import { BinaryReader, BinaryWriter } from "@bufbuild/protobuf/wire"; import Long from "long"; import { type CallContext, type CallOptions } from "nice-grpc-common"; import { Details, ListDetails, ListQuery, Organization } from "../../object/v2/object.js"; import { PasskeyAuthenticator, PasskeyRegistrationCode, ReturnPasskeyRegistrationCode, SendPasskeyRegistrationLink } from "./auth.js"; import { ReturnEmailVerificationCode, SendEmailVerificationCode, SetHumanEmail } from "./email.js"; import { IDPInformation, IDPIntent, IDPLink, LDAPCredentials, RedirectURLs } from "./idp.js"; import { HashedPassword, Password, ReturnPasswordResetCode, SendPasswordResetLink, SetPassword } from "./password.js"; import { ReturnPhoneVerificationCode, SendPhoneVerificationCode, SetHumanPhone } from "./phone.js"; import { SearchQuery, UserFieldName } from "./query.js"; import { AuthFactor, AuthFactorState, Passkey, ReturnInviteCode, SendInviteCode, SetHumanProfile, SetMetadataEntry, User } from "./user.js"; export declare const protobufPackage = "zitadel.user.v2"; export declare enum AuthenticationMethodType { AUTHENTICATION_METHOD_TYPE_UNSPECIFIED = 0, AUTHENTICATION_METHOD_TYPE_PASSWORD = 1, AUTHENTICATION_METHOD_TYPE_PASSKEY = 2, AUTHENTICATION_METHOD_TYPE_IDP = 3, AUTHENTICATION_METHOD_TYPE_TOTP = 4, AUTHENTICATION_METHOD_TYPE_U2F = 5, AUTHENTICATION_METHOD_TYPE_OTP_SMS = 6, AUTHENTICATION_METHOD_TYPE_OTP_EMAIL = 7, UNRECOGNIZED = -1 } export declare function authenticationMethodTypeFromJSON(object: any): AuthenticationMethodType; export declare function authenticationMethodTypeToJSON(object: AuthenticationMethodType): string; export declare enum AuthFactors { OTP = 0, OTP_SMS = 1, OTP_EMAIL = 2, U2F = 3, UNRECOGNIZED = -1 } export declare function authFactorsFromJSON(object: any): AuthFactors; export declare function authFactorsToJSON(object: AuthFactors): string; export interface AddHumanUserRequest { /** optionally set your own id unique for the user. */ userId?: string | undefined; /** optionally set a unique username, if none is provided the email will be used. */ username?: string | undefined; organization: Organization | undefined; profile: SetHumanProfile | undefined; email: SetHumanEmail | undefined; phone: SetHumanPhone | undefined; metadata: SetMetadataEntry[]; password?: Password | undefined; hashedPassword?: HashedPassword | undefined; idpLinks: IDPLink[]; /** * An Implementation of RFC 6238 is used, with HMAC-SHA-1 and time-step of 30 seconds. * Currently no other options are supported, and if anything different is used the validation will fail. */ totpSecret?: string | undefined; } export interface AddHumanUserResponse { userId: string; details: Details | undefined; emailCode?: string | undefined; phoneCode?: string | undefined; } export interface GetUserByIDRequest { userId: string; } export interface GetUserByIDResponse { /** deprecated: details is moved into user */ details: Details | undefined; user: User | undefined; } export interface ListUsersRequest { /** list limitations and ordering */ query: ListQuery | undefined; /** the field the result is sorted */ sortingColumn: UserFieldName; /** criteria the client is looking for */ queries: SearchQuery[]; } export interface ListUsersResponse { details: ListDetails | undefined; sortingColumn: UserFieldName; result: User[]; } export interface SetEmailRequest { userId: string; email: string; sendCode?: SendEmailVerificationCode | undefined; returnCode?: ReturnEmailVerificationCode | undefined; isVerified?: boolean | undefined; } export interface SetEmailResponse { details: Details | undefined; /** in case the verification was set to return_code, the code will be returned */ verificationCode?: string | undefined; } export interface ResendEmailCodeRequest { userId: string; sendCode?: SendEmailVerificationCode | undefined; returnCode?: ReturnEmailVerificationCode | undefined; } export interface ResendEmailCodeResponse { details: Details | undefined; /** in case the verification was set to return_code, the code will be returned */ verificationCode?: string | undefined; } export interface SendEmailCodeRequest { userId: string; sendCode?: SendEmailVerificationCode | undefined; returnCode?: ReturnEmailVerificationCode | undefined; } export interface SendEmailCodeResponse { details: Details | undefined; /** in case the verification was set to return_code, the code will be returned */ verificationCode?: string | undefined; } export interface VerifyEmailRequest { userId: string; verificationCode: string; } export interface VerifyEmailResponse { details: Details | undefined; } export interface SetPhoneRequest { userId: string; phone: string; sendCode?: SendPhoneVerificationCode | undefined; returnCode?: ReturnPhoneVerificationCode | undefined; isVerified?: boolean | undefined; } export interface SetPhoneResponse { details: Details | undefined; /** in case the verification was set to return_code, the code will be returned */ verificationCode?: string | undefined; } export interface RemovePhoneRequest { userId: string; } export interface RemovePhoneResponse { details: Details | undefined; } export interface ResendPhoneCodeRequest { userId: string; sendCode?: SendPhoneVerificationCode | undefined; returnCode?: ReturnPhoneVerificationCode | undefined; } export interface ResendPhoneCodeResponse { details: Details | undefined; /** in case the verification was set to return_code, the code will be returned */ verificationCode?: string | undefined; } export interface VerifyPhoneRequest { userId: string; verificationCode: string; } export interface VerifyPhoneResponse { details: Details | undefined; } export interface DeleteUserRequest { userId: string; } export interface DeleteUserResponse { details: Details | undefined; } export interface UpdateHumanUserRequest { userId: string; username?: string | undefined; profile?: SetHumanProfile | undefined; email?: SetHumanEmail | undefined; phone?: SetHumanPhone | undefined; password?: SetPassword | undefined; } export interface UpdateHumanUserResponse { details: Details | undefined; emailCode?: string | undefined; phoneCode?: string | undefined; } export interface DeactivateUserRequest { userId: string; } export interface DeactivateUserResponse { details: Details | undefined; } export interface ReactivateUserRequest { userId: string; } export interface ReactivateUserResponse { details: Details | undefined; } export interface LockUserRequest { userId: string; } export interface LockUserResponse { details: Details | undefined; } export interface UnlockUserRequest { userId: string; } export interface UnlockUserResponse { details: Details | undefined; } export interface RegisterPasskeyRequest { userId: string; code?: PasskeyRegistrationCode | undefined; authenticator: PasskeyAuthenticator; domain: string; } export interface RegisterPasskeyResponse { details: Details | undefined; passkeyId: string; publicKeyCredentialCreationOptions: { [key: string]: any; } | undefined; } export interface VerifyPasskeyRegistrationRequest { userId: string; passkeyId: string; publicKeyCredential: { [key: string]: any; } | undefined; passkeyName: string; } export interface VerifyPasskeyRegistrationResponse { details: Details | undefined; } export interface RegisterU2FRequest { userId: string; domain: string; } export interface RegisterU2FResponse { details: Details | undefined; u2fId: string; publicKeyCredentialCreationOptions: { [key: string]: any; } | undefined; } export interface VerifyU2FRegistrationRequest { userId: string; u2fId: string; publicKeyCredential: { [key: string]: any; } | undefined; tokenName: string; } export interface VerifyU2FRegistrationResponse { details: Details | undefined; } export interface RemoveU2FRequest { userId: string; u2fId: string; } export interface RemoveU2FResponse { details: Details | undefined; } export interface RegisterTOTPRequest { userId: string; } export interface RegisterTOTPResponse { details: Details | undefined; uri: string; secret: string; } export interface VerifyTOTPRegistrationRequest { userId: string; code: string; } export interface VerifyTOTPRegistrationResponse { details: Details | undefined; } export interface RemoveTOTPRequest { userId: string; } export interface RemoveTOTPResponse { details: Details | undefined; } export interface AddOTPSMSRequest { userId: string; } export interface AddOTPSMSResponse { details: Details | undefined; } export interface RemoveOTPSMSRequest { userId: string; } export interface RemoveOTPSMSResponse { details: Details | undefined; } export interface AddOTPEmailRequest { userId: string; } export interface AddOTPEmailResponse { details: Details | undefined; } export interface RemoveOTPEmailRequest { userId: string; } export interface RemoveOTPEmailResponse { details: Details | undefined; } export interface CreatePasskeyRegistrationLinkRequest { userId: string; sendLink?: SendPasskeyRegistrationLink | undefined; returnCode?: ReturnPasskeyRegistrationCode | undefined; } export interface CreatePasskeyRegistrationLinkResponse { details: Details | undefined; /** in case the medium was set to return_code, the code will be returned */ code?: PasskeyRegistrationCode | undefined; } export interface ListPasskeysRequest { userId: string; } export interface ListPasskeysResponse { details: ListDetails | undefined; result: Passkey[]; } export interface RemovePasskeyRequest { userId: string; passkeyId: string; } export interface RemovePasskeyResponse { details: Details | undefined; } export interface StartIdentityProviderIntentRequest { idpId: string; urls?: RedirectURLs | undefined; ldap?: LDAPCredentials | undefined; } export interface StartIdentityProviderIntentResponse { details: Details | undefined; authUrl?: string | undefined; idpIntent?: IDPIntent | undefined; postForm?: Buffer | undefined; } export interface RetrieveIdentityProviderIntentRequest { idpIntentId: string; idpIntentToken: string; } export interface RetrieveIdentityProviderIntentResponse { details: Details | undefined; idpInformation: IDPInformation | undefined; userId: string; addHumanUser: AddHumanUserRequest | undefined; } export interface AddIDPLinkRequest { userId: string; idpLink: IDPLink | undefined; } export interface AddIDPLinkResponse { details: Details | undefined; } export interface ListIDPLinksRequest { userId: string; /** list limitations and ordering */ query: ListQuery | undefined; } export interface ListIDPLinksResponse { details: ListDetails | undefined; result: IDPLink[]; } export interface RemoveIDPLinkRequest { userId: string; idpId: string; linkedUserId: string; } export interface RemoveIDPLinkResponse { details: Details | undefined; } export interface PasswordResetRequest { userId: string; sendLink?: SendPasswordResetLink | undefined; returnCode?: ReturnPasswordResetCode | undefined; } export interface PasswordResetResponse { details: Details | undefined; /** in case the medium was set to return_code, the code will be returned */ verificationCode?: string | undefined; } export interface SetPasswordRequest { userId: string; newPassword: Password | undefined; currentPassword?: string | undefined; verificationCode?: string | undefined; } export interface SetPasswordResponse { details: Details | undefined; } export interface ListAuthenticationMethodTypesRequest { userId: string; domainQuery?: DomainQuery | undefined; } export interface DomainQuery { /** List also auth method types without domain information like passkey and U2F added through V1 APIs / Login UI. */ includeWithoutDomain: boolean; /** List only auth methods with specific domain. */ domain: string; } export interface ListAuthenticationMethodTypesResponse { details: ListDetails | undefined; authMethodTypes: AuthenticationMethodType[]; } export interface ListAuthenticationFactorsRequest { userId: string; authFactors: AuthFactors[]; states: AuthFactorState[]; } export interface ListAuthenticationFactorsResponse { result: AuthFactor[]; } export interface CreateInviteCodeRequest { userId: string; sendCode?: SendInviteCode | undefined; returnCode?: ReturnInviteCode | undefined; } export interface CreateInviteCodeResponse { details: Details | undefined; /** The invite code is returned if the verification was set to return_code. */ inviteCode?: string | undefined; } export interface ResendInviteCodeRequest { userId: string; } export interface ResendInviteCodeResponse { details: Details | undefined; } export interface VerifyInviteCodeRequest { userId: string; verificationCode: string; } export interface VerifyInviteCodeResponse { details: Details | undefined; } export interface HumanMFAInitSkippedRequest { userId: string; } export interface HumanMFAInitSkippedResponse { details: Details | undefined; } export declare const AddHumanUserRequest: MessageFns; export declare const AddHumanUserResponse: MessageFns; export declare const GetUserByIDRequest: MessageFns; export declare const GetUserByIDResponse: MessageFns; export declare const ListUsersRequest: MessageFns; export declare const ListUsersResponse: MessageFns; export declare const SetEmailRequest: MessageFns; export declare const SetEmailResponse: MessageFns; export declare const ResendEmailCodeRequest: MessageFns; export declare const ResendEmailCodeResponse: MessageFns; export declare const SendEmailCodeRequest: MessageFns; export declare const SendEmailCodeResponse: MessageFns; export declare const VerifyEmailRequest: MessageFns; export declare const VerifyEmailResponse: MessageFns; export declare const SetPhoneRequest: MessageFns; export declare const SetPhoneResponse: MessageFns; export declare const RemovePhoneRequest: MessageFns; export declare const RemovePhoneResponse: MessageFns; export declare const ResendPhoneCodeRequest: MessageFns; export declare const ResendPhoneCodeResponse: MessageFns; export declare const VerifyPhoneRequest: MessageFns; export declare const VerifyPhoneResponse: MessageFns; export declare const DeleteUserRequest: MessageFns; export declare const DeleteUserResponse: MessageFns; export declare const UpdateHumanUserRequest: MessageFns; export declare const UpdateHumanUserResponse: MessageFns; export declare const DeactivateUserRequest: MessageFns; export declare const DeactivateUserResponse: MessageFns; export declare const ReactivateUserRequest: MessageFns; export declare const ReactivateUserResponse: MessageFns; export declare const LockUserRequest: MessageFns; export declare const LockUserResponse: MessageFns; export declare const UnlockUserRequest: MessageFns; export declare const UnlockUserResponse: MessageFns; export declare const RegisterPasskeyRequest: MessageFns; export declare const RegisterPasskeyResponse: MessageFns; export declare const VerifyPasskeyRegistrationRequest: MessageFns; export declare const VerifyPasskeyRegistrationResponse: MessageFns; export declare const RegisterU2FRequest: MessageFns; export declare const RegisterU2FResponse: MessageFns; export declare const VerifyU2FRegistrationRequest: MessageFns; export declare const VerifyU2FRegistrationResponse: MessageFns; export declare const RemoveU2FRequest: MessageFns; export declare const RemoveU2FResponse: MessageFns; export declare const RegisterTOTPRequest: MessageFns; export declare const RegisterTOTPResponse: MessageFns; export declare const VerifyTOTPRegistrationRequest: MessageFns; export declare const VerifyTOTPRegistrationResponse: MessageFns; export declare const RemoveTOTPRequest: MessageFns; export declare const RemoveTOTPResponse: MessageFns; export declare const AddOTPSMSRequest: MessageFns; export declare const AddOTPSMSResponse: MessageFns; export declare const RemoveOTPSMSRequest: MessageFns; export declare const RemoveOTPSMSResponse: MessageFns; export declare const AddOTPEmailRequest: MessageFns; export declare const AddOTPEmailResponse: MessageFns; export declare const RemoveOTPEmailRequest: MessageFns; export declare const RemoveOTPEmailResponse: MessageFns; export declare const CreatePasskeyRegistrationLinkRequest: MessageFns; export declare const CreatePasskeyRegistrationLinkResponse: MessageFns; export declare const ListPasskeysRequest: MessageFns; export declare const ListPasskeysResponse: MessageFns; export declare const RemovePasskeyRequest: MessageFns; export declare const RemovePasskeyResponse: MessageFns; export declare const StartIdentityProviderIntentRequest: MessageFns; export declare const StartIdentityProviderIntentResponse: MessageFns; export declare const RetrieveIdentityProviderIntentRequest: MessageFns; export declare const RetrieveIdentityProviderIntentResponse: MessageFns; export declare const AddIDPLinkRequest: MessageFns; export declare const AddIDPLinkResponse: MessageFns; export declare const ListIDPLinksRequest: MessageFns; export declare const ListIDPLinksResponse: MessageFns; export declare const RemoveIDPLinkRequest: MessageFns; export declare const RemoveIDPLinkResponse: MessageFns; export declare const PasswordResetRequest: MessageFns; export declare const PasswordResetResponse: MessageFns; export declare const SetPasswordRequest: MessageFns; export declare const SetPasswordResponse: MessageFns; export declare const ListAuthenticationMethodTypesRequest: MessageFns; export declare const DomainQuery: MessageFns; export declare const ListAuthenticationMethodTypesResponse: MessageFns; export declare const ListAuthenticationFactorsRequest: MessageFns; export declare const ListAuthenticationFactorsResponse: MessageFns; export declare const CreateInviteCodeRequest: MessageFns; export declare const CreateInviteCodeResponse: MessageFns; export declare const ResendInviteCodeRequest: MessageFns; export declare const ResendInviteCodeResponse: MessageFns; export declare const VerifyInviteCodeRequest: MessageFns; export declare const VerifyInviteCodeResponse: MessageFns; export declare const HumanMFAInitSkippedRequest: MessageFns; export declare const HumanMFAInitSkippedResponse: MessageFns; export type UserServiceDefinition = typeof UserServiceDefinition; export declare const UserServiceDefinition: { readonly name: "UserService"; readonly fullName: "zitadel.user.v2.UserService"; readonly methods: { /** * Create a new human user * * Create/import a new user with the type human. The newly created user will get a verification email if either the email address is not marked as verified and you did not request the verification to be returned. */ readonly addHumanUser: { readonly name: "AddHumanUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * User by ID * * Returns the full user object (human or machine) including the profile, email, etc.. */ readonly getUserByID: { readonly name: "GetUserByID"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Search Users * * Search for users. By default, we will return all users of your instance that you have permission to read. Make sure to include a limit and sorting for pagination. */ readonly listUsers: { readonly name: "ListUsers"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Change the user email * * Change the email address of a user. If the state is set to not verified, a verification code will be generated, which can be either returned or sent to the user by email.. */ readonly setEmail: { readonly name: "SetEmail"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Resend code to verify user email * * Resend code to verify user email. */ readonly resendEmailCode: { readonly name: "ResendEmailCode"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Send code to verify user email * * Send code to verify user email. */ readonly sendEmailCode: { readonly name: "SendEmailCode"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Verify the email * * Verify the email with the generated code. */ readonly verifyEmail: { readonly name: "VerifyEmail"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Set the user phone * * Set the phone number of a user. If the state is set to not verified, a verification code will be generated, which can be either returned or sent to the user by sms.. */ readonly setPhone: { readonly name: "SetPhone"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove the user phone * * Remove the user phone */ readonly removePhone: { readonly name: "RemovePhone"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Resend code to verify user phone * * Resend code to verify user phone. */ readonly resendPhoneCode: { readonly name: "ResendPhoneCode"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Verify the phone * * Verify the phone with the generated code.. */ readonly verifyPhone: { readonly name: "VerifyPhone"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Update User * * Update all information from a user.. */ readonly updateHumanUser: { readonly name: "UpdateHumanUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Deactivate user * * The state of the user will be changed to 'deactivated'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'deactivated'. Use deactivate user when the user should not be able to use the account anymore, but you still need access to the user data.. */ readonly deactivateUser: { readonly name: "DeactivateUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Reactivate user * * Reactivate a user with the state 'deactivated'. The user will be able to log in again afterward. The endpoint returns an error if the user is not in the state 'deactivated'.. */ readonly reactivateUser: { readonly name: "ReactivateUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Lock user * * The state of the user will be changed to 'locked'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'locked'. Use this endpoint if the user should not be able to log in temporarily because of an event that happened (wrong password, etc.).. */ readonly lockUser: { readonly name: "LockUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Unlock user * * The state of the user will be changed to 'locked'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'locked'. Use this endpoint if the user should not be able to log in temporarily because of an event that happened (wrong password, etc.).. */ readonly unlockUser: { readonly name: "UnlockUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Delete user * * The state of the user will be changed to 'deleted'. The user will not be able to log in anymore. Endpoints requesting this user will return an error 'User not found.. */ readonly deleteUser: { readonly name: "DeleteUser"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Start the registration of passkey for a user * * Start the registration of a passkey for a user, as a response the public key credential creation options are returned, which are used to verify the passkey.. */ readonly registerPasskey: { readonly name: "RegisterPasskey"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Verify a passkey for a user * * Verify the passkey registration with the public key credential.. */ readonly verifyPasskeyRegistration: { readonly name: "VerifyPasskeyRegistration"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Create a passkey registration link for a user * * Create a passkey registration link which includes a code and either return it or send it to the user.. */ readonly createPasskeyRegistrationLink: { readonly name: "CreatePasskeyRegistrationLink"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * List passkeys of an user * * List passkeys of an user */ readonly listPasskeys: { readonly name: "ListPasskeys"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove passkey from a user * * Remove passkey from a user. */ readonly removePasskey: { readonly name: "RemovePasskey"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Start the registration of a u2f token for a user * * Start the registration of a u2f token for a user, as a response the public key credential creation options are returned, which are used to verify the u2f token.. */ readonly registerU2F: { readonly name: "RegisterU2F"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Verify a u2f token for a user * * Verify the u2f token registration with the public key credential.. */ readonly verifyU2FRegistration: { readonly name: "VerifyU2FRegistration"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove u2f token from a user * * Remove u2f token from a user. */ readonly removeU2F: { readonly name: "RemoveU2F"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Start the registration of a TOTP generator for a user * * Start the registration of a TOTP generator for a user, as a response a secret returned, which is used to initialize a TOTP app or device.. */ readonly registerTOTP: { readonly name: "RegisterTOTP"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Verify a TOTP generator for a user * * Verify the TOTP registration with a generated code.. */ readonly verifyTOTPRegistration: { readonly name: "VerifyTOTPRegistration"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove TOTP generator from a user * * Remove the configured TOTP generator of a user. As only one TOTP generator per user is allowed, the user will not have TOTP as a second factor afterward. */ readonly removeTOTP: { readonly name: "RemoveTOTP"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Add OTP SMS for a user * * Add a new One-Time Password (OTP) SMS factor to the authenticated user. OTP SMS will enable the user to verify a OTP with the latest verified phone number. The phone number has to be verified to add the second factor.. */ readonly addOTPSMS: { readonly name: "AddOTPSMS"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove One-Time Password (OTP) SMS from a user * * Remove the configured One-Time Password (OTP) SMS factor of a user. As only one OTP SMS per user is allowed, the user will not have OTP SMS as a second factor afterward. */ readonly removeOTPSMS: { readonly name: "RemoveOTPSMS"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Add OTP Email for a user * * Add a new One-Time Password (OTP) Email factor to the authenticated user. OTP Email will enable the user to verify a OTP with the latest verified email. The email has to be verified to add the second factor.. */ readonly addOTPEmail: { readonly name: "AddOTPEmail"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove One-Time Password (OTP) Email from a user * * Remove the configured One-Time Password (OTP) Email