import { extendedIdTokenClaims } from '@logto/core-kit'; import { type Nullable, type Optional } from '@silverhand/essentials'; import type { ZodType } from 'zod'; import { z } from 'zod'; import { type AccessTokenJwtCustomizer, type ClientCredentialsJwtCustomizer } from './jwt-customizer.js'; export * from './oidc-provider.js'; export * from './jwt-customizer.js'; /** * Logto OIDC signing key types, used mainly in REST API routes. */ export declare enum LogtoOidcConfigKeyType { PrivateKeys = "private-keys", CookieKeys = "cookie-keys" } /** * Value maps to config key names in `logto_configs` table. Used mainly in DB SQL related scenarios. */ export declare enum LogtoOidcConfigKey { PrivateKeys = "oidc.privateKeys", CookieKeys = "oidc.cookieKeys", Session = "oidc.session" } /** * Logto supported signing key algorithms for OIDC private keys that sign JWT tokens. */ export declare enum SupportedSigningKeyAlgorithm { RSA = "RSA", EC = "EC" } export declare const oidcConfigKeyGuard: z.ZodObject<{ id: z.ZodString; value: z.ZodString; createdAt: z.ZodNumber; }, "strip", z.ZodTypeAny, { value: string; id: string; createdAt: number; }, { value: string; id: string; createdAt: number; }>; export type OidcConfigKey = z.infer; export declare const oidcSessionConfigGuard: z.ZodObject<{ ttl: z.ZodOptional; }, "strip", z.ZodTypeAny, { ttl?: number | undefined; }, { ttl?: number | undefined; }>; export type OidcSessionConfig = z.infer; export type LogtoOidcConfigType = { [LogtoOidcConfigKey.PrivateKeys]: OidcConfigKey[]; [LogtoOidcConfigKey.CookieKeys]: OidcConfigKey[]; [LogtoOidcConfigKey.Session]: OidcSessionConfig; }; export declare const logtoOidcConfigGuard: Readonly<{ [key in LogtoOidcConfigKey]: ZodType>>; }>; export declare enum LogtoJwtTokenKey { AccessToken = "jwt.accessToken", ClientCredentials = "jwt.clientCredentials" } export type JwtCustomizerType = { [LogtoJwtTokenKey.AccessToken]: AccessTokenJwtCustomizer; [LogtoJwtTokenKey.ClientCredentials]: ClientCredentialsJwtCustomizer; }; export declare const jwtCustomizerConfigGuard: Readonly<{ [key in LogtoJwtTokenKey]: ZodType; }>; export declare const jwtCustomizerConfigsGuard: z.ZodDiscriminatedUnion<"key", [z.ZodObject<{ key: z.ZodLiteral; value: z.ZodObject<{ script: z.ZodString; environmentVariables: z.ZodOptional>; } & { tokenSample: z.ZodOptional; expiresWithSession: z.ZodOptional>; grantId: z.ZodOptional; gty: z.ZodOptional; sessionUid: z.ZodOptional>; sid: z.ZodOptional>; kind: z.ZodOptional>; jti: z.ZodOptional; aud: z.ZodOptional]>>; scope: z.ZodOptional>; clientId: z.ZodOptional>; }, "strict", z.ZodTypeAny, { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; }, { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; }>>; contextSample: z.ZodOptional>; id: z.ZodOptional>; applicationId: z.ZodOptional>; username: z.ZodOptional>; createdAt: z.ZodOptional>; profile: z.ZodOptional; }>, z.ZodTypeDef, Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }>>>; avatar: z.ZodOptional>; customData: z.ZodOptional>; identities: z.ZodOptional | undefined; }>, z.ZodTypeDef, Record | undefined; }>>>; updatedAt: z.ZodOptional>; lastSignInAt: z.ZodOptional>; primaryEmail: z.ZodOptional>; primaryPhone: z.ZodOptional>; isSuspended: z.ZodOptional>; hasPassword: z.ZodOptional; ssoIdentities: z.ZodOptional; id: ZodType; userId: ZodType; issuer: ZodType; identityId: ZodType; detail: ZodType; createdAt: ZodType; updatedAt: ZodType; ssoConnectorId: ZodType; }, "issuer" | "identityId" | "detail">, "strip", z.ZodTypeAny, { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }, { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }>, "many">>; mfaVerificationFactors: z.ZodOptional, "many">>; roles: z.ZodOptional; id: ZodType; name: ZodType; description: ZodType; type: ZodType; isDefault: ZodType; }, "name" | "id" | "description"> & { scopes: z.ZodArray; id: ZodType; resourceId: ZodType; name: ZodType; description: ZodType; createdAt: ZodType; } & { resource: import("../../index.js").Guard; }, "name" | "id" | "description" | "resource" | "resourceId">, "strip", z.ZodTypeAny, { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }, { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }>, "many">; }, "strip", z.ZodTypeAny, { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }, { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }>, "many">>; organizations: z.ZodOptional; id: ZodType; name: ZodType; description: ZodType; customData: ZodType; isMfaRequired: ZodType; color: ZodType, z.ZodTypeDef, Partial<{ primaryColor: string; isDarkModeEnabled: boolean; darkPrimaryColor: string; }>>; branding: ZodType<{ logoUrl?: string | undefined; darkLogoUrl?: string | undefined; favicon?: string | undefined; darkFavicon?: string | undefined; }, z.ZodTypeDef, { logoUrl?: string | undefined; darkLogoUrl?: string | undefined; favicon?: string | undefined; darkFavicon?: string | undefined; }>; customCss: ZodType; createdAt: ZodType; }, "name" | "id" | "description">, "strip", z.ZodTypeAny, { name: string; id: string; description: string | null; }, { name: string; id: string; description: string | null; }>, "many">>; organizationRoles: z.ZodOptional, "many">>; }, "strip", z.ZodTypeAny, { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }, { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }>; grant: z.ZodOptional>; subjectTokenContext: z.ZodOptional>>; }, "strip", z.ZodTypeAny, { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; }, { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; }>>; interaction: z.ZodOptional>; userId: z.ZodOptional; verificationRecords: z.ZodOptional; identifier: z.ZodObject<{ type: z.ZodUnion<[z.ZodNativeEnum, z.ZodNativeEnum]>; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }, { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }>; verified: z.ZodBoolean; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; }, { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier.Email; }, { value: string; type: import("../../index.js").SignInIdentifier.Email; }>; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier.Phone; }, { value: string; type: import("../../index.js").SignInIdentifier.Phone; }>; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier.Email; }, { value: string; type: import("../../index.js").SignInIdentifier.Email; }>; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject<{ id: z.ZodString; templateType: z.ZodNativeEnum; verified: z.ZodBoolean; } & { type: z.ZodLiteral; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier.Phone; }, { value: string; type: import("../../index.js").SignInIdentifier.Phone; }>; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }, { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; }>, z.ZodObject; socialUserInfo: z.ZodOptional; phone: z.ZodOptional; name: z.ZodOptional; avatar: z.ZodOptional; rawData: z.ZodOptional>; }, "strip", z.ZodTypeAny, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; }, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; }>>; encryptedTokenSet: z.ZodOptional; expiresAt: z.ZodOptional; tokenType: z.ZodOptional; hasRefreshToken: z.ZodBoolean; }, "strip", z.ZodTypeAny, { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }, { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }>; }, "strip", z.ZodTypeAny, { metadata: { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }; encryptedTokenSetBase64: string; }, { metadata: { hasRefreshToken: boolean; scope?: string | undefined; expiresAt?: number | undefined; tokenType?: string | undefined; }; encryptedTokenSetBase64: string; }>>; connectorSession: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, "strip", z.ZodUnknown, z.objectOutputType<{ nonce: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, z.ZodUnknown, "strip">, z.objectInputType<{ nonce: z.ZodOptional; redirectUri: z.ZodOptional; connectorId: z.ZodOptional; connectorFactoryId: z.ZodOptional; jti: z.ZodOptional; state: z.ZodOptional; }, z.ZodUnknown, "strip">>>; }, "encryptedTokenSet" | "connectorSession">, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; }, { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; }>, z.ZodObject<{ type: z.ZodLiteral; id: z.ZodString; issuer: z.ZodOptional; connectorId: z.ZodString; } & { enterpriseSsoUserInfo: z.ZodOptional; phone: z.ZodOptional; name: z.ZodOptional; avatar: z.ZodOptional; rawData: z.ZodOptional>; }, "strip", ZodType, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; }, { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; }>>; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; }, { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; }>, z.ZodObject; userId: z.ZodString; secret: z.ZodOptional; verified: z.ZodBoolean; }, "secret">, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; }, { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; }>, z.ZodObject; userId: z.ZodString; code: z.ZodOptional; backupCodes: z.ZodOptional>; }, "backupCodes">, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; }, { type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; }>, z.ZodObject; registrationRpId: z.ZodOptional; authenticationChallenge: z.ZodOptional; registrationInfo: z.ZodOptional; rpId: z.ZodString; credentialId: z.ZodString; publicKey: z.ZodString; transports: z.ZodArray, "many">; counter: z.ZodNumber; agent: z.ZodString; name: z.ZodOptional; }, "strip", z.ZodTypeAny, { type: import("../../index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }, { type: import("../../index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }>>; } & { type: z.ZodLiteral; userId: z.ZodString; }, "registrationChallenge" | "authenticationChallenge" | "registrationInfo">, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; }, { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; }>, z.ZodObject; registrationRpId: z.ZodOptional; authenticationChallenge: z.ZodOptional; registrationInfo: z.ZodOptional; rpId: z.ZodString; credentialId: z.ZodString; publicKey: z.ZodString; transports: z.ZodArray, "many">; counter: z.ZodNumber; agent: z.ZodString; name: z.ZodOptional; }, "strip", z.ZodTypeAny, { type: import("../../index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }, { type: import("../../index.js").MfaFactor.WebAuthn; rpId: string; credentialId: string; publicKey: string; transports: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[]; counter: number; agent: string; name?: string | undefined; }>>; } & { type: z.ZodLiteral; userId: z.ZodOptional; authenticationRpId: z.ZodOptional; }, "registrationChallenge" | "authenticationChallenge" | "registrationInfo" | "authenticationRpId">, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; }, { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; }>, z.ZodObject<{ id: z.ZodString; type: z.ZodLiteral; verified: z.ZodBoolean; identifier: z.ZodObject<{ type: z.ZodLiteral; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier.Email; }, { value: string; type: import("../../index.js").SignInIdentifier.Email; }>; oneTimeTokenContext: z.ZodOptional>; }, "strip", z.ZodTypeAny, { jitOrganizationIds?: string[] | undefined; }, { jitOrganizationIds?: string[] | undefined; }>>; }, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; }, { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; }>, z.ZodObject; identifier: z.ZodObject<{ type: z.ZodNativeEnum; value: z.ZodString; }, "strip", z.ZodTypeAny, { value: string; type: import("../../index.js").SignInIdentifier; }, { value: string; type: import("../../index.js").SignInIdentifier; }>; passwordEncrypted: z.ZodOptional; passwordEncryptionMethod: z.ZodOptional>; }, "passwordEncrypted" | "passwordEncryptionMethod">, "strip", z.ZodTypeAny, { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; }, { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; }>]>, "many">>; signInContext: z.ZodOptional>>; }, "strip", z.ZodTypeAny, { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; }, { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; }>>; application: z.ZodOptional>; name: z.ZodOptional>; id: z.ZodOptional>; tenantId: z.ZodOptional>; createdAt: z.ZodOptional>; customData: z.ZodOptional>; description: z.ZodOptional>; oidcClientMetadata: z.ZodOptional>; customClientMetadata: z.ZodOptional>; protectedAppMetadata: z.ZodOptional>; isThirdParty: z.ZodOptional>; }, "strip", z.ZodTypeAny, { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }, { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }>>; }, "strip", z.ZodTypeAny, { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; }, { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; }>>; }, "strict", z.ZodTypeAny, { script: string; environmentVariables?: Record | undefined; contextSample?: { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; } | undefined; tokenSample?: { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; } | undefined; }, { script: string; environmentVariables?: Record | undefined; contextSample?: { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; } | undefined; tokenSample?: { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; } | undefined; }>; }, "strip", z.ZodTypeAny, { value: { script: string; environmentVariables?: Record | undefined; contextSample?: { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; } | undefined; tokenSample?: { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; } | undefined; }; key: LogtoJwtTokenKey.AccessToken; }, { value: { script: string; environmentVariables?: Record | undefined; contextSample?: { user: { name?: string | null | undefined; id?: string | undefined; applicationId?: string | null | undefined; username?: string | null | undefined; createdAt?: number | undefined; profile?: Partial<{ familyName: string; givenName: string; middleName: string; nickname: string; preferredUsername: string; profile: string; website: string; gender: string; birthdate: string; zoneinfo: string; locale: string; address: Partial<{ formatted: string; streetAddress: string; locality: string; region: string; postalCode: string; country: string; }>; }> | undefined; avatar?: string | null | undefined; customData?: import("@withtyped/server").JsonObject | undefined; identities?: Record | undefined; }> | undefined; roles?: { name: string; id: string; description: string; scopes: { name: string; id: string; description: string | null; resource: import("../../index.js").Resource; resourceId: string; }[]; }[] | undefined; organizations?: { name: string; id: string; description: string | null; }[] | undefined; updatedAt?: number | undefined; lastSignInAt?: number | null | undefined; primaryEmail?: string | null | undefined; primaryPhone?: string | null | undefined; isSuspended?: boolean | undefined; hasPassword?: boolean | undefined; ssoIdentities?: { issuer: string; identityId: string; detail: import("@withtyped/server").JsonObject; }[] | undefined; mfaVerificationFactors?: import("../../index.js").MfaFactor[] | undefined; organizationRoles?: { organizationId: string; roleId: string; roleName: string; }[] | undefined; }; application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; grant?: { type?: import("../oidc-config.js").GrantType.TokenExchange | undefined; subjectTokenContext?: Record | undefined; } | undefined; interaction?: { userId?: string | undefined; interactionEvent?: import("../interactions.js").InteractionEvent | undefined; verificationRecords?: ({ type: import("../index.js").VerificationType.BackupCode; id: string; userId: string; code?: string | undefined; } | { type: import("../index.js").VerificationType.EmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.PhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaEmailVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.MfaPhoneVerificationCode; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Phone; }; templateType: import("@logto/connector-kit").TemplateType; verified: boolean; } | { type: import("../index.js").VerificationType.NewPasswordIdentity; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier; }; } | { type: import("../index.js").VerificationType.OneTimeToken; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier.Email; }; verified: boolean; oneTimeTokenContext?: { jitOrganizationIds?: string[] | undefined; } | undefined; } | { type: import("../index.js").VerificationType.Password; id: string; identifier: { value: string; type: import("../../index.js").SignInIdentifier | import("../../index.js").AdditionalIdentifier; }; verified: boolean; } | { type: import("../index.js").VerificationType.Social; id: string; connectorId: string; socialUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.TOTP; id: string; userId: string; verified: boolean; } | { type: import("../index.js").VerificationType.EnterpriseSso; id: string; connectorId: string; issuer?: string | undefined; enterpriseSsoUserInfo?: { id: string; name?: string | undefined; email?: string | undefined; phone?: string | undefined; avatar?: string | undefined; rawData?: import("@withtyped/server").Json | undefined; } | undefined; } | { type: import("../index.js").VerificationType.WebAuthn; id: string; userId: string; verified: boolean; registrationRpId?: string | undefined; } | { type: import("../index.js").VerificationType.SignInPasskey; id: string; verified: boolean; userId?: string | undefined; registrationRpId?: string | undefined; })[] | undefined; signInContext?: Record | undefined; } | undefined; } | undefined; tokenSample?: { grantId?: string | undefined; sid?: string | undefined; jti?: string | undefined; kind?: "AccessToken" | undefined; accountId?: string | undefined; scope?: string | undefined; sessionUid?: string | undefined; clientId?: string | undefined; expiresWithSession?: boolean | undefined; gty?: string | undefined; aud?: string | string[] | undefined; } | undefined; }; key: LogtoJwtTokenKey.AccessToken; }>, z.ZodObject<{ key: z.ZodLiteral; value: z.ZodObject<{ script: z.ZodString; environmentVariables: z.ZodOptional>; } & { tokenSample: z.ZodOptional>; jti: z.ZodOptional; aud: z.ZodOptional]>>; scope: z.ZodOptional>; clientId: z.ZodOptional>; }, "strict", z.ZodTypeAny, { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; }, { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; }>>; contextSample: z.ZodOptional>; name: z.ZodOptional>; id: z.ZodOptional>; tenantId: z.ZodOptional>; createdAt: z.ZodOptional>; customData: z.ZodOptional>; description: z.ZodOptional>; oidcClientMetadata: z.ZodOptional>; customClientMetadata: z.ZodOptional>; protectedAppMetadata: z.ZodOptional>; isThirdParty: z.ZodOptional>; }, "strip", z.ZodTypeAny, { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }, { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; }>>; }, "strip", z.ZodTypeAny, { application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; }, { application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; }>>; }, "strict", z.ZodTypeAny, { script: string; environmentVariables?: Record | undefined; contextSample?: { application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; } | undefined; tokenSample?: { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; } | undefined; }, { script: string; environmentVariables?: Record | undefined; contextSample?: { application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; } | undefined; tokenSample?: { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; } | undefined; }>; }, "strip", z.ZodTypeAny, { value: { script: string; environmentVariables?: Record | undefined; contextSample?: { application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; } | undefined; tokenSample?: { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; } | undefined; }; key: LogtoJwtTokenKey.ClientCredentials; }, { value: { script: string; environmentVariables?: Record | undefined; contextSample?: { application?: { type?: import("../../index.js").ApplicationType | undefined; name?: string | undefined; id?: string | undefined; tenantId?: string | undefined; createdAt?: number | undefined; customData?: import("@withtyped/server").JsonObject | undefined; description?: string | null | undefined; oidcClientMetadata?: import("../../index.js").OidcClientMetadata | undefined; customClientMetadata?: { corsAllowedOrigins?: string[] | undefined; idTokenTtl?: number | undefined; refreshTokenTtl?: number | undefined; refreshTokenTtlInDays?: number | undefined; tenantId?: string | undefined; alwaysIssueRefreshToken?: boolean | undefined; rotateRefreshToken?: boolean | undefined; allowTokenExchange?: boolean | undefined; isDeviceFlow?: boolean | undefined; maxAllowedGrants?: number | undefined; } | undefined; protectedAppMetadata?: { host: string; origin: string; sessionDuration: number; pageRules: { path: string; }[]; customDomains?: { status: import("../../index.js").DomainStatus; domain: string; errorMessage: string | null; dnsRecords: { value: string; type: string; name: string; }[]; cloudflareData: { status: string; id: string; ssl: { status: string; validation_errors?: { message: string; }[] | undefined; }; verification_errors?: string[] | undefined; } | null; }[] | undefined; } | null | undefined; isThirdParty?: boolean | undefined; } | undefined; } | undefined; tokenSample?: { jti?: string | undefined; kind?: "ClientCredentials" | undefined; scