onclickTrigger'?: UiNodeInputAttributesOnclickTriggerEnum; /** * OnLoad may contain javascript which should be executed on load. This is primarily used for WebAuthn. Deprecated: Using OnLoad requires the use of eval() which is a security risk. Use OnLoadTrigger instead. * @type {string} * @memberof UiNodeInputAttributes */ 'onload'?: string; /** * OnLoadTrigger may contain a WebAuthn trigger which should be executed on load. The trigger maps to a JavaScript function provided by Ory, which triggers actions such as PassKey registration or login. oryWebAuthnRegistration WebAuthnTriggersWebAuthnRegistration oryWebAuthnLogin WebAuthnTriggersWebAuthnLogin oryPasskeyLogin WebAuthnTriggersPasskeyLogin oryPasskeyLoginAutocompleteInit WebAuthnTriggersPasskeyLoginAutocompleteInit oryPasskeyRegistration WebAuthnTriggersPasskeyRegistration oryPasskeySettingsRegistration WebAuthnTriggersPasskeySettingsRegistration * @type {string} * @memberof UiNodeInputAttributes */ 'onloadTrigger'?: UiNodeInputAttributesOnloadTriggerEnum; /** * The input\'s pattern. * @type {string} * @memberof UiNodeInputAttributes */ 'pattern'?: string; /** * Mark this input field as required. * @type {boolean} * @memberof UiNodeInputAttributes */ 'required'?: boolean; /** * The input\'s element type. text InputAttributeTypeText password InputAttributeTypePassword number InputAttributeTypeNumber checkbox InputAttributeTypeCheckbox hidden InputAttributeTypeHidden email InputAttributeTypeEmail tel InputAttributeTypeTel submit InputAttributeTypeSubmit button InputAttributeTypeButton datetime-local InputAttributeTypeDateTimeLocal date InputAttributeTypeDate url InputAttributeTypeURI * @type {string} * @memberof UiNodeInputAttributes */ 'type': UiNodeInputAttributesTypeEnum; /** * The input\'s value. * @type {any} * @memberof UiNodeInputAttributes */ 'value'?: any | null; } export const UiNodeInputAttributesAutocompleteEnum = { Email: 'email', Tel: 'tel', Url: 'url', CurrentPassword: 'current-password', NewPassword: 'new-password', OneTimeCode: 'one-time-code', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeInputAttributesAutocompleteEnum = typeof UiNodeInputAttributesAutocompleteEnum[keyof typeof UiNodeInputAttributesAutocompleteEnum]; export const UiNodeInputAttributesNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeInputAttributesNodeTypeEnum = typeof UiNodeInputAttributesNodeTypeEnum[keyof typeof UiNodeInputAttributesNodeTypeEnum]; export const UiNodeInputAttributesOnclickTriggerEnum = { OryWebAuthnRegistration: 'oryWebAuthnRegistration', OryWebAuthnLogin: 'oryWebAuthnLogin', OryPasskeyLogin: 'oryPasskeyLogin', OryPasskeyLoginAutocompleteInit: 'oryPasskeyLoginAutocompleteInit', OryPasskeyRegistration: 'oryPasskeyRegistration', OryPasskeySettingsRegistration: 'oryPasskeySettingsRegistration', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeInputAttributesOnclickTriggerEnum = typeof UiNodeInputAttributesOnclickTriggerEnum[keyof typeof UiNodeInputAttributesOnclickTriggerEnum]; export const UiNodeInputAttributesOnloadTriggerEnum = { OryWebAuthnRegistration: 'oryWebAuthnRegistration', OryWebAuthnLogin: 'oryWebAuthnLogin', OryPasskeyLogin: 'oryPasskeyLogin', OryPasskeyLoginAutocompleteInit: 'oryPasskeyLoginAutocompleteInit', OryPasskeyRegistration: 'oryPasskeyRegistration', OryPasskeySettingsRegistration: 'oryPasskeySettingsRegistration', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeInputAttributesOnloadTriggerEnum = typeof UiNodeInputAttributesOnloadTriggerEnum[keyof typeof UiNodeInputAttributesOnloadTriggerEnum]; export const UiNodeInputAttributesTypeEnum = { Text: 'text', Password: 'password', Number: 'number', Checkbox: 'checkbox', Hidden: 'hidden', Email: 'email', Tel: 'tel', Submit: 'submit', Button: 'button', DatetimeLocal: 'datetime-local', Date: 'date', Url: 'url', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeInputAttributesTypeEnum = typeof UiNodeInputAttributesTypeEnum[keyof typeof UiNodeInputAttributesTypeEnum]; /** * This might include a label and other information that can optionally be used to render UIs. * @export * @interface UiNodeMeta */ export interface UiNodeMeta { /** * * @type {UiText} * @memberof UiNodeMeta */ 'label'?: UiText; } /** * * @export * @interface UiNodeScriptAttributes */ export interface UiNodeScriptAttributes { /** * The script async type * @type {boolean} * @memberof UiNodeScriptAttributes */ 'async': boolean; /** * The script cross origin policy * @type {string} * @memberof UiNodeScriptAttributes */ 'crossorigin': string; /** * A unique identifier * @type {string} * @memberof UiNodeScriptAttributes */ 'id': string; /** * The script\'s integrity hash * @type {string} * @memberof UiNodeScriptAttributes */ 'integrity': string; /** * NodeType represents this node\'s types. It is a mirror of `node.type` and is primarily used to allow compatibility with OpenAPI 3.0. In this struct it technically always is \"script\". text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNodeScriptAttributes */ 'node_type': UiNodeScriptAttributesNodeTypeEnum; /** * Nonce for CSP A nonce you may want to use to improve your Content Security Policy. You do not have to use this value but if you want to improve your CSP policies you may use it. You can also choose to use your own nonce value! * @type {string} * @memberof UiNodeScriptAttributes */ 'nonce': string; /** * The script referrer policy * @type {string} * @memberof UiNodeScriptAttributes */ 'referrerpolicy': string; /** * The script source * @type {string} * @memberof UiNodeScriptAttributes */ 'src': string; /** * The script MIME type * @type {string} * @memberof UiNodeScriptAttributes */ 'type': string; } export const UiNodeScriptAttributesNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeScriptAttributesNodeTypeEnum = typeof UiNodeScriptAttributesNodeTypeEnum[keyof typeof UiNodeScriptAttributesNodeTypeEnum]; /** * * @export * @interface UiNodeTextAttributes */ export interface UiNodeTextAttributes { /** * A unique identifier * @type {string} * @memberof UiNodeTextAttributes */ 'id': string; /** * NodeType represents this node\'s types. It is a mirror of `node.type` and is primarily used to allow compatibility with OpenAPI 3.0. In this struct it technically always is \"text\". text Text input Input img Image a Anchor script Script div Division * @type {string} * @memberof UiNodeTextAttributes */ 'node_type': UiNodeTextAttributesNodeTypeEnum; /** * * @type {UiText} * @memberof UiNodeTextAttributes */ 'text': UiText; } export const UiNodeTextAttributesNodeTypeEnum = { Text: 'text', Input: 'input', Img: 'img', A: 'a', Script: 'script', Div: 'div', UnknownDefaultOpenApi: '11184809' } as const; export type UiNodeTextAttributesNodeTypeEnum = typeof UiNodeTextAttributesNodeTypeEnum[keyof typeof UiNodeTextAttributesNodeTypeEnum]; /** * * @export * @interface UiText */ export interface UiText { /** * The message\'s context. Useful when customizing messages. * @type {object} * @memberof UiText */ 'context'?: object; /** * * @type {number} * @memberof UiText */ 'id': number; /** * The message text. Written in american english. * @type {string} * @memberof UiText */ 'text': string; /** * The message type. info Info error Error success Success * @type {string} * @memberof UiText */ 'type': UiTextTypeEnum; } export const UiTextTypeEnum = { Info: 'info', Error: 'error', Success: 'success', UnknownDefaultOpenApi: '11184809' } as const; export type UiTextTypeEnum = typeof UiTextTypeEnum[keyof typeof UiTextTypeEnum]; /** * * @export * @interface UpdateFedcmFlowBody */ export interface UpdateFedcmFlowBody { /** * CSRFToken is the anti-CSRF token. * @type {string} * @memberof UpdateFedcmFlowBody */ 'csrf_token': string; /** * Nonce is the nonce that was used in the `navigator.credentials.get` call. If specified, it must match the `nonce` claim in the token. * @type {string} * @memberof UpdateFedcmFlowBody */ 'nonce'?: string; /** * Token contains the result of `navigator.credentials.get`. * @type {string} * @memberof UpdateFedcmFlowBody */ 'token': string; } /** * Update Identity Body * @export * @interface UpdateIdentityBody */ export interface UpdateIdentityBody { /** * * @type {IdentityWithCredentials} * @memberof UpdateIdentityBody */ 'credentials'?: IdentityWithCredentials; /** * Store metadata about the user which is only accessible through admin APIs such as `GET /admin/identities/`. * @type {any} * @memberof UpdateIdentityBody */ 'metadata_admin'?: any; /** * Store metadata about the identity which the identity itself can see when calling for example the session endpoint. Do not store sensitive information (e.g. credit score) about the identity in this field. * @type {any} * @memberof UpdateIdentityBody */ 'metadata_public'?: any; /** * SchemaID is the ID of the JSON Schema to be used for validating the identity\'s traits. If set will update the Identity\'s SchemaID. * @type {string} * @memberof UpdateIdentityBody */ 'schema_id': string; /** * State is the identity\'s state. active StateActive inactive StateInactive * @type {string} * @memberof UpdateIdentityBody */ 'state': UpdateIdentityBodyStateEnum; /** * Traits represent an identity\'s traits. The identity is able to create, modify, and delete traits in a self-service manner. The input will always be validated against the JSON Schema defined in `schema_id`. * @type {object} * @memberof UpdateIdentityBody */ 'traits': object; } export const UpdateIdentityBodyStateEnum = { Active: 'active', Inactive: 'inactive', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateIdentityBodyStateEnum = typeof UpdateIdentityBodyStateEnum[keyof typeof UpdateIdentityBodyStateEnum]; /** * @type UpdateLoginFlowBody * @export */ export type UpdateLoginFlowBody = { method: 'code' } & UpdateLoginFlowWithCodeMethod | { method: 'identifier_first' } & UpdateLoginFlowWithIdentifierFirstMethod | { method: 'lookup_secret' } & UpdateLoginFlowWithLookupSecretMethod | { method: 'oidc' } & UpdateLoginFlowWithOidcMethod | { method: 'passkey' } & UpdateLoginFlowWithPasskeyMethod | { method: 'password' } & UpdateLoginFlowWithPasswordMethod | { method: 'saml' } & UpdateLoginFlowWithSamlMethod | { method: 'totp' } & UpdateLoginFlowWithTotpMethod | { method: 'webauthn' } & UpdateLoginFlowWithWebAuthnMethod; /** * Update Login flow using the code method * @export * @interface UpdateLoginFlowWithCodeMethod */ export interface UpdateLoginFlowWithCodeMethod { /** * Address is the address to send the code to, in case that there are multiple addresses. This field is only used in two-factor flows and is ineffective for passwordless flows. * @type {string} * @memberof UpdateLoginFlowWithCodeMethod */ 'address'?: string; /** * Code is the 6 digits code sent to the user * @type {string} * @memberof UpdateLoginFlowWithCodeMethod */ 'code'?: string; /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateLoginFlowWithCodeMethod */ 'csrf_token': string; /** * Identifier is the code identifier The identifier requires that the user has already completed the registration or settings with code flow. * @type {string} * @memberof UpdateLoginFlowWithCodeMethod */ 'identifier'?: string; /** * Method should be set to \"code\" when logging in using the code strategy. * @type {string} * @memberof UpdateLoginFlowWithCodeMethod */ 'method': string; /** * Resend is set when the user wants to resend the code * @type {string} * @memberof UpdateLoginFlowWithCodeMethod */ 'resend'?: string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithCodeMethod */ 'transient_payload'?: object; } /** * Update Login Flow with Multi-Step Method * @export * @interface UpdateLoginFlowWithIdentifierFirstMethod */ export interface UpdateLoginFlowWithIdentifierFirstMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateLoginFlowWithIdentifierFirstMethod */ 'csrf_token'?: string; /** * Identifier is the email or username of the user trying to log in. * @type {string} * @memberof UpdateLoginFlowWithIdentifierFirstMethod */ 'identifier': string; /** * Method should be set to \"password\" when logging in using the identifier and password strategy. * @type {string} * @memberof UpdateLoginFlowWithIdentifierFirstMethod */ 'method': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithIdentifierFirstMethod */ 'transient_payload'?: object; } /** * Update Login Flow with Lookup Secret Method * @export * @interface UpdateLoginFlowWithLookupSecretMethod */ export interface UpdateLoginFlowWithLookupSecretMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateLoginFlowWithLookupSecretMethod */ 'csrf_token'?: string; /** * The lookup secret. * @type {string} * @memberof UpdateLoginFlowWithLookupSecretMethod */ 'lookup_secret': string; /** * Method should be set to \"lookup_secret\" when logging in using the lookup_secret strategy. * @type {string} * @memberof UpdateLoginFlowWithLookupSecretMethod */ 'method': string; } /** * Update Login Flow with OpenID Connect Method * @export * @interface UpdateLoginFlowWithOidcMethod */ export interface UpdateLoginFlowWithOidcMethod { /** * The CSRF Token * @type {string} * @memberof UpdateLoginFlowWithOidcMethod */ 'csrf_token'?: string; /** * IDToken is an optional id token provided by an OIDC provider If submitted, it is verified using the OIDC provider\'s public key set and the claims are used to populate the OIDC credentials of the identity. If the OIDC provider does not store additional claims (such as name, etc.) in the IDToken itself, you can use the `traits` field to populate the identity\'s traits. Note, that Apple only includes the users email in the IDToken. Supported providers are Apple Google * @type {string} * @memberof UpdateLoginFlowWithOidcMethod */ 'id_token'?: string; /** * IDTokenNonce is the nonce, used when generating the IDToken. If the provider supports nonce validation, the nonce will be validated against this value and required. * @type {string} * @memberof UpdateLoginFlowWithOidcMethod */ 'id_token_nonce'?: string; /** * Method to use This field must be set to `oidc` when using the oidc method. * @type {string} * @memberof UpdateLoginFlowWithOidcMethod */ 'method': string; /** * The provider to register with * @type {string} * @memberof UpdateLoginFlowWithOidcMethod */ 'provider': string; /** * The identity traits. This is a placeholder for the registration flow. * @type {object} * @memberof UpdateLoginFlowWithOidcMethod */ 'traits'?: object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithOidcMethod */ 'transient_payload'?: object; /** * UpstreamParameters are the parameters that are passed to the upstream identity provider. These parameters are optional and depend on what the upstream identity provider supports. Supported parameters are: `login_hint` (string): The `login_hint` parameter suppresses the account chooser and either pre-fills the email box on the sign-in form, or selects the proper session. `hd` (string): The `hd` parameter limits the login/registration process to a Google Organization, e.g. `mycollege.edu`. `prompt` (string): The `prompt` specifies whether the Authorization Server prompts the End-User for reauthentication and consent, e.g. `select_account`. * @type {object} * @memberof UpdateLoginFlowWithOidcMethod */ 'upstream_parameters'?: object; } /** * Update Login Flow with Passkey Method * @export * @interface UpdateLoginFlowWithPasskeyMethod */ export interface UpdateLoginFlowWithPasskeyMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateLoginFlowWithPasskeyMethod */ 'csrf_token'?: string; /** * Method should be set to \"passkey\" when logging in using the Passkey strategy. * @type {string} * @memberof UpdateLoginFlowWithPasskeyMethod */ 'method': string; /** * Login a WebAuthn Security Key This must contain the ID of the WebAuthN connection. * @type {string} * @memberof UpdateLoginFlowWithPasskeyMethod */ 'passkey_login'?: string; } /** * Update Login Flow with Password Method * @export * @interface UpdateLoginFlowWithPasswordMethod */ export interface UpdateLoginFlowWithPasswordMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateLoginFlowWithPasswordMethod */ 'csrf_token'?: string; /** * Identifier is the email or username of the user trying to log in. * @type {string} * @memberof UpdateLoginFlowWithPasswordMethod */ 'identifier': string; /** * Method should be set to \"password\" when logging in using the identifier and password strategy. * @type {string} * @memberof UpdateLoginFlowWithPasswordMethod */ 'method': string; /** * The user\'s password. * @type {string} * @memberof UpdateLoginFlowWithPasswordMethod */ 'password': string; /** * Identifier is the email or username of the user trying to log in. This field is deprecated! * @type {string} * @memberof UpdateLoginFlowWithPasswordMethod */ 'password_identifier'?: string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithPasswordMethod */ 'transient_payload'?: object; } /** * Update login flow using SAML * @export * @interface UpdateLoginFlowWithSamlMethod */ export interface UpdateLoginFlowWithSamlMethod { /** * The CSRF Token * @type {string} * @memberof UpdateLoginFlowWithSamlMethod */ 'csrf_token'?: string; /** * Method to use This field must be set to `saml` when using the saml method. * @type {string} * @memberof UpdateLoginFlowWithSamlMethod */ 'method': string; /** * The provider to register with * @type {string} * @memberof UpdateLoginFlowWithSamlMethod */ 'provider': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithSamlMethod */ 'transient_payload'?: object; } /** * Update Login Flow with TOTP Method * @export * @interface UpdateLoginFlowWithTotpMethod */ export interface UpdateLoginFlowWithTotpMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateLoginFlowWithTotpMethod */ 'csrf_token'?: string; /** * Method should be set to \"totp\" when logging in using the TOTP strategy. * @type {string} * @memberof UpdateLoginFlowWithTotpMethod */ 'method': string; /** * The TOTP code. * @type {string} * @memberof UpdateLoginFlowWithTotpMethod */ 'totp_code': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithTotpMethod */ 'transient_payload'?: object; } /** * Update Login Flow with WebAuthn Method * @export * @interface UpdateLoginFlowWithWebAuthnMethod */ export interface UpdateLoginFlowWithWebAuthnMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateLoginFlowWithWebAuthnMethod */ 'csrf_token'?: string; /** * Identifier is the email or username of the user trying to log in. * @type {string} * @memberof UpdateLoginFlowWithWebAuthnMethod */ 'identifier': string; /** * Method should be set to \"webAuthn\" when logging in using the WebAuthn strategy. * @type {string} * @memberof UpdateLoginFlowWithWebAuthnMethod */ 'method': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateLoginFlowWithWebAuthnMethod */ 'transient_payload'?: object; /** * Login a WebAuthn Security Key This must contain the ID of the WebAuthN connection. * @type {string} * @memberof UpdateLoginFlowWithWebAuthnMethod */ 'webauthn_login'?: string; } /** * @type UpdateRecoveryFlowBody * Update Recovery Flow Request Body * @export */ export type UpdateRecoveryFlowBody = { method: 'code' } & UpdateRecoveryFlowWithCodeMethod | { method: 'link' } & UpdateRecoveryFlowWithLinkMethod; /** * Update Recovery Flow with Code Method * @export * @interface UpdateRecoveryFlowWithCodeMethod */ export interface UpdateRecoveryFlowWithCodeMethod { /** * Code from the recovery email If you want to submit a code, use this field, but make sure to _not_ include the email field, as well. * @type {string} * @memberof UpdateRecoveryFlowWithCodeMethod */ 'code'?: string; /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateRecoveryFlowWithCodeMethod */ 'csrf_token'?: string; /** * The email address of the account to recover If the email belongs to a valid account, a recovery email will be sent. If you want to notify the email address if the account does not exist, see the [notify_unknown_recipients flag](https://www.ory.sh/docs/kratos/self-service/flows/account-recovery-password-reset#attempted-recovery-notifications) If a code was already sent, including this field in the payload will invalidate the sent code and re-send a new code. format: email * @type {string} * @memberof UpdateRecoveryFlowWithCodeMethod */ 'email'?: string; /** * Method is the method that should be used for this recovery flow Allowed values are `link` and `code`. link RecoveryStrategyLink code RecoveryStrategyCode * @type {string} * @memberof UpdateRecoveryFlowWithCodeMethod */ 'method': UpdateRecoveryFlowWithCodeMethodMethodEnum; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRecoveryFlowWithCodeMethod */ 'transient_payload'?: object; } export const UpdateRecoveryFlowWithCodeMethodMethodEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateRecoveryFlowWithCodeMethodMethodEnum = typeof UpdateRecoveryFlowWithCodeMethodMethodEnum[keyof typeof UpdateRecoveryFlowWithCodeMethodMethodEnum]; /** * Update Recovery Flow with Link Method * @export * @interface UpdateRecoveryFlowWithLinkMethod */ export interface UpdateRecoveryFlowWithLinkMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateRecoveryFlowWithLinkMethod */ 'csrf_token'?: string; /** * Email to Recover Needs to be set when initiating the flow. If the email is a registered recovery email, a recovery link will be sent. If the email is not known, a email with details on what happened will be sent instead. format: email * @type {string} * @memberof UpdateRecoveryFlowWithLinkMethod */ 'email': string; /** * Method is the method that should be used for this recovery flow Allowed values are `link` and `code` link RecoveryStrategyLink code RecoveryStrategyCode * @type {string} * @memberof UpdateRecoveryFlowWithLinkMethod */ 'method': UpdateRecoveryFlowWithLinkMethodMethodEnum; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRecoveryFlowWithLinkMethod */ 'transient_payload'?: object; } export const UpdateRecoveryFlowWithLinkMethodMethodEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateRecoveryFlowWithLinkMethodMethodEnum = typeof UpdateRecoveryFlowWithLinkMethodMethodEnum[keyof typeof UpdateRecoveryFlowWithLinkMethodMethodEnum]; /** * @type UpdateRegistrationFlowBody * Update Registration Request Body * @export */ export type UpdateRegistrationFlowBody = { method: 'code' } & UpdateRegistrationFlowWithCodeMethod | { method: 'oidc' } & UpdateRegistrationFlowWithOidcMethod | { method: 'passkey' } & UpdateRegistrationFlowWithPasskeyMethod | { method: 'password' } & UpdateRegistrationFlowWithPasswordMethod | { method: 'profile' } & UpdateRegistrationFlowWithProfileMethod | { method: 'saml' } & UpdateRegistrationFlowWithSamlMethod | { method: 'webauthn' } & UpdateRegistrationFlowWithWebAuthnMethod; /** * Update Registration Flow with Code Method * @export * @interface UpdateRegistrationFlowWithCodeMethod */ export interface UpdateRegistrationFlowWithCodeMethod { /** * The OTP Code sent to the user * @type {string} * @memberof UpdateRegistrationFlowWithCodeMethod */ 'code'?: string; /** * The CSRF Token * @type {string} * @memberof UpdateRegistrationFlowWithCodeMethod */ 'csrf_token'?: string; /** * Method to use This field must be set to `code` when using the code method. * @type {string} * @memberof UpdateRegistrationFlowWithCodeMethod */ 'method': string; /** * Resend restarts the flow with a new code * @type {string} * @memberof UpdateRegistrationFlowWithCodeMethod */ 'resend'?: string; /** * The identity\'s traits * @type {object} * @memberof UpdateRegistrationFlowWithCodeMethod */ 'traits': object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithCodeMethod */ 'transient_payload'?: object; } /** * Update Registration Flow with OpenID Connect Method * @export * @interface UpdateRegistrationFlowWithOidcMethod */ export interface UpdateRegistrationFlowWithOidcMethod { /** * The CSRF Token * @type {string} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'csrf_token'?: string; /** * IDToken is an optional id token provided by an OIDC provider If submitted, it is verified using the OIDC provider\'s public key set and the claims are used to populate the OIDC credentials of the identity. If the OIDC provider does not store additional claims (such as name, etc.) in the IDToken itself, you can use the `traits` field to populate the identity\'s traits. Note, that Apple only includes the users email in the IDToken. Supported providers are Apple Google * @type {string} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'id_token'?: string; /** * IDTokenNonce is the nonce, used when generating the IDToken. If the provider supports nonce validation, the nonce will be validated against this value and is required. * @type {string} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'id_token_nonce'?: string; /** * Method to use This field must be set to `oidc` when using the oidc method. * @type {string} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'method': string; /** * The provider to register with * @type {string} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'provider': string; /** * The identity traits * @type {object} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'traits'?: object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'transient_payload'?: object; /** * UpstreamParameters are the parameters that are passed to the upstream identity provider. These parameters are optional and depend on what the upstream identity provider supports. Supported parameters are: `login_hint` (string): The `login_hint` parameter suppresses the account chooser and either pre-fills the email box on the sign-in form, or selects the proper session. `hd` (string): The `hd` parameter limits the login/registration process to a Google Organization, e.g. `mycollege.edu`. `prompt` (string): The `prompt` specifies whether the Authorization Server prompts the End-User for reauthentication and consent, e.g. `select_account`. * @type {object} * @memberof UpdateRegistrationFlowWithOidcMethod */ 'upstream_parameters'?: object; } /** * Update Registration Flow with Passkey Method * @export * @interface UpdateRegistrationFlowWithPasskeyMethod */ export interface UpdateRegistrationFlowWithPasskeyMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateRegistrationFlowWithPasskeyMethod */ 'csrf_token'?: string; /** * Method Should be set to \"passkey\" when trying to add, update, or remove a Passkey. * @type {string} * @memberof UpdateRegistrationFlowWithPasskeyMethod */ 'method': string; /** * Register a WebAuthn Security Key It is expected that the JSON returned by the WebAuthn registration process is included here. * @type {string} * @memberof UpdateRegistrationFlowWithPasskeyMethod */ 'passkey_register'?: string; /** * The identity\'s traits * @type {object} * @memberof UpdateRegistrationFlowWithPasskeyMethod */ 'traits': object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithPasskeyMethod */ 'transient_payload'?: object; } /** * Update Registration Flow with Password Method * @export * @interface UpdateRegistrationFlowWithPasswordMethod */ export interface UpdateRegistrationFlowWithPasswordMethod { /** * The CSRF Token * @type {string} * @memberof UpdateRegistrationFlowWithPasswordMethod */ 'csrf_token'?: string; /** * Method to use This field must be set to `password` when using the password method. * @type {string} * @memberof UpdateRegistrationFlowWithPasswordMethod */ 'method': string; /** * Password to sign the user up with * @type {string} * @memberof UpdateRegistrationFlowWithPasswordMethod */ 'password': string; /** * The identity\'s traits * @type {object} * @memberof UpdateRegistrationFlowWithPasswordMethod */ 'traits': object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithPasswordMethod */ 'transient_payload'?: object; } /** * Update Registration Flow with Profile Method * @export * @interface UpdateRegistrationFlowWithProfileMethod */ export interface UpdateRegistrationFlowWithProfileMethod { /** * The Anti-CSRF Token This token is only required when performing browser flows. * @type {string} * @memberof UpdateRegistrationFlowWithProfileMethod */ 'csrf_token'?: string; /** * Method Should be set to profile when trying to update a profile. * @type {string} * @memberof UpdateRegistrationFlowWithProfileMethod */ 'method': string; /** * Screen requests navigation to a previous screen. This must be set to credential-selection to go back to the credential selection screen. credential-selection RegistrationScreenCredentialSelection nolint:gosec // not a credential previous RegistrationScreenPrevious * @type {string} * @memberof UpdateRegistrationFlowWithProfileMethod */ 'screen'?: UpdateRegistrationFlowWithProfileMethodScreenEnum; /** * Traits The identity\'s traits. * @type {object} * @memberof UpdateRegistrationFlowWithProfileMethod */ 'traits': object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithProfileMethod */ 'transient_payload'?: object; } export const UpdateRegistrationFlowWithProfileMethodScreenEnum = { CredentialSelection: 'credential-selection', Previous: 'previous', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateRegistrationFlowWithProfileMethodScreenEnum = typeof UpdateRegistrationFlowWithProfileMethodScreenEnum[keyof typeof UpdateRegistrationFlowWithProfileMethodScreenEnum]; /** * Update registration flow using SAML * @export * @interface UpdateRegistrationFlowWithSamlMethod */ export interface UpdateRegistrationFlowWithSamlMethod { /** * The CSRF Token * @type {string} * @memberof UpdateRegistrationFlowWithSamlMethod */ 'csrf_token'?: string; /** * Method to use This field must be set to `saml` when using the saml method. * @type {string} * @memberof UpdateRegistrationFlowWithSamlMethod */ 'method': string; /** * The provider to register with * @type {string} * @memberof UpdateRegistrationFlowWithSamlMethod */ 'provider': string; /** * The identity traits * @type {object} * @memberof UpdateRegistrationFlowWithSamlMethod */ 'traits'?: object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithSamlMethod */ 'transient_payload'?: object; } /** * Update Registration Flow with WebAuthn Method * @export * @interface UpdateRegistrationFlowWithWebAuthnMethod */ export interface UpdateRegistrationFlowWithWebAuthnMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateRegistrationFlowWithWebAuthnMethod */ 'csrf_token'?: string; /** * Method Should be set to \"webauthn\" when trying to add, update, or remove a webAuthn pairing. * @type {string} * @memberof UpdateRegistrationFlowWithWebAuthnMethod */ 'method': string; /** * The identity\'s traits * @type {object} * @memberof UpdateRegistrationFlowWithWebAuthnMethod */ 'traits': object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateRegistrationFlowWithWebAuthnMethod */ 'transient_payload'?: object; /** * Register a WebAuthn Security Key It is expected that the JSON returned by the WebAuthn registration process is included here. * @type {string} * @memberof UpdateRegistrationFlowWithWebAuthnMethod */ 'webauthn_register'?: string; /** * Name of the WebAuthn Security Key to be Added A human-readable name for the security key which will be added. * @type {string} * @memberof UpdateRegistrationFlowWithWebAuthnMethod */ 'webauthn_register_displayname'?: string; } /** * @type UpdateSettingsFlowBody * Update Settings Flow Request Body * @export */ export type UpdateSettingsFlowBody = { method: 'lookup_secret' } & UpdateSettingsFlowWithLookupMethod | { method: 'oidc' } & UpdateSettingsFlowWithOidcMethod | { method: 'passkey' } & UpdateSettingsFlowWithPasskeyMethod | { method: 'password' } & UpdateSettingsFlowWithPasswordMethod | { method: 'profile' } & UpdateSettingsFlowWithProfileMethod | { method: 'saml' } & UpdateSettingsFlowWithSamlMethod | { method: 'totp' } & UpdateSettingsFlowWithTotpMethod | { method: 'webauthn' } & UpdateSettingsFlowWithWebAuthnMethod; /** * Update Settings Flow with Lookup Method * @export * @interface UpdateSettingsFlowWithLookupMethod */ export interface UpdateSettingsFlowWithLookupMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateSettingsFlowWithLookupMethod */ 'csrf_token'?: string; /** * If set to true will save the regenerated lookup secrets * @type {boolean} * @memberof UpdateSettingsFlowWithLookupMethod */ 'lookup_secret_confirm'?: boolean; /** * Disables this method if true. * @type {boolean} * @memberof UpdateSettingsFlowWithLookupMethod */ 'lookup_secret_disable'?: boolean; /** * If set to true will regenerate the lookup secrets * @type {boolean} * @memberof UpdateSettingsFlowWithLookupMethod */ 'lookup_secret_regenerate'?: boolean; /** * If set to true will reveal the lookup secrets * @type {boolean} * @memberof UpdateSettingsFlowWithLookupMethod */ 'lookup_secret_reveal'?: boolean; /** * Method Should be set to \"lookup\" when trying to add, update, or remove a lookup pairing. * @type {string} * @memberof UpdateSettingsFlowWithLookupMethod */ 'method': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithLookupMethod */ 'transient_payload'?: object; } /** * Update Settings Flow with OpenID Connect Method * @export * @interface UpdateSettingsFlowWithOidcMethod */ export interface UpdateSettingsFlowWithOidcMethod { /** * Flow ID is the flow\'s ID. in: query * @type {string} * @memberof UpdateSettingsFlowWithOidcMethod */ 'flow'?: string; /** * Link this provider Either this or `unlink` must be set. type: string in: body * @type {string} * @memberof UpdateSettingsFlowWithOidcMethod */ 'link'?: string; /** * Method Should be set to profile when trying to update a profile. * @type {string} * @memberof UpdateSettingsFlowWithOidcMethod */ 'method': string; /** * The identity\'s traits in: body * @type {object} * @memberof UpdateSettingsFlowWithOidcMethod */ 'traits'?: object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithOidcMethod */ 'transient_payload'?: object; /** * Unlink this provider Either this or `link` must be set. type: string in: body * @type {string} * @memberof UpdateSettingsFlowWithOidcMethod */ 'unlink'?: string; /** * UpstreamParameters are the parameters that are passed to the upstream identity provider. These parameters are optional and depend on what the upstream identity provider supports. Supported parameters are: `login_hint` (string): The `login_hint` parameter suppresses the account chooser and either pre-fills the email box on the sign-in form, or selects the proper session. `hd` (string): The `hd` parameter limits the login/registration process to a Google Organization, e.g. `mycollege.edu`. `prompt` (string): The `prompt` specifies whether the Authorization Server prompts the End-User for reauthentication and consent, e.g. `select_account`. * @type {object} * @memberof UpdateSettingsFlowWithOidcMethod */ 'upstream_parameters'?: object; } /** * Update Settings Flow with Passkey Method * @export * @interface UpdateSettingsFlowWithPasskeyMethod */ export interface UpdateSettingsFlowWithPasskeyMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateSettingsFlowWithPasskeyMethod */ 'csrf_token'?: string; /** * Method Should be set to \"passkey\" when trying to add, update, or remove a webAuthn pairing. * @type {string} * @memberof UpdateSettingsFlowWithPasskeyMethod */ 'method': string; /** * Remove a WebAuthn Security Key This must contain the ID of the WebAuthN connection. * @type {string} * @memberof UpdateSettingsFlowWithPasskeyMethod */ 'passkey_remove'?: string; /** * Register a WebAuthn Security Key It is expected that the JSON returned by the WebAuthn registration process is included here. * @type {string} * @memberof UpdateSettingsFlowWithPasskeyMethod */ 'passkey_settings_register'?: string; } /** * Update Settings Flow with Password Method * @export * @interface UpdateSettingsFlowWithPasswordMethod */ export interface UpdateSettingsFlowWithPasswordMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateSettingsFlowWithPasswordMethod */ 'csrf_token'?: string; /** * Method Should be set to password when trying to update a password. * @type {string} * @memberof UpdateSettingsFlowWithPasswordMethod */ 'method': string; /** * Password is the updated password * @type {string} * @memberof UpdateSettingsFlowWithPasswordMethod */ 'password': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithPasswordMethod */ 'transient_payload'?: object; } /** * Update Settings Flow with Profile Method * @export * @interface UpdateSettingsFlowWithProfileMethod */ export interface UpdateSettingsFlowWithProfileMethod { /** * The Anti-CSRF Token This token is only required when performing browser flows. * @type {string} * @memberof UpdateSettingsFlowWithProfileMethod */ 'csrf_token'?: string; /** * Method Should be set to profile when trying to update a profile. * @type {string} * @memberof UpdateSettingsFlowWithProfileMethod */ 'method': string; /** * Traits The identity\'s traits. * @type {object} * @memberof UpdateSettingsFlowWithProfileMethod */ 'traits': object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithProfileMethod */ 'transient_payload'?: object; } /** * Update settings flow using SAML * @export * @interface UpdateSettingsFlowWithSamlMethod */ export interface UpdateSettingsFlowWithSamlMethod { /** * The CSRF Token * @type {string} * @memberof UpdateSettingsFlowWithSamlMethod */ 'csrf_token'?: string; /** * Flow ID is the flow\'s ID. in: query * @type {string} * @memberof UpdateSettingsFlowWithSamlMethod */ 'flow'?: string; /** * Link this provider Either this or `unlink` must be set. type: string in: body * @type {string} * @memberof UpdateSettingsFlowWithSamlMethod */ 'link'?: string; /** * Method Should be set to saml when trying to update a profile. * @type {string} * @memberof UpdateSettingsFlowWithSamlMethod */ 'method': string; /** * The identity\'s traits in: body * @type {object} * @memberof UpdateSettingsFlowWithSamlMethod */ 'traits'?: object; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithSamlMethod */ 'transient_payload'?: object; /** * Unlink this provider Either this or `link` must be set. type: string in: body * @type {string} * @memberof UpdateSettingsFlowWithSamlMethod */ 'unlink'?: string; } /** * Update Settings Flow with TOTP Method * @export * @interface UpdateSettingsFlowWithTotpMethod */ export interface UpdateSettingsFlowWithTotpMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateSettingsFlowWithTotpMethod */ 'csrf_token'?: string; /** * Method Should be set to \"totp\" when trying to add, update, or remove a totp pairing. * @type {string} * @memberof UpdateSettingsFlowWithTotpMethod */ 'method': string; /** * ValidationTOTP must contain a valid TOTP based on the * @type {string} * @memberof UpdateSettingsFlowWithTotpMethod */ 'totp_code'?: string; /** * UnlinkTOTP if true will remove the TOTP pairing, effectively removing the credential. This can be used to set up a new TOTP device. * @type {boolean} * @memberof UpdateSettingsFlowWithTotpMethod */ 'totp_unlink'?: boolean; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithTotpMethod */ 'transient_payload'?: object; } /** * Update Settings Flow with WebAuthn Method * @export * @interface UpdateSettingsFlowWithWebAuthnMethod */ export interface UpdateSettingsFlowWithWebAuthnMethod { /** * CSRFToken is the anti-CSRF token * @type {string} * @memberof UpdateSettingsFlowWithWebAuthnMethod */ 'csrf_token'?: string; /** * Method Should be set to \"webauthn\" when trying to add, update, or remove a webAuthn pairing. * @type {string} * @memberof UpdateSettingsFlowWithWebAuthnMethod */ 'method': string; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateSettingsFlowWithWebAuthnMethod */ 'transient_payload'?: object; /** * Register a WebAuthn Security Key It is expected that the JSON returned by the WebAuthn registration process is included here. * @type {string} * @memberof UpdateSettingsFlowWithWebAuthnMethod */ 'webauthn_register'?: string; /** * Name of the WebAuthn Security Key to be Added A human-readable name for the security key which will be added. * @type {string} * @memberof UpdateSettingsFlowWithWebAuthnMethod */ 'webauthn_register_displayname'?: string; /** * Remove a WebAuthn Security Key This must contain the ID of the WebAuthN connection. * @type {string} * @memberof UpdateSettingsFlowWithWebAuthnMethod */ 'webauthn_remove'?: string; } /** * * @export * @interface UpdateSubscriptionBody */ export interface UpdateSubscriptionBody { /** * monthly Monthly yearly Yearly * @type {string} * @memberof UpdateSubscriptionBody */ 'interval': UpdateSubscriptionBodyIntervalEnum; /** * * @type {string} * @memberof UpdateSubscriptionBody */ 'plan': string; /** * * @type {string} * @memberof UpdateSubscriptionBody */ 'return_to'?: string; } export const UpdateSubscriptionBodyIntervalEnum = { Monthly: 'monthly', Yearly: 'yearly', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateSubscriptionBodyIntervalEnum = typeof UpdateSubscriptionBodyIntervalEnum[keyof typeof UpdateSubscriptionBodyIntervalEnum]; /** * @type UpdateVerificationFlowBody * Update Verification Flow Request Body * @export */ export type UpdateVerificationFlowBody = { method: 'code' } & UpdateVerificationFlowWithCodeMethod | { method: 'link' } & UpdateVerificationFlowWithLinkMethod; /** * * @export * @interface UpdateVerificationFlowWithCodeMethod */ export interface UpdateVerificationFlowWithCodeMethod { /** * Code from the recovery email If you want to submit a code, use this field, but make sure to _not_ include the email field, as well. * @type {string} * @memberof UpdateVerificationFlowWithCodeMethod */ 'code'?: string; /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateVerificationFlowWithCodeMethod */ 'csrf_token'?: string; /** * The email address to verify If the email belongs to a valid account, a verifiation email will be sent. If you want to notify the email address if the account does not exist, see the [notify_unknown_recipients flag](https://www.ory.sh/docs/kratos/self-service/flows/verify-email-account-activation#attempted-verification-notifications) If a code was already sent, including this field in the payload will invalidate the sent code and re-send a new code. format: email * @type {string} * @memberof UpdateVerificationFlowWithCodeMethod */ 'email'?: string; /** * Method is the method that should be used for this verification flow Allowed values are `link` and `code`. link VerificationStrategyLink code VerificationStrategyCode * @type {string} * @memberof UpdateVerificationFlowWithCodeMethod */ 'method': UpdateVerificationFlowWithCodeMethodMethodEnum; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateVerificationFlowWithCodeMethod */ 'transient_payload'?: object; } export const UpdateVerificationFlowWithCodeMethodMethodEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateVerificationFlowWithCodeMethodMethodEnum = typeof UpdateVerificationFlowWithCodeMethodMethodEnum[keyof typeof UpdateVerificationFlowWithCodeMethodMethodEnum]; /** * Update Verification Flow with Link Method * @export * @interface UpdateVerificationFlowWithLinkMethod */ export interface UpdateVerificationFlowWithLinkMethod { /** * Sending the anti-csrf token is only required for browser login flows. * @type {string} * @memberof UpdateVerificationFlowWithLinkMethod */ 'csrf_token'?: string; /** * Email to Verify Needs to be set when initiating the flow. If the email is a registered verification email, a verification link will be sent. If the email is not known, a email with details on what happened will be sent instead. format: email * @type {string} * @memberof UpdateVerificationFlowWithLinkMethod */ 'email': string; /** * Method is the method that should be used for this verification flow Allowed values are `link` and `code` link VerificationStrategyLink code VerificationStrategyCode * @type {string} * @memberof UpdateVerificationFlowWithLinkMethod */ 'method': UpdateVerificationFlowWithLinkMethodMethodEnum; /** * Transient data to pass along to any webhooks * @type {object} * @memberof UpdateVerificationFlowWithLinkMethod */ 'transient_payload'?: object; } export const UpdateVerificationFlowWithLinkMethodMethodEnum = { Link: 'link', Code: 'code', UnknownDefaultOpenApi: '11184809' } as const; export type UpdateVerificationFlowWithLinkMethodMethodEnum = typeof UpdateVerificationFlowWithLinkMethodMethodEnum[keyof typeof UpdateVerificationFlowWithLinkMethodMethodEnum]; /** * * @export * @interface UpdateWorkspaceBody */ export interface UpdateWorkspaceBody { /** * The name of the workspace. * @type {string} * @memberof UpdateWorkspaceBody */ 'name': string; } /** * * @export * @interface Usage */ export interface Usage { /** * * @type {GenericUsage} * @memberof Usage */ 'GenericUsage'?: GenericUsage; } /** * * @export * @interface VerifiableCredentialPrimingResponse */ export interface VerifiableCredentialPrimingResponse { /** * * @type {string} * @memberof VerifiableCredentialPrimingResponse */ 'c_nonce'?: string; /** * * @type {number} * @memberof VerifiableCredentialPrimingResponse */ 'c_nonce_expires_in'?: number; /** * * @type {string} * @memberof VerifiableCredentialPrimingResponse */ 'error'?: string; /** * * @type {string} * @memberof VerifiableCredentialPrimingResponse */ 'error_debug'?: string; /** * * @type {string} * @memberof VerifiableCredentialPrimingResponse */ 'error_description'?: string; /** * * @type {string} * @memberof VerifiableCredentialPrimingResponse */ 'error_hint'?: string; /** * * @type {string} * @memberof VerifiableCredentialPrimingResponse */ 'format'?: string; /** * * @type {number} * @memberof VerifiableCredentialPrimingResponse */ 'status_code'?: number; } /** * * @export * @interface VerifiableCredentialProof */ export interface VerifiableCredentialProof { /** * * @type {string} * @memberof VerifiableCredentialProof */ 'jwt'?: string; /** * * @type {string} * @memberof VerifiableCredentialProof */ 'proof_type'?: string; } /** * * @export * @interface VerifiableCredentialResponse */ export interface VerifiableCredentialResponse { /** * * @type {string} * @memberof VerifiableCredentialResponse */ 'credential_draft_00'?: string; /** * * @type {string} * @memberof VerifiableCredentialResponse */ 'format'?: string; } /** * VerifiableAddress is an identity\'s verifiable address * @export * @interface VerifiableIdentityAddress */ export interface VerifiableIdentityAddress { /** * When this entry was created * @type {string} * @memberof VerifiableIdentityAddress */ 'created_at'?: string; /** * The ID * @type {string} * @memberof VerifiableIdentityAddress */ 'id'?: string; /** * VerifiableAddressStatus must not exceed 16 characters as that is the limitation in the SQL Schema * @type {string} * @memberof VerifiableIdentityAddress */ 'status': string; /** * When this entry was last updated * @type {string} * @memberof VerifiableIdentityAddress */ 'updated_at'?: string; /** * The address value example foo@user.com * @type {string} * @memberof VerifiableIdentityAddress */ 'value': string; /** * Indicates if the address has already been verified * @type {boolean} * @memberof VerifiableIdentityAddress */ 'verified': boolean; /** * * @type {string} * @memberof VerifiableIdentityAddress */ 'verified_at'?: string; /** * The delivery method * @type {string} * @memberof VerifiableIdentityAddress */ 'via': VerifiableIdentityAddressViaEnum; } export const VerifiableIdentityAddressViaEnum = { Email: 'email', Sms: 'sms', UnknownDefaultOpenApi: '11184809' } as const; export type VerifiableIdentityAddressViaEnum = typeof VerifiableIdentityAddressViaEnum[keyof typeof VerifiableIdentityAddressViaEnum]; /** * Used to verify an out-of-band communication channel such as an email address or a phone number. For more information head over to: https://www.ory.sh/docs/kratos/self-service/flows/verify-email-account-activation * @export * @interface VerificationFlow */ export interface VerificationFlow { /** * Active, if set, contains the registration method that is being used. It is initially not set. * @type {string} * @memberof VerificationFlow */ 'active'?: string; /** * ExpiresAt is the time (UTC) when the request expires. If the user still wishes to verify the address, a new request has to be initiated. * @type {string} * @memberof VerificationFlow */ 'expires_at'?: string; /** * ID represents the request\'s unique ID. When performing the verification flow, this represents the id in the verify ui\'s query parameter: http://?request= type: string format: uuid * @type {string} * @memberof VerificationFlow */ 'id': string; /** * IssuedAt is the time (UTC) when the request occurred. * @type {string} * @memberof VerificationFlow */ 'issued_at'?: string; /** * RequestURL is the initial URL that was requested from Ory Kratos. It can be used to forward information contained in the URL\'s path or query for example. * @type {string} * @memberof VerificationFlow */ 'request_url'?: string; /** * ReturnTo contains the requested return_to URL. * @type {string} * @memberof VerificationFlow */ 'return_to'?: string; /** * State represents the state of this request: choose_method: ask the user to choose a method (e.g. verify your email) sent_email: the email has been sent to the user passed_challenge: the request was successful and the verification challenge was passed. * @type {any} * @memberof VerificationFlow */ 'state': any; /** * TransientPayload is used to pass data from the verification flow to hooks and email templates * @type {object} * @memberof VerificationFlow */ 'transient_payload'?: object; /** * The flow type can either be `api` or `browser`. * @type {string} * @memberof VerificationFlow */ 'type': string; /** * * @type {UiContainer} * @memberof VerificationFlow */ 'ui': UiContainer; } /** * The experimental state represents the state of a verification flow. This field is EXPERIMENTAL and subject to change! * @export * @enum {string} */ export const VerificationFlowState = { ChooseMethod: 'choose_method', SentEmail: 'sent_email', PassedChallenge: 'passed_challenge', UnknownDefaultOpenApi: '11184809' } as const; export type VerificationFlowState = typeof VerificationFlowState[keyof typeof VerificationFlowState]; /** * * @export * @interface Version */ export interface Version { /** * Version is the service\'s version. * @type {string} * @memberof Version */ 'version'?: string; } /** * * @export * @interface Warning */ export interface Warning { /** * * @type {number} * @memberof Warning */ 'code'?: number; /** * * @type {string} * @memberof Warning */ 'message'?: string; } /** * * @export * @interface Workspace */ export interface Workspace { /** * * @type {string} * @memberof Workspace */ 'created_at': string; /** * * @type {string} * @memberof Workspace */ 'id': string; /** * * @type {string} * @memberof Workspace */ 'name': string; /** * * @type {string} * @memberof Workspace */ 'subscription_id'?: string | null; /** * * @type {string} * @memberof Workspace */ 'subscription_plan'?: string | null; /** * * @type {string} * @memberof Workspace */ 'updated_at': string; } /** * * @export * @interface WorkspaceApiKey */ export interface WorkspaceApiKey { /** * The API key\'s creation date * @type {string} * @memberof WorkspaceApiKey */ 'created_at'?: string; /** * * @type {string} * @memberof WorkspaceApiKey */ 'expires_at'?: string; /** * The key\'s ID. * @type {string} * @memberof WorkspaceApiKey */ 'id': string; /** * The API key\'s Name Set this to help you remember, for example, where you use the API key. * @type {string} * @memberof WorkspaceApiKey */ 'name': string; /** * The key\'s owner * @type {string} * @memberof WorkspaceApiKey */ 'owner_id': string; /** * The API key\'s last update date * @type {string} * @memberof WorkspaceApiKey */ 'updated_at'?: string; /** * The key\'s value * @type {string} * @memberof WorkspaceApiKey */ 'value'?: string; /** * The API key\'s workspace ID * @type {string} * @memberof WorkspaceApiKey */ 'workspace_id'?: string; } /** * CourierApi - axios parameter creator * @export */ export const CourierApiAxiosParamCreator = function (configuration?: Configuration) { return { /** * Gets a specific messages by the given ID. * @summary Get a Message * @param {string} id MessageID is the ID of the message. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getCourierMessage: async (id: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getCourierMessage', 'id', id) const localVarPath = `/admin/courier/messages/{id}` .replace(`{${"id"}}`, encodeURIComponent(String(id))); // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; // authentication oryAccessToken required // http bearer authentication required await setBearerAuthToObject(localVarHeaderParameter, configuration) setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * Lists all messages by given status and recipient. * @summary List Messages * @param {number} [pageSize] Items per Page This is the number of items per page to return. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @param {string} [pageToken] Next Page Token The next page token. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @param {CourierMessageStatus} [status] Status filters out messages based on status. If no value is provided, it doesn\'t take effect on filter. * @param {string} [recipient] Recipient filters out messages based on recipient. If no value is provided, it doesn\'t take effect on filter. * @param {*} [options] Override http request option. * @throws {RequiredError} */ listCourierMessages: async (pageSize?: number, pageToken?: string, status?: CourierMessageStatus, recipient?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/admin/courier/messages`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; // authentication oryAccessToken required // http bearer authentication required await setBearerAuthToObject(localVarHeaderParameter, configuration) if (pageSize !== undefined) { localVarQueryParameter['page_size'] = pageSize; } if (pageToken !== undefined) { localVarQueryParameter['page_token'] = pageToken; } if (status !== undefined) { localVarQueryParameter['status'] = status; } if (recipient !== undefined) { localVarQueryParameter['recipient'] = recipient; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, } }; /** * CourierApi - functional programming interface * @export */ export const CourierApiFp = function(configuration?: Configuration) { const localVarAxiosParamCreator = CourierApiAxiosParamCreator(configuration) return { /** * Gets a specific messages by the given ID. * @summary Get a Message * @param {string} id MessageID is the ID of the message. * @param {*} [options] Override http request option. * @throws {RequiredError} */ async getCourierMessage(id: string, options?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise> { const localVarAxiosArgs = await localVarAxiosParamCreator.getCourierMessage(id, options); const localVarOperationServerIndex = configuration?.serverIndex ?? 0; const localVarOperationServerBasePath = operationServerMap['CourierApi.getCourierMessage']?.[localVarOperationServerIndex]?.url; return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath); }, /** * Lists all messages by given status and recipient. * @summary List Messages * @param {number} [pageSize] Items per Page This is the number of items per page to return. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @param {string} [pageToken] Next Page Token The next page token. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @param {CourierMessageStatus} [status] Status filters out messages based on status. If no value is provided, it doesn\'t take effect on filter. * @param {string} [recipient] Recipient filters out messages based on recipient. If no value is provided, it doesn\'t take effect on filter. * @param {*} [options] Override http request option. * @throws {RequiredError} */ async listCourierMessages(pageSize?: number, pageToken?: string, status?: CourierMessageStatus, recipient?: string, options?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise>> { const localVarAxiosArgs = await localVarAxiosParamCreator.listCourierMessages(pageSize, pageToken, status, recipient, options); const localVarOperationServerIndex = configuration?.serverIndex ?? 0; const localVarOperationServerBasePath = operationServerMap['CourierApi.listCourierMessages']?.[localVarOperationServerIndex]?.url; return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath); }, } }; /** * CourierApi - factory interface * @export */ export const CourierApiFactory = function (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) { const localVarFp = CourierApiFp(configuration) return { /** * Gets a specific messages by the given ID. * @summary Get a Message * @param {CourierApiGetCourierMessageRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getCourierMessage(requestParameters: CourierApiGetCourierMessageRequest, options?: RawAxiosRequestConfig): AxiosPromise { return localVarFp.getCourierMessage(requestParameters.id, options).then((request) => request(axios, basePath)); }, /** * Lists all messages by given status and recipient. * @summary List Messages * @param {CourierApiListCourierMessagesRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} */ listCourierMessages(requestParameters: CourierApiListCourierMessagesRequest = {}, options?: RawAxiosRequestConfig): AxiosPromise> { return localVarFp.listCourierMessages(requestParameters.pageSize, requestParameters.pageToken, requestParameters.status, requestParameters.recipient, options).then((request) => request(axios, basePath)); }, }; }; /** * Request parameters for getCourierMessage operation in CourierApi. * @export * @interface CourierApiGetCourierMessageRequest */ export interface CourierApiGetCourierMessageRequest { /** * MessageID is the ID of the message. * @type {string} * @memberof CourierApiGetCourierMessage */ readonly id: string } /** * Request parameters for listCourierMessages operation in CourierApi. * @export * @interface CourierApiListCourierMessagesRequest */ export interface CourierApiListCourierMessagesRequest { /** * Items per Page This is the number of items per page to return. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {number} * @memberof CourierApiListCourierMessages */ readonly pageSize?: number /** * Next Page Token The next page token. For details on pagination please head over to the [pagination documentation](https://www.ory.sh/docs/ecosystem/api-design#pagination). * @type {string} * @memberof CourierApiListCourierMessages */ readonly pageToken?: string /** * Status filters out messages based on status. If no value is provided, it doesn\'t take effect on filter. * @type {CourierMessageStatus} * @memberof CourierApiListCourierMessages */ readonly status?: CourierMessageStatus /** * Recipient filters out messages based on recipient. If no value is provided, it doesn\'t take effect on filter. * @type {string} * @memberof CourierApiListCourierMessages */ readonly recipient?: string } /** * CourierApi - object-oriented interface * @export * @class CourierApi * @extends {BaseAPI} */ export class CourierApi extends BaseAPI { /** * Gets a specific messages by the given ID. * @summary Get a Message * @param {CourierApiGetCourierMessageRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} * @memberof CourierApi */ public getCourierMessage(requestParameters: CourierApiGetCourierMessageRequest, options?: RawAxiosRequestConfig) { return CourierApiFp(this.configuration).getCourierMessage(requestParameters.id, options).then((request) => request(this.axios, this.basePath)); } /** * Lists all messages by given status and recipient. * @summary List Messages * @param {CourierApiListCourierMessagesRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} * @memberof CourierApi */ public listCourierMessages(requestParameters: CourierApiListCourierMessagesRequest = {}, options?: RawAxiosRequestConfig) { return CourierApiFp(this.configuration).listCourierMessages(requestParameters.pageSize, requestParameters.pageToken, requestParameters.status, requestParameters.recipient, options).then((request) => request(this.axios, this.basePath)); } } /** * EventsApi - axios parameter creator * @export */ export const EventsApiAxiosParamCreator = function (configuration?: Configuration) { return { /** * * @summary Create an event stream for your project. * @param {string} projectId Project ID The project\'s ID. * @param {CreateEventStreamBody} createEventStreamBody * @param {*} [options] Override http request option. * @throws {RequiredError} */ createEventStream: async (projectId: string, createEventStreamBody: CreateEventStreamBody, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'projectId' is not null or undefined assertParamExists('createEventStream', 'projectId', projectId) // verify required parameter 'createEventStreamBody' is not null or undefined assertParamExists('createEventStream', 'createEventStreamBody', createEventStreamBody) const localVarPath = `/projects/{project_id}/eventstreams` .replace(`{${"project_id"}}`, encodeURIComponent(String(projectId))); // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'POST', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; // authentication oryWorkspaceApiKey required // http bearer authentication required await setBearerAuthToObject(localVarHeaderParameter, configuration) localVarHeaderParameter['Content-Type'] = 'application/json'; setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; localVarRequestOptions.data = serializeDataIfNeeded(createEventStreamBody, localVarRequestOptions, configuration) return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * Remove an event stream from a project. * @summary Remove an event stream from a project * @param {string} projectId Project ID The project\'s ID. * @param {string} eventStreamId Event Stream ID The ID of the event stream to be deleted, as returned when created. * @param {*} [options] Override http request option. * @throws {RequiredError} */ deleteEventStream: async (projectId: string, eventStreamId: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'projectId' is not null or undefined assertParamExists('deleteEventStream', 'projectId', projectId) // verify required parameter 'eventStreamId' is not null or undefined assertParamExists('deleteEventStream', 'eventStreamId', eventStreamId) const localVarPath = `/projects/{project_id}/eventstreams/{event_stream_id}` .replace(`{${"project_id"}}`, encodeURIComponent(String(projectId))) .replace(`{${"event_stream_id"}}`, encodeURIComponent(String(eventStreamId))); // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'DELETE', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; // authentication oryWorkspaceApiKey required // http bearer authentication required await setBearerAuthToObject(localVarHeaderParameter, configuration) setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * * @summary List all event streams for the project. This endpoint is not paginated. * @param {string} projectId Project ID The project\'s ID. * @param {*} [options] Override http request option. * @throws {RequiredError} */ listEventStreams: async (projectId: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'projectId' is not null or undefined assertParamExists('listEventStreams', 'projectId', projectId) const localVarPath = `/projects/{project_id}/eventstreams` .replace(`{${"project_id"}}`, encodeURIComponent(String(projectId))); // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; // authentication oryWorkspaceApiKey required // http bearer authentication required await setBearerAuthToObject(localVarHeaderParameter, configuration) setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * * @summary Update an event stream for a project. * @param {string} projectId Project ID The project\'s ID. * @param {string} eventStreamId Event Stream ID The event stream\'s ID. * @param {SetEventStreamBody} [setEventStreamBody] * @param {*} [options] Override http request option. * @throws {RequiredError} */ setEventStream: async (projectId: string, eventStreamId: string, setEventStreamBody?: SetEventStreamBody, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'projectId' is not null or undefined assertParamExists('setEventStream', 'projectId', projectId) // verify required parameter 'eventStreamId' is not null or undefined assertParamExists('setEventStream', 'eventStreamId', eventStreamId) const localVarPath = `/projects/{project_id}/eventstreams/{event_stream_id}` .replace(`{${"project_id"}}`, encodeURIComponent(String(projectId))) .replace(`{${"event_stream_id"}}`, encodeURIComponent(String(eventStreamId))); // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'PUT', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; // authentication oryWorkspaceApiKey required // http bearer authentication required await setBearerAuthToObject(localVarHeaderParameter, configuration) localVarHeaderParameter['Content-Type'] = 'application/json'; setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; localVarRequestOptions.data = serializeDataIfNeeded(setEventStreamBody, localVarRequestOptions, configuration) return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, } }; /** * EventsApi - functional programming interface * @export */ export const EventsApiFp = function(configuration?: Configuration) { const localVarAxiosParamCreator = EventsApiAxiosParamCreator(configuration) return { /** * * @summary Create an event stream for your project. * @param {string} projectId Project ID The project\'s ID. * @param {CreateEventStreamBody} createEventStreamBody * @param {*} [options] Override http request option. * @throws {RequiredError} */ async createEventStream(projectId: string, createEventStreamBody: CreateEventStreamBody, options?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise> { const localVarAxiosArgs = await localVarAxiosParamCreator.createEventStream(projectId, createEventStreamBody, options); const localVarOperationServerIndex = configuration?.serverIndex ?? 0; const localVarOperationServerBasePath = operationServerMap['EventsApi.createEventStream']?.[localVarOperationServerIndex]?.url; return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath); }, /** * Remove an event stream from a project. * @summary Remove an event stream from a project * @param {string} projectId Project ID The project\'s ID. * @param {string} eventStreamId Event Stream ID The ID of the event stream to be deleted, as returned when created. * @param {*} [options] Override http request option. * @throws {RequiredError} */ async deleteEventStream(projectId: string, eventStreamId: string, options?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise> { const localVarAxiosArgs = await localVarAxiosParamCreator.deleteEventStream(projectId, eventStreamId, options); const localVarOperationServerIndex = configuration?.serverIndex ?? 0; const localVarOperationServerBasePath = operationServerMap['EventsApi.deleteEventStream']?.[localVarOperationServerIndex]?.url; return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath); }, /** * * @summary List all event streams for the project. This endpoint is not paginated. * @param {string} projectId Project ID The project\'s ID. * @param {*} [options] Override http request option. * @throws {RequiredError} */ async listEventStreams(projectId: string, options?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise> { const localVarAxiosArgs = await localVarAxiosParamCreator.listEventStreams(projectId, options); const localVarOperationServerIndex = configuration?.serverIndex ?? 0; const localVarOperationServerBasePath = operationServerMap['EventsApi.listEventStreams']?.[localVarOperationServerIndex]?.url; return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath); }, /** * * @summary Update an event stream for a project. * @param {string} projectId Project ID The project\'s ID. * @param {string} eventStreamId Event Stream ID The event stream\'s ID. * @param {SetEventStreamBody} [setEventStreamBody] * @param {*} [options] Override http request option. * @throws {RequiredError} */ async setEventStream(projectId: string, eventStreamId: string, setEventStreamBody?: SetEventStreamBody, options?: RawAxiosRequestConfig): Promise<(axios?: AxiosInstance, basePath?: string) => AxiosPromise> { const localVarAxiosArgs = await localVarAxiosParamCreator.setEventStream(projectId, eventStreamId, setEventStreamBody, options); const localVarOperationServerIndex = configuration?.serverIndex ?? 0; const localVarOperationServerBasePath = operationServerMap['EventsApi.setEventStream']?.[localVarOperationServerIndex]?.url; return (axios, basePath) => createRequestFunction(localVarAxiosArgs, globalAxios, BASE_PATH, configuration)(axios, localVarOperationServerBasePath || basePath); }, } }; /** * EventsApi - factory interface * @export */ export const EventsApiFactory = function (configuration?: Configuration, basePath?: string, axios?: AxiosInstance) { const localVarFp = EventsApiFp(configuration) return { /** * * @summary Create an event stream for your project. * @param {EventsApiCreateEventStreamRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createEventStream(requestParameters: EventsApiCreateEventStreamRequest, options?: RawAxiosRequestConfig): AxiosPromise { return localVarFp.createEventStream(requestParameters.projectId, requestParameters.createEventStreamBody, options).then((request) => request(axios, basePath)); }, /** * Remove an event stream from a project. * @summary Remove an event stream from a project * @param {EventsApiDeleteEventStreamRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} */ deleteEventStream(requestParameters: EventsApiDeleteEventStreamRequest, options?: RawAxiosRequestConfig): AxiosPromise { return localVarFp.deleteEventStream(requestParameters.projectId, requestParameters.eventStreamId, options).then((request) => request(axios, basePath)); }, /** * * @summary List all event streams for the project. This endpoint is not paginated. * @param {EventsApiListEventStreamsRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} */ listEventStreams(requestParameters: EventsApiListEventStreamsRequest, options?: RawAxiosRequestConfig): AxiosPromise { return localVarFp.listEventStreams(requestParameters.projectId, options).then((request) => request(axios, basePath)); }, /** * * @summary Update an event stream for a project. * @param {EventsApiSetEventStreamRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} */ setEventStream(requestParameters: EventsApiSetEventStreamRequest, options?: RawAxiosRequestConfig): AxiosPromise { return localVarFp.setEventStream(requestParameters.projectId, requestParameters.eventStreamId, requestParameters.setEventStreamBody, options).then((request) => request(axios, basePath)); }, }; }; /** * Request parameters for createEventStream operation in EventsApi. * @export * @interface EventsApiCreateEventStreamRequest */ export interface EventsApiCreateEventStreamRequest { /** * Project ID The project\'s ID. * @type {string} * @memberof EventsApiCreateEventStream */ readonly projectId: string /** * * @type {CreateEventStreamBody} * @memberof EventsApiCreateEventStream */ readonly createEventStreamBody: CreateEventStreamBody } /** * Request parameters for deleteEventStream operation in EventsApi. * @export * @interface EventsApiDeleteEventStreamRequest */ export interface EventsApiDeleteEventStreamRequest { /** * Project ID The project\'s ID. * @type {string} * @memberof EventsApiDeleteEventStream */ readonly projectId: string /** * Event Stream ID The ID of the event stream to be deleted, as returned when created. * @type {string} * @memberof EventsApiDeleteEventStream */ readonly eventStreamId: string } /** * Request parameters for listEventStreams operation in EventsApi. * @export * @interface EventsApiListEventStreamsRequest */ export interface EventsApiListEventStreamsRequest { /** * Project ID The project\'s ID. * @type {string} * @memberof EventsApiListEventStreams */ readonly projectId: string } /** * Request parameters for setEventStream operation in EventsApi. * @export * @interface EventsApiSetEventStreamRequest */ export interface EventsApiSetEventStreamRequest { /** * Project ID The project\'s ID. * @type {string} * @memberof EventsApiSetEventStream */ readonly projectId: string /** * Event Stream ID The event stream\'s ID. * @type {string} * @memberof EventsApiSetEventStream */ readonly eventStreamId: string /** * * @type {SetEventStreamBody} * @memberof EventsApiSetEventStream */ readonly setEventStreamBody?: SetEventStreamBody } /** * EventsApi - object-oriented interface * @export * @class EventsApi * @extends {BaseAPI} */ export class EventsApi extends BaseAPI { /** * * @summary Create an event stream for your project. * @param {EventsApiCreateEventStreamRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} * @memberof EventsApi */ public createEventStream(requestParameters: EventsApiCreateEventStreamRequest, options?: RawAxiosRequestConfig) { return EventsApiFp(this.configuration).createEventStream(requestParameters.projectId, requestParameters.createEventStreamBody, options).then((request) => request(this.axios, this.basePath)); } /** * Remove an event stream from a project. * @summary Remove an event stream from a project * @param {EventsApiDeleteEventStreamRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} * @memberof EventsApi */ public deleteEventStream(requestParameters: EventsApiDeleteEventStreamRequest, options?: RawAxiosRequestConfig) { return EventsApiFp(this.configuration).deleteEventStream(requestParameters.projectId, requestParameters.eventStreamId, options).then((request) => request(this.axios, this.basePath)); } /** * * @summary List all event streams for the project. This endpoint is not paginated. * @param {EventsApiListEventStreamsRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} * @memberof EventsApi */ public listEventStreams(requestParameters: EventsApiListEventStreamsRequest, options?: RawAxiosRequestConfig) { return EventsApiFp(this.configuration).listEventStreams(requestParameters.projectId, options).then((request) => request(this.axios, this.basePath)); } /** * * @summary Update an event stream for a project. * @param {EventsApiSetEventStreamRequest} requestParameters Request parameters. * @param {*} [options] Override http request option. * @throws {RequiredError} * @memberof EventsApi */ public setEventStream(requestParameters: EventsApiSetEventStreamRequest, options?: RawAxiosRequestConfig) { return EventsApiFp(this.configuration).setEventStream(requestParameters.projectId, requestParameters.eventStreamId, requestParameters.setEventStreamBody, options).then((request) => request(this.axios, this.basePath)); } } /** * FrontendApi - axios parameter creator * @export */ export const FrontendApiAxiosParamCreator = function (configuration?: Configuration) { return { /** * This endpoint initializes a browser-based user login flow. This endpoint will set the appropriate cookies and anti-CSRF measures required for browser-based flows. If this endpoint is opened as a link in the browser, it will be redirected to `selfservice.flows.login.ui_url` with the flow ID set as the query parameter `?flow=`. If a valid user session exists already, the browser will be redirected to `urls.default_redirect_url` unless the query parameter `?refresh=true` was set. If this endpoint is called via an AJAX request, the response contains the flow without a redirect. In the case of an error, the `error.id` of the JSON response body can be one of: `session_already_available`: The user is already signed in. `session_aal1_required`: Multi-factor auth (e.g. 2fa) was requested but the user has no session yet. `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. `security_identity_mismatch`: The requested `?return_to` address is not allowed to be used. Adjust this in the configuration! The optional query parameter login_challenge is set when using Kratos with Hydra in an OAuth2 flow. See the oauth2_provider.url configuration option. This endpoint is NOT INTENDED for clients that do not have a browser (Chrome, Firefox, ...) as cookies are needed. More information can be found at [Ory Kratos User Login](https://www.ory.sh/docs/kratos/self-service/flows/user-login) and [User Registration Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-registration). * @summary Create Login Flow for Browsers * @param {boolean} [refresh] Refresh a login session If set to true, this will refresh an existing login session by asking the user to sign in again. This will reset the authenticated_at time of the session. * @param {string} [aal] Request a Specific AuthenticationMethod Assurance Level Use this parameter to upgrade an existing session\'s authenticator assurance level (AAL). This allows you to ask for multi-factor authentication. When an identity sign in using e.g. username+password, the AAL is 1. If you wish to \"upgrade\" the session\'s security by asking the user to perform TOTP / WebAuth/ ... you would set this to \"aal2\". * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {string} [cookie] HTTP Cookies When using the SDK in a browser app, on the server side you must include the HTTP Cookie Header sent by the client to your server here. This ensures that CSRF and session cookies are respected. * @param {string} [loginChallenge] An optional Hydra login challenge. If present, Kratos will cooperate with Ory Hydra to act as an OAuth2 identity provider. The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/login?login_challenge=abcde`). * @param {string} [organization] An optional organization ID that should be used for logging this user in. This parameter is only effective in the Ory Network. * @param {string} [via] Via should contain the identity\'s credential the code should be sent to. Only relevant in aal2 flows. DEPRECATED: This field is deprecated. Please remove it from your requests. The user will now see a choice of MFA credentials to choose from to perform the second factor instead. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createBrowserLoginFlow: async (refresh?: boolean, aal?: string, returnTo?: string, cookie?: string, loginChallenge?: string, organization?: string, via?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/login/browser`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (refresh !== undefined) { localVarQueryParameter['refresh'] = refresh; } if (aal !== undefined) { localVarQueryParameter['aal'] = aal; } if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } if (loginChallenge !== undefined) { localVarQueryParameter['login_challenge'] = loginChallenge; } if (organization !== undefined) { localVarQueryParameter['organization'] = organization; } if (via !== undefined) { localVarQueryParameter['via'] = via; } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initializes a browser-based user logout flow and a URL which can be used to log out the user. This endpoint is NOT INTENDED for API clients and only works with browsers (Chrome, Firefox, ...). For API clients you can call the `/self-service/logout/api` URL directly with the Ory Session Token. The URL is only valid for the currently signed in user. If no user is signed in, this endpoint returns a 401 error. When calling this endpoint from a backend, please ensure to properly forward the HTTP cookies. * @summary Create a Logout URL for Browsers * @param {string} [cookie] HTTP Cookies If you call this endpoint from a backend, please include the original Cookie header in the request. * @param {string} [returnTo] Return to URL The URL to which the browser should be redirected to after the logout has been performed. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createBrowserLogoutFlow: async (cookie?: string, returnTo?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/logout/browser`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } if (cookie != null) { localVarHeaderParameter['cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initializes a browser-based account recovery flow. Once initialized, the browser will be redirected to `selfservice.flows.recovery.ui_url` with the flow ID set as the query parameter `?flow=`. If a valid user session exists, the browser is returned to the configured return URL. If this endpoint is called via an AJAX request, the response contains the recovery flow without any redirects or a 400 bad request error if the user is already authenticated. This endpoint is NOT INTENDED for clients that do not have a browser (Chrome, Firefox, ...) as cookies are needed. More information can be found at [Ory Kratos Account Recovery Documentation](../self-service/flows/account-recovery). * @summary Create Recovery Flow for Browsers * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createBrowserRecoveryFlow: async (returnTo?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/recovery/browser`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initializes a browser-based user registration flow. This endpoint will set the appropriate cookies and anti-CSRF measures required for browser-based flows. If this endpoint is opened as a link in the browser, it will be redirected to `selfservice.flows.registration.ui_url` with the flow ID set as the query parameter `?flow=`. If a valid user session exists already, the browser will be redirected to `urls.default_redirect_url`. If this endpoint is called via an AJAX request, the response contains the flow without a redirect. In the case of an error, the `error.id` of the JSON response body can be one of: `session_already_available`: The user is already signed in. `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. `security_identity_mismatch`: The requested `?return_to` address is not allowed to be used. Adjust this in the configuration! If this endpoint is called via an AJAX request, the response contains the registration flow without a redirect. This endpoint is NOT INTENDED for clients that do not have a browser (Chrome, Firefox, ...) as cookies are needed. More information can be found at [Ory Kratos User Login](https://www.ory.sh/docs/kratos/self-service/flows/user-login) and [User Registration Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-registration). * @summary Create Registration Flow for Browsers * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {string} [loginChallenge] Ory OAuth 2.0 Login Challenge. If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider. The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/registration?login_challenge=abcde`). This feature is compatible with Ory Hydra when not running on the Ory Network. * @param {string} [afterVerificationReturnTo] The URL to return the browser to after the verification flow was completed. After the registration flow is completed, the user will be sent a verification email. Upon completing the verification flow, this URL will be used to override the default `selfservice.flows.verification.after.default_redirect_to` value. * @param {string} [organization] An optional organization ID that should be used to register this user. This parameter is only effective in the Ory Network. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createBrowserRegistrationFlow: async (returnTo?: string, loginChallenge?: string, afterVerificationReturnTo?: string, organization?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/registration/browser`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } if (loginChallenge !== undefined) { localVarQueryParameter['login_challenge'] = loginChallenge; } if (afterVerificationReturnTo !== undefined) { localVarQueryParameter['after_verification_return_to'] = afterVerificationReturnTo; } if (organization !== undefined) { localVarQueryParameter['organization'] = organization; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initializes a browser-based user settings flow. Once initialized, the browser will be redirected to `selfservice.flows.settings.ui_url` with the flow ID set as the query parameter `?flow=`. If no valid Ory Kratos Session Cookie is included in the request, a login flow will be initialized. If this endpoint is opened as a link in the browser, it will be redirected to `selfservice.flows.settings.ui_url` with the flow ID set as the query parameter `?flow=`. If no valid user session was set, the browser will be redirected to the login endpoint. If this endpoint is called via an AJAX request, the response contains the settings flow without any redirects or a 401 forbidden error if no valid session was set. Depending on your configuration this endpoint might return a 403 error if the session has a lower Authenticator Assurance Level (AAL) than is possible for the identity. This can happen if the identity has password + webauthn credentials (which would result in AAL2) but the session has only AAL1. If this error occurs, ask the user to sign in with the second factor (happens automatically for server-side browser flows) or change the configuration. If this endpoint is called via an AJAX request, the response contains the flow without a redirect. In the case of an error, the `error.id` of the JSON response body can be one of: `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. `session_inactive`: No Ory Session was found - sign in a user first. `security_identity_mismatch`: The requested `?return_to` address is not allowed to be used. Adjust this in the configuration! This endpoint is NOT INTENDED for clients that do not have a browser (Chrome, Firefox, ...) as cookies are needed. More information can be found at [Ory Kratos User Settings & Profile Management Documentation](../self-service/flows/user-settings). * @summary Create Settings Flow for Browsers * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {string} [cookie] HTTP Cookies When using the SDK in a browser app, on the server side you must include the HTTP Cookie Header sent by the client to your server here. This ensures that CSRF and session cookies are respected. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createBrowserSettingsFlow: async (returnTo?: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/settings/browser`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initializes a browser-based account verification flow. Once initialized, the browser will be redirected to `selfservice.flows.verification.ui_url` with the flow ID set as the query parameter `?flow=`. If this endpoint is called via an AJAX request, the response contains the recovery flow without any redirects. This endpoint is NOT INTENDED for API clients and only works with browsers (Chrome, Firefox, ...). More information can be found at [Ory Kratos Email and Phone Verification Documentation](https://www.ory.sh/docs/kratos/self-service/flows/verify-email-account-activation). * @summary Create Verification Flow for Browser Clients * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createBrowserVerificationFlow: async (returnTo?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/verification/browser`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint returns a list of all available FedCM providers. It is only supported on the Ory Network. * @summary Get FedCM Parameters * @param {*} [options] Override http request option. * @throws {RequiredError} */ createFedcmFlow: async (options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/fed-cm/parameters`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initiates a login flow for native apps that do not use a browser, such as mobile devices, smart TVs, and so on. If a valid provided session cookie or session token is provided, a 400 Bad Request error will be returned unless the URL query parameter `?refresh=true` is set. To fetch an existing login flow call `/self-service/login/flows?flow=`. You MUST NOT use this endpoint in client-side (Single Page Apps, ReactJS, AngularJS) nor server-side (Java Server Pages, NodeJS, PHP, Golang, ...) browser applications. Using this endpoint in these applications will make you vulnerable to a variety of CSRF attacks, including CSRF login attacks. In the case of an error, the `error.id` of the JSON response body can be one of: `session_already_available`: The user is already signed in. `session_aal1_required`: Multi-factor auth (e.g. 2fa) was requested but the user has no session yet. `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. This endpoint MUST ONLY be used in scenarios such as native mobile apps (React Native, Objective C, Swift, Java, ...). More information can be found at [Ory Kratos User Login](https://www.ory.sh/docs/kratos/self-service/flows/user-login) and [User Registration Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-registration). * @summary Create Login Flow for Native Apps * @param {boolean} [refresh] Refresh a login session If set to true, this will refresh an existing login session by asking the user to sign in again. This will reset the authenticated_at time of the session. * @param {string} [aal] Request a Specific AuthenticationMethod Assurance Level Use this parameter to upgrade an existing session\'s authenticator assurance level (AAL). This allows you to ask for multi-factor authentication. When an identity sign in using e.g. username+password, the AAL is 1. If you wish to \"upgrade\" the session\'s security by asking the user to perform TOTP / WebAuth/ ... you would set this to \"aal2\". * @param {string} [xSessionToken] The Session Token of the Identity performing the settings flow. * @param {boolean} [returnSessionTokenExchangeCode] EnableSessionTokenExchangeCode requests the login flow to include a code that can be used to retrieve the session token after the login flow has been completed. * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {string} [organization] An optional organization ID that should be used for logging this user in. This parameter is only effective in the Ory Network. * @param {string} [via] Via should contain the identity\'s credential the code should be sent to. Only relevant in aal2 flows. DEPRECATED: This field is deprecated. Please remove it from your requests. The user will now see a choice of MFA credentials to choose from to perform the second factor instead. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createNativeLoginFlow: async (refresh?: boolean, aal?: string, xSessionToken?: string, returnSessionTokenExchangeCode?: boolean, returnTo?: string, organization?: string, via?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/login/api`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (refresh !== undefined) { localVarQueryParameter['refresh'] = refresh; } if (aal !== undefined) { localVarQueryParameter['aal'] = aal; } if (returnSessionTokenExchangeCode !== undefined) { localVarQueryParameter['return_session_token_exchange_code'] = returnSessionTokenExchangeCode; } if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } if (organization !== undefined) { localVarQueryParameter['organization'] = organization; } if (via !== undefined) { localVarQueryParameter['via'] = via; } if (xSessionToken != null) { localVarHeaderParameter['X-Session-Token'] = String(xSessionToken); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initiates a recovery flow for API clients such as mobile devices, smart TVs, and so on. If a valid provided session cookie or session token is provided, a 400 Bad Request error. On an existing recovery flow, use the `getRecoveryFlow` API endpoint. You MUST NOT use this endpoint in client-side (Single Page Apps, ReactJS, AngularJS) nor server-side (Java Server Pages, NodeJS, PHP, Golang, ...) browser applications. Using this endpoint in these applications will make you vulnerable to a variety of CSRF attacks. This endpoint MUST ONLY be used in scenarios such as native mobile apps (React Native, Objective C, Swift, Java, ...). More information can be found at [Ory Kratos Account Recovery Documentation](../self-service/flows/account-recovery). * @summary Create Recovery Flow for Native Apps * @param {*} [options] Override http request option. * @throws {RequiredError} */ createNativeRecoveryFlow: async (options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/recovery/api`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initiates a registration flow for API clients such as mobile devices, smart TVs, and so on. If a valid provided session cookie or session token is provided, a 400 Bad Request error will be returned unless the URL query parameter `?refresh=true` is set. To fetch an existing registration flow call `/self-service/registration/flows?flow=`. You MUST NOT use this endpoint in client-side (Single Page Apps, ReactJS, AngularJS) nor server-side (Java Server Pages, NodeJS, PHP, Golang, ...) browser applications. Using this endpoint in these applications will make you vulnerable to a variety of CSRF attacks. In the case of an error, the `error.id` of the JSON response body can be one of: `session_already_available`: The user is already signed in. `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. This endpoint MUST ONLY be used in scenarios such as native mobile apps (React Native, Objective C, Swift, Java, ...). More information can be found at [Ory Kratos User Login](https://www.ory.sh/docs/kratos/self-service/flows/user-login) and [User Registration Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-registration). * @summary Create Registration Flow for Native Apps * @param {boolean} [returnSessionTokenExchangeCode] EnableSessionTokenExchangeCode requests the login flow to include a code that can be used to retrieve the session token after the login flow has been completed. * @param {string} [returnTo] The URL to return the browser to after the flow was completed. * @param {string} [organization] An optional organization ID that should be used to register this user. This parameter is only effective in the Ory Network. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createNativeRegistrationFlow: async (returnSessionTokenExchangeCode?: boolean, returnTo?: string, organization?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/registration/api`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnSessionTokenExchangeCode !== undefined) { localVarQueryParameter['return_session_token_exchange_code'] = returnSessionTokenExchangeCode; } if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } if (organization !== undefined) { localVarQueryParameter['organization'] = organization; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initiates a settings flow for API clients such as mobile devices, smart TVs, and so on. You must provide a valid Ory Kratos Session Token for this endpoint to respond with HTTP 200 OK. To fetch an existing settings flow call `/self-service/settings/flows?flow=`. You MUST NOT use this endpoint in client-side (Single Page Apps, ReactJS, AngularJS) nor server-side (Java Server Pages, NodeJS, PHP, Golang, ...) browser applications. Using this endpoint in these applications will make you vulnerable to a variety of CSRF attacks. Depending on your configuration this endpoint might return a 403 error if the session has a lower Authenticator Assurance Level (AAL) than is possible for the identity. This can happen if the identity has password + webauthn credentials (which would result in AAL2) but the session has only AAL1. If this error occurs, ask the user to sign in with the second factor or change the configuration. In the case of an error, the `error.id` of the JSON response body can be one of: `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. `session_inactive`: No Ory Session was found - sign in a user first. This endpoint MUST ONLY be used in scenarios such as native mobile apps (React Native, Objective C, Swift, Java, ...). More information can be found at [Ory Kratos User Settings & Profile Management Documentation](../self-service/flows/user-settings). * @summary Create Settings Flow for Native Apps * @param {string} [xSessionToken] The Session Token of the Identity performing the settings flow. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createNativeSettingsFlow: async (xSessionToken?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/settings/api`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (xSessionToken != null) { localVarHeaderParameter['X-Session-Token'] = String(xSessionToken); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint initiates a verification flow for API clients such as mobile devices, smart TVs, and so on. To fetch an existing verification flow call `/self-service/verification/flows?flow=`. You MUST NOT use this endpoint in client-side (Single Page Apps, ReactJS, AngularJS) nor server-side (Java Server Pages, NodeJS, PHP, Golang, ...) browser applications. Using this endpoint in these applications will make you vulnerable to a variety of CSRF attacks. This endpoint MUST ONLY be used in scenarios such as native mobile apps (React Native, Objective C, Swift, Java, ...). More information can be found at [Ory Email and Phone Verification Documentation](https://www.ory.sh/docs/kratos/self-service/flows/verify-email-account-activation). * @summary Create Verification Flow for Native Apps * @param {string} [returnTo] A URL contained in the return_to key of the verification flow. This piece of data has no effect on the actual logic of the flow and is purely informational. * @param {*} [options] Override http request option. * @throws {RequiredError} */ createNativeVerificationFlow: async (returnTo?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/self-service/verification/api`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (returnTo !== undefined) { localVarQueryParameter['return_to'] = returnTo; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * Calling this endpoint invalidates all except the current session that belong to the logged-in user. Session data are not deleted. * @summary Disable my other sessions * @param {string} [xSessionToken] Set the Session Token when calling from non-browser clients. A session token has a format of `MP2YWEMeM8MxjkGKpH4dqOQ4Q4DlSPaj`. * @param {string} [cookie] Set the Cookie Header. This is especially useful when calling this endpoint from a server-side application. In that scenario you must include the HTTP Cookie Header which originally was included in the request to your server. An example of a session in the HTTP Cookie Header is: `ory_kratos_session=a19iOVAbdzdgl70Rq1QZmrKmcjDtdsviCTZx7m9a9yHIUS8Wa9T7hvqyGTsLHi6Qifn2WUfpAKx9DWp0SJGleIn9vh2YF4A16id93kXFTgIgmwIOvbVAScyrx7yVl6bPZnCx27ec4WQDtaTewC1CpgudeDV2jQQnSaCP6ny3xa8qLH-QUgYqdQuoA_LF1phxgRCUfIrCLQOkolX5nv3ze_f==`. It is ok if more than one cookie are included here as all other cookies will be ignored. * @param {*} [options] Override http request option. * @throws {RequiredError} */ disableMyOtherSessions: async (xSessionToken?: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { const localVarPath = `/sessions`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'DELETE', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (xSessionToken != null) { localVarHeaderParameter['X-Session-Token'] = String(xSessionToken); } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * Calling this endpoint invalidates the specified session. The current session cannot be revoked. Session data are not deleted. * @summary Disable one of my sessions * @param {string} id ID is the session\'s ID. * @param {string} [xSessionToken] Set the Session Token when calling from non-browser clients. A session token has a format of `MP2YWEMeM8MxjkGKpH4dqOQ4Q4DlSPaj`. * @param {string} [cookie] Set the Cookie Header. This is especially useful when calling this endpoint from a server-side application. In that scenario you must include the HTTP Cookie Header which originally was included in the request to your server. An example of a session in the HTTP Cookie Header is: `ory_kratos_session=a19iOVAbdzdgl70Rq1QZmrKmcjDtdsviCTZx7m9a9yHIUS8Wa9T7hvqyGTsLHi6Qifn2WUfpAKx9DWp0SJGleIn9vh2YF4A16id93kXFTgIgmwIOvbVAScyrx7yVl6bPZnCx27ec4WQDtaTewC1CpgudeDV2jQQnSaCP6ny3xa8qLH-QUgYqdQuoA_LF1phxgRCUfIrCLQOkolX5nv3ze_f==`. It is ok if more than one cookie are included here as all other cookies will be ignored. * @param {*} [options] Override http request option. * @throws {RequiredError} */ disableMySession: async (id: string, xSessionToken?: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('disableMySession', 'id', id) const localVarPath = `/sessions/{id}` .replace(`{${"id"}}`, encodeURIComponent(String(id))); // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'DELETE', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (xSessionToken != null) { localVarHeaderParameter['X-Session-Token'] = String(xSessionToken); } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * * @summary Exchange Session Token * @param {string} initCode The part of the code return when initializing the flow. * @param {string} returnToCode The part of the code returned by the return_to URL. * @param {*} [options] Override http request option. * @throws {RequiredError} */ exchangeSessionToken: async (initCode: string, returnToCode: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'initCode' is not null or undefined assertParamExists('exchangeSessionToken', 'initCode', initCode) // verify required parameter 'returnToCode' is not null or undefined assertParamExists('exchangeSessionToken', 'returnToCode', returnToCode) const localVarPath = `/sessions/token-exchange`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (initCode !== undefined) { localVarQueryParameter['init_code'] = initCode; } if (returnToCode !== undefined) { localVarQueryParameter['return_to_code'] = returnToCode; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint returns the error associated with a user-facing self service errors. This endpoint supports stub values to help you implement the error UI: `?id=stub:500` - returns a stub 500 (Internal Server Error) error. More information can be found at [Ory Kratos User User Facing Error Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-facing-errors). * @summary Get User-Flow Errors * @param {string} id Error is the error\'s ID * @param {*} [options] Override http request option. * @throws {RequiredError} */ getFlowError: async (id: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getFlowError', 'id', id) const localVarPath = `/self-service/errors`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (id !== undefined) { localVarQueryParameter['id'] = id; } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint returns a login flow\'s context with, for example, error details and other information. Browser flows expect the anti-CSRF cookie to be included in the request\'s HTTP Cookie Header. For AJAX requests you must ensure that cookies are included in the request or requests will fail. If you use the browser-flow for server-side apps, the services need to run on a common top-level-domain and you need to forward the incoming HTTP Cookie header to this endpoint: ```js pseudo-code example router.get(\'/login\', async function (req, res) { const flow = await client.getLoginFlow(req.header(\'cookie\'), req.query[\'flow\']) res.render(\'login\', flow) }) ``` This request may fail due to several reasons. The `error.id` can be one of: `session_already_available`: The user is already signed in. `self_service_flow_expired`: The flow is expired and you should request a new one. More information can be found at [Ory Kratos User Login](https://www.ory.sh/docs/kratos/self-service/flows/user-login) and [User Registration Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-registration). * @summary Get Login Flow * @param {string} id The Login Flow ID The value for this parameter comes from `flow` URL Query parameter sent to your application (e.g. `/login?flow=abcde`). * @param {string} [cookie] HTTP Cookies When using the SDK in a browser app, on the server side you must include the HTTP Cookie Header sent by the client to your server here. This ensures that CSRF and session cookies are respected. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getLoginFlow: async (id: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getLoginFlow', 'id', id) const localVarPath = `/self-service/login/flows`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (id !== undefined) { localVarQueryParameter['id'] = id; } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint returns a recovery flow\'s context with, for example, error details and other information. Browser flows expect the anti-CSRF cookie to be included in the request\'s HTTP Cookie Header. For AJAX requests you must ensure that cookies are included in the request or requests will fail. If you use the browser-flow for server-side apps, the services need to run on a common top-level-domain and you need to forward the incoming HTTP Cookie header to this endpoint: ```js pseudo-code example router.get(\'/recovery\', async function (req, res) { const flow = await client.getRecoveryFlow(req.header(\'Cookie\'), req.query[\'flow\']) res.render(\'recovery\', flow) }) ``` More information can be found at [Ory Kratos Account Recovery Documentation](../self-service/flows/account-recovery). * @summary Get Recovery Flow * @param {string} id The Flow ID The value for this parameter comes from `request` URL Query parameter sent to your application (e.g. `/recovery?flow=abcde`). * @param {string} [cookie] HTTP Cookies When using the SDK in a browser app, on the server side you must include the HTTP Cookie Header sent by the client to your server here. This ensures that CSRF and session cookies are respected. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getRecoveryFlow: async (id: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getRecoveryFlow', 'id', id) const localVarPath = `/self-service/recovery/flows`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (id !== undefined) { localVarQueryParameter['id'] = id; } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint returns a registration flow\'s context with, for example, error details and other information. Browser flows expect the anti-CSRF cookie to be included in the request\'s HTTP Cookie Header. For AJAX requests you must ensure that cookies are included in the request or requests will fail. If you use the browser-flow for server-side apps, the services need to run on a common top-level-domain and you need to forward the incoming HTTP Cookie header to this endpoint: ```js pseudo-code example router.get(\'/registration\', async function (req, res) { const flow = await client.getRegistrationFlow(req.header(\'cookie\'), req.query[\'flow\']) res.render(\'registration\', flow) }) ``` This request may fail due to several reasons. The `error.id` can be one of: `session_already_available`: The user is already signed in. `self_service_flow_expired`: The flow is expired and you should request a new one. More information can be found at [Ory Kratos User Login](https://www.ory.sh/docs/kratos/self-service/flows/user-login) and [User Registration Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-registration). * @summary Get Registration Flow * @param {string} id The Registration Flow ID The value for this parameter comes from `flow` URL Query parameter sent to your application (e.g. `/registration?flow=abcde`). * @param {string} [cookie] HTTP Cookies When using the SDK in a browser app, on the server side you must include the HTTP Cookie Header sent by the client to your server here. This ensures that CSRF and session cookies are respected. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getRegistrationFlow: async (id: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getRegistrationFlow', 'id', id) const localVarPath = `/self-service/registration/flows`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (id !== undefined) { localVarQueryParameter['id'] = id; } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * When accessing this endpoint through Ory Kratos\' Public API you must ensure that either the Ory Kratos Session Cookie or the Ory Kratos Session Token are set. Depending on your configuration this endpoint might return a 403 error if the session has a lower Authenticator Assurance Level (AAL) than is possible for the identity. This can happen if the identity has password + webauthn credentials (which would result in AAL2) but the session has only AAL1. If this error occurs, ask the user to sign in with the second factor or change the configuration. You can access this endpoint without credentials when using Ory Kratos\' Admin API. If this endpoint is called via an AJAX request, the response contains the flow without a redirect. In the case of an error, the `error.id` of the JSON response body can be one of: `security_csrf_violation`: Unable to fetch the flow because a CSRF violation occurred. `session_inactive`: No Ory Session was found - sign in a user first. `security_identity_mismatch`: The flow was interrupted with `session_refresh_required` but apparently some other identity logged in instead. More information can be found at [Ory Kratos User Settings & Profile Management Documentation](../self-service/flows/user-settings). * @summary Get Settings Flow * @param {string} id ID is the Settings Flow ID The value for this parameter comes from `flow` URL Query parameter sent to your application (e.g. `/settings?flow=abcde`). * @param {string} [xSessionToken] The Session Token When using the SDK in an app without a browser, please include the session token here. * @param {string} [cookie] HTTP Cookies When using the SDK in a browser app, on the server side you must include the HTTP Cookie Header sent by the client to your server here. This ensures that CSRF and session cookies are respected. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getSettingsFlow: async (id: string, xSessionToken?: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getSettingsFlow', 'id', id) const localVarPath = `/self-service/settings/flows`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (id !== undefined) { localVarQueryParameter['id'] = id; } if (xSessionToken != null) { localVarHeaderParameter['X-Session-Token'] = String(xSessionToken); } if (cookie != null) { localVarHeaderParameter['Cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint returns a verification flow\'s context with, for example, error details and other information. Browser flows expect the anti-CSRF cookie to be included in the request\'s HTTP Cookie Header. For AJAX requests you must ensure that cookies are included in the request or requests will fail. If you use the browser-flow for server-side apps, the services need to run on a common top-level-domain and you need to forward the incoming HTTP Cookie header to this endpoint: ```js pseudo-code example router.get(\'/recovery\', async function (req, res) { const flow = await client.getVerificationFlow(req.header(\'cookie\'), req.query[\'flow\']) res.render(\'verification\', flow) }) ``` More information can be found at [Ory Kratos Email and Phone Verification Documentation](https://www.ory.sh/docs/kratos/self-service/flows/verify-email-account-activation). * @summary Get Verification Flow * @param {string} id The Flow ID The value for this parameter comes from `request` URL Query parameter sent to your application (e.g. `/verification?flow=abcde`). * @param {string} [cookie] HTTP Cookies When using the SDK on the server side you must include the HTTP Cookie Header originally sent to your HTTP handler here. * @param {*} [options] Override http request option. * @throws {RequiredError} */ getVerificationFlow: async (id: string, cookie?: string, options: RawAxiosRequestConfig = {}): Promise => { // verify required parameter 'id' is not null or undefined assertParamExists('getVerificationFlow', 'id', id) const localVarPath = `/self-service/verification/flows`; // use dummy base URL string because the URL constructor only accepts absolute URLs. const localVarUrlObj = new URL(localVarPath, DUMMY_BASE_URL); let baseOptions; if (configuration) { baseOptions = configuration.baseOptions; } const localVarRequestOptions = { method: 'GET', ...baseOptions, ...options}; const localVarHeaderParameter = {} as any; const localVarQueryParameter = {} as any; if (id !== undefined) { localVarQueryParameter['id'] = id; } if (cookie != null) { localVarHeaderParameter['cookie'] = String(cookie); } setSearchParams(localVarUrlObj, localVarQueryParameter); let headersFromBaseOptions = baseOptions && baseOptions.headers ? baseOptions.headers : {}; localVarRequestOptions.headers = {...localVarHeaderParameter, ...headersFromBaseOptions, ...options.headers}; return { url: toPathString(localVarUrlObj), options: localVarRequestOptions, }; }, /** * This endpoint provides JavaScript which is needed in order to perform WebAuthn login and registration. If you are building a JavaScript Browser App (e.g. in ReactJS or AngularJS) you will need to load this file: ```html