factor of a user. As only one OTP Email per user is allowed, the user will not have OTP Email as a second factor afterward. */ readonly removeOTPEmail: { readonly name: "RemoveOTPEmail"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Start flow with an identity provider * * Start a flow with an identity provider, for external login, registration or linking.. */ readonly startIdentityProviderIntent: { readonly name: "StartIdentityProviderIntent"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Retrieve the information returned by the identity provider * * Retrieve the information returned by the identity provider for registration or updating an existing user with new information.. */ readonly retrieveIdentityProviderIntent: { readonly name: "RetrieveIdentityProviderIntent"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Add link to an identity provider to an user * * Add link to an identity provider to an user.. */ readonly addIDPLink: { readonly name: "AddIDPLink"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * List links to an identity provider of an user * * List links to an identity provider of an user. */ readonly listIDPLinks: { readonly name: "ListIDPLinks"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Remove link of an identity provider to an user * * Remove link of an identity provider to an user. */ readonly removeIDPLink: { readonly name: "RemoveIDPLink"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Request a code to reset a password * * Request a code to reset a password.. */ readonly passwordReset: { readonly name: "PasswordReset"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Change password * * Change the password of a user with either a verification code or the current password.. */ readonly setPassword: { readonly name: "SetPassword"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * List all possible authentication methods of a user * * List all possible authentication methods of a user like password, passwordless, (T)OTP and more.. */ readonly listAuthenticationMethodTypes: { readonly name: "ListAuthenticationMethodTypes"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; readonly listAuthenticationFactors: { readonly name: "ListAuthenticationFactors"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Create an invite code for a user * * Create an invite code for a user to initialize their first authentication method (password, passkeys, IdP) depending on the organization's available methods. */ readonly createInviteCode: { readonly name: "CreateInviteCode"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Resend an invite code for a user * * Resend an invite code for a user to initialize their first authentication method (password, passkeys, IdP) depending on the organization's available methods. * A resend is only possible if a code has been created previously and sent to the user. If there is no code or it was directly returned, an error will be returned. */ readonly resendInviteCode: { readonly name: "ResendInviteCode"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * Verify an invite code for a user * * Verify the invite code of a user previously issued. This will set their email to a verified state and * allow the user to set up their first authentication method (password, passkeys, IdP) depending on the organization's available methods. */ readonly verifyInviteCode: { readonly name: "VerifyInviteCode"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; /** * MFA Init Skipped * * Update the last time the user has skipped MFA initialization. The server timestamp is used. */ readonly humanMFAInitSkipped: { readonly name: "HumanMFAInitSkipped"; readonly requestType: MessageFns; readonly requestStream: false; readonly responseType: MessageFns; readonly responseStream: false; readonly options: { readonly _unknownFields: { readonly 8338: readonly [Buffer]; readonly 400010: readonly [Buffer]; readonly 578365826: readonly [Buffer]; }; }; }; }; }; export interface UserServiceImplementation { /** * Create a new human user * * Create/import a new user with the type human. The newly created user will get a verification email if either the email address is not marked as verified and you did not request the verification to be returned. */ addHumanUser(request: AddHumanUserRequest, context: CallContext & CallContextExt): Promise>; /** * User by ID * * Returns the full user object (human or machine) including the profile, email, etc.. */ getUserByID(request: GetUserByIDRequest, context: CallContext & CallContextExt): Promise>; /** * Search Users * * Search for users. By default, we will return all users of your instance that you have permission to read. Make sure to include a limit and sorting for pagination. */ listUsers(request: ListUsersRequest, context: CallContext & CallContextExt): Promise>; /** * Change the user email * * Change the email address of a user. If the state is set to not verified, a verification code will be generated, which can be either returned or sent to the user by email.. */ setEmail(request: SetEmailRequest, context: CallContext & CallContextExt): Promise>; /** * Resend code to verify user email * * Resend code to verify user email. */ resendEmailCode(request: ResendEmailCodeRequest, context: CallContext & CallContextExt): Promise>; /** * Send code to verify user email * * Send code to verify user email. */ sendEmailCode(request: SendEmailCodeRequest, context: CallContext & CallContextExt): Promise>; /** * Verify the email * * Verify the email with the generated code. */ verifyEmail(request: VerifyEmailRequest, context: CallContext & CallContextExt): Promise>; /** * Set the user phone * * Set the phone number of a user. If the state is set to not verified, a verification code will be generated, which can be either returned or sent to the user by sms.. */ setPhone(request: SetPhoneRequest, context: CallContext & CallContextExt): Promise>; /** * Remove the user phone * * Remove the user phone */ removePhone(request: RemovePhoneRequest, context: CallContext & CallContextExt): Promise>; /** * Resend code to verify user phone * * Resend code to verify user phone. */ resendPhoneCode(request: ResendPhoneCodeRequest, context: CallContext & CallContextExt): Promise>; /** * Verify the phone * * Verify the phone with the generated code.. */ verifyPhone(request: VerifyPhoneRequest, context: CallContext & CallContextExt): Promise>; /** * Update User * * Update all information from a user.. */ updateHumanUser(request: UpdateHumanUserRequest, context: CallContext & CallContextExt): Promise>; /** * Deactivate user * * The state of the user will be changed to 'deactivated'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'deactivated'. Use deactivate user when the user should not be able to use the account anymore, but you still need access to the user data.. */ deactivateUser(request: DeactivateUserRequest, context: CallContext & CallContextExt): Promise>; /** * Reactivate user * * Reactivate a user with the state 'deactivated'. The user will be able to log in again afterward. The endpoint returns an error if the user is not in the state 'deactivated'.. */ reactivateUser(request: ReactivateUserRequest, context: CallContext & CallContextExt): Promise>; /** * Lock user * * The state of the user will be changed to 'locked'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'locked'. Use this endpoint if the user should not be able to log in temporarily because of an event that happened (wrong password, etc.).. */ lockUser(request: LockUserRequest, context: CallContext & CallContextExt): Promise>; /** * Unlock user * * The state of the user will be changed to 'locked'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'locked'. Use this endpoint if the user should not be able to log in temporarily because of an event that happened (wrong password, etc.).. */ unlockUser(request: UnlockUserRequest, context: CallContext & CallContextExt): Promise>; /** * Delete user * * The state of the user will be changed to 'deleted'. The user will not be able to log in anymore. Endpoints requesting this user will return an error 'User not found.. */ deleteUser(request: DeleteUserRequest, context: CallContext & CallContextExt): Promise>; /** * Start the registration of passkey for a user * * Start the registration of a passkey for a user, as a response the public key credential creation options are returned, which are used to verify the passkey.. */ registerPasskey(request: RegisterPasskeyRequest, context: CallContext & CallContextExt): Promise>; /** * Verify a passkey for a user * * Verify the passkey registration with the public key credential.. */ verifyPasskeyRegistration(request: VerifyPasskeyRegistrationRequest, context: CallContext & CallContextExt): Promise>; /** * Create a passkey registration link for a user * * Create a passkey registration link which includes a code and either return it or send it to the user.. */ createPasskeyRegistrationLink(request: CreatePasskeyRegistrationLinkRequest, context: CallContext & CallContextExt): Promise>; /** * List passkeys of an user * * List passkeys of an user */ listPasskeys(request: ListPasskeysRequest, context: CallContext & CallContextExt): Promise>; /** * Remove passkey from a user * * Remove passkey from a user. */ removePasskey(request: RemovePasskeyRequest, context: CallContext & CallContextExt): Promise>; /** * Start the registration of a u2f token for a user * * Start the registration of a u2f token for a user, as a response the public key credential creation options are returned, which are used to verify the u2f token.. */ registerU2F(request: RegisterU2FRequest, context: CallContext & CallContextExt): Promise>; /** * Verify a u2f token for a user * * Verify the u2f token registration with the public key credential.. */ verifyU2FRegistration(request: VerifyU2FRegistrationRequest, context: CallContext & CallContextExt): Promise>; /** * Remove u2f token from a user * * Remove u2f token from a user. */ removeU2F(request: RemoveU2FRequest, context: CallContext & CallContextExt): Promise>; /** * Start the registration of a TOTP generator for a user * * Start the registration of a TOTP generator for a user, as a response a secret returned, which is used to initialize a TOTP app or device.. */ registerTOTP(request: RegisterTOTPRequest, context: CallContext & CallContextExt): Promise>; /** * Verify a TOTP generator for a user * * Verify the TOTP registration with a generated code.. */ verifyTOTPRegistration(request: VerifyTOTPRegistrationRequest, context: CallContext & CallContextExt): Promise>; /** * Remove TOTP generator from a user * * Remove the configured TOTP generator of a user. As only one TOTP generator per user is allowed, the user will not have TOTP as a second factor afterward. */ removeTOTP(request: RemoveTOTPRequest, context: CallContext & CallContextExt): Promise>; /** * Add OTP SMS for a user * * Add a new One-Time Password (OTP) SMS factor to the authenticated user. OTP SMS will enable the user to verify a OTP with the latest verified phone number. The phone number has to be verified to add the second factor.. */ addOTPSMS(request: AddOTPSMSRequest, context: CallContext & CallContextExt): Promise>; /** * Remove One-Time Password (OTP) SMS from a user * * Remove the configured One-Time Password (OTP) SMS factor of a user. As only one OTP SMS per user is allowed, the user will not have OTP SMS as a second factor afterward. */ removeOTPSMS(request: RemoveOTPSMSRequest, context: CallContext & CallContextExt): Promise>; /** * Add OTP Email for a user * * Add a new One-Time Password (OTP) Email factor to the authenticated user. OTP Email will enable the user to verify a OTP with the latest verified email. The email has to be verified to add the second factor.. */ addOTPEmail(request: AddOTPEmailRequest, context: CallContext & CallContextExt): Promise>; /** * Remove One-Time Password (OTP) Email from a user * * Remove the configured One-Time Password (OTP) Email factor of a user. As only one OTP Email per user is allowed, the user will not have OTP Email as a second factor afterward. */ removeOTPEmail(request: RemoveOTPEmailRequest, context: CallContext & CallContextExt): Promise>; /** * Start flow with an identity provider * * Start a flow with an identity provider, for external login, registration or linking.. */ startIdentityProviderIntent(request: StartIdentityProviderIntentRequest, context: CallContext & CallContextExt): Promise>; /** * Retrieve the information returned by the identity provider * * Retrieve the information returned by the identity provider for registration or updating an existing user with new information.. */ retrieveIdentityProviderIntent(request: RetrieveIdentityProviderIntentRequest, context: CallContext & CallContextExt): Promise>; /** * Add link to an identity provider to an user * * Add link to an identity provider to an user.. */ addIDPLink(request: AddIDPLinkRequest, context: CallContext & CallContextExt): Promise>; /** * List links to an identity provider of an user * * List links to an identity provider of an user. */ listIDPLinks(request: ListIDPLinksRequest, context: CallContext & CallContextExt): Promise>; /** * Remove link of an identity provider to an user * * Remove link of an identity provider to an user. */ removeIDPLink(request: RemoveIDPLinkRequest, context: CallContext & CallContextExt): Promise>; /** * Request a code to reset a password * * Request a code to reset a password.. */ passwordReset(request: PasswordResetRequest, context: CallContext & CallContextExt): Promise>; /** * Change password * * Change the password of a user with either a verification code or the current password.. */ setPassword(request: SetPasswordRequest, context: CallContext & CallContextExt): Promise>; /** * List all possible authentication methods of a user * * List all possible authentication methods of a user like password, passwordless, (T)OTP and more.. */ listAuthenticationMethodTypes(request: ListAuthenticationMethodTypesRequest, context: CallContext & CallContextExt): Promise>; listAuthenticationFactors(request: ListAuthenticationFactorsRequest, context: CallContext & CallContextExt): Promise>; /** * Create an invite code for a user * * Create an invite code for a user to initialize their first authentication method (password, passkeys, IdP) depending on the organization's available methods. */ createInviteCode(request: CreateInviteCodeRequest, context: CallContext & CallContextExt): Promise>; /** * Resend an invite code for a user * * Resend an invite code for a user to initialize their first authentication method (password, passkeys, IdP) depending on the organization's available methods. * A resend is only possible if a code has been created previously and sent to the user. If there is no code or it was directly returned, an error will be returned. */ resendInviteCode(request: ResendInviteCodeRequest, context: CallContext & CallContextExt): Promise>; /** * Verify an invite code for a user * * Verify the invite code of a user previously issued. This will set their email to a verified state and * allow the user to set up their first authentication method (password, passkeys, IdP) depending on the organization's available methods. */ verifyInviteCode(request: VerifyInviteCodeRequest, context: CallContext & CallContextExt): Promise>; /** * MFA Init Skipped * * Update the last time the user has skipped MFA initialization. The server timestamp is used. */ humanMFAInitSkipped(request: HumanMFAInitSkippedRequest, context: CallContext & CallContextExt): Promise>; } export interface UserServiceClient { /** * Create a new human user * * Create/import a new user with the type human. The newly created user will get a verification email if either the email address is not marked as verified and you did not request the verification to be returned. */ addHumanUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * User by ID * * Returns the full user object (human or machine) including the profile, email, etc.. */ getUserByID(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Search Users * * Search for users. By default, we will return all users of your instance that you have permission to read. Make sure to include a limit and sorting for pagination. */ listUsers(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Change the user email * * Change the email address of a user. If the state is set to not verified, a verification code will be generated, which can be either returned or sent to the user by email.. */ setEmail(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Resend code to verify user email * * Resend code to verify user email. */ resendEmailCode(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Send code to verify user email * * Send code to verify user email. */ sendEmailCode(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Verify the email * * Verify the email with the generated code. */ verifyEmail(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Set the user phone * * Set the phone number of a user. If the state is set to not verified, a verification code will be generated, which can be either returned or sent to the user by sms.. */ setPhone(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove the user phone * * Remove the user phone */ removePhone(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Resend code to verify user phone * * Resend code to verify user phone. */ resendPhoneCode(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Verify the phone * * Verify the phone with the generated code.. */ verifyPhone(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Update User * * Update all information from a user.. */ updateHumanUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Deactivate user * * The state of the user will be changed to 'deactivated'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'deactivated'. Use deactivate user when the user should not be able to use the account anymore, but you still need access to the user data.. */ deactivateUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Reactivate user * * Reactivate a user with the state 'deactivated'. The user will be able to log in again afterward. The endpoint returns an error if the user is not in the state 'deactivated'.. */ reactivateUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Lock user * * The state of the user will be changed to 'locked'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'locked'. Use this endpoint if the user should not be able to log in temporarily because of an event that happened (wrong password, etc.).. */ lockUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Unlock user * * The state of the user will be changed to 'locked'. The user will not be able to log in anymore. The endpoint returns an error if the user is already in the state 'locked'. Use this endpoint if the user should not be able to log in temporarily because of an event that happened (wrong password, etc.).. */ unlockUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Delete user * * The state of the user will be changed to 'deleted'. The user will not be able to log in anymore. Endpoints requesting this user will return an error 'User not found.. */ deleteUser(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Start the registration of passkey for a user * * Start the registration of a passkey for a user, as a response the public key credential creation options are returned, which are used to verify the passkey.. */ registerPasskey(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Verify a passkey for a user * * Verify the passkey registration with the public key credential.. */ verifyPasskeyRegistration(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Create a passkey registration link for a user * * Create a passkey registration link which includes a code and either return it or send it to the user.. */ createPasskeyRegistrationLink(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * List passkeys of an user * * List passkeys of an user */ listPasskeys(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove passkey from a user * * Remove passkey from a user. */ removePasskey(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Start the registration of a u2f token for a user * * Start the registration of a u2f token for a user, as a response the public key credential creation options are returned, which are used to verify the u2f token.. */ registerU2F(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Verify a u2f token for a user * * Verify the u2f token registration with the public key credential.. */ verifyU2FRegistration(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove u2f token from a user * * Remove u2f token from a user. */ removeU2F(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Start the registration of a TOTP generator for a user * * Start the registration of a TOTP generator for a user, as a response a secret returned, which is used to initialize a TOTP app or device.. */ registerTOTP(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Verify a TOTP generator for a user * * Verify the TOTP registration with a generated code.. */ verifyTOTPRegistration(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove TOTP generator from a user * * Remove the configured TOTP generator of a user. As only one TOTP generator per user is allowed, the user will not have TOTP as a second factor afterward. */ removeTOTP(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Add OTP SMS for a user * * Add a new One-Time Password (OTP) SMS factor to the authenticated user. OTP SMS will enable the user to verify a OTP with the latest verified phone number. The phone number has to be verified to add the second factor.. */ addOTPSMS(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove One-Time Password (OTP) SMS from a user * * Remove the configured One-Time Password (OTP) SMS factor of a user. As only one OTP SMS per user is allowed, the user will not have OTP SMS as a second factor afterward. */ removeOTPSMS(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Add OTP Email for a user * * Add a new One-Time Password (OTP) Email factor to the authenticated user. OTP Email will enable the user to verify a OTP with the latest verified email. The email has to be verified to add the second factor.. */ addOTPEmail(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove One-Time Password (OTP) Email from a user * * Remove the configured One-Time Password (OTP) Email factor of a user. As only one OTP Email per user is allowed, the user will not have OTP Email as a second factor afterward. */ removeOTPEmail(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Start flow with an identity provider * * Start a flow with an identity provider, for external login, registration or linking.. */ startIdentityProviderIntent(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Retrieve the information returned by the identity provider * * Retrieve the information returned by the identity provider for registration or updating an existing user with new information.. */ retrieveIdentityProviderIntent(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Add link to an identity provider to an user * * Add link to an identity provider to an user.. */ addIDPLink(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * List links to an identity provider of an user * * List links to an identity provider of an user. */ listIDPLinks(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Remove link of an identity provider to an user * * Remove link of an identity provider to an user. */ removeIDPLink(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Request a code to reset a password * * Request a code to reset a password.. */ passwordReset(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Change password * * Change the password of a user with either a verification code or the current password.. */ setPassword(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * List all possible authentication methods of a user * * List all possible authentication methods of a user like password, passwordless, (T)OTP and more.. */ listAuthenticationMethodTypes(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; listAuthenticationFactors(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Create an invite code for a user * * Create an invite code for a user to initialize their first authentication method (password, passkeys, IdP) depending on the organization's available methods. */ createInviteCode(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Resend an invite code for a user * * Resend an invite code for a user to initialize their first authentication method (password, passkeys, IdP) depending on the organization's available methods. * A resend is only possible if a code has been created previously and sent to the user. If there is no code or it was directly returned, an error will be returned. */ resendInviteCode(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * Verify an invite code for a user * * Verify the invite code of a user previously issued. This will set their email to a verified state and * allow the user to set up their first authentication method (password, passkeys, IdP) depending on the organization's available methods. */ verifyInviteCode(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; /** * MFA Init Skipped * * Update the last time the user has skipped MFA initialization. The server timestamp is used. */ humanMFAInitSkipped(request: DeepPartial, options?: CallOptions & CallOptionsExt): Promise; } type Builtin = Date | Function | Uint8Array | string | number | boolean | undefined; export type DeepPartial = T extends Builtin ? T : T extends Long ? string | number | Long : T extends globalThis.Array ? globalThis.Array> : T extends ReadonlyArray ? ReadonlyArray> : T extends {} ? { [K in keyof T]?: DeepPartial; } : Partial; export interface MessageFns { encode(message: T, writer?: BinaryWriter): BinaryWriter; decode(input: BinaryReader | Uint8Array, length?: number): T; fromJSON(object: any): T; toJSON(message: T): unknown; create(base?: DeepPartial): T; fromPartial(object: DeepPartial): T; } export {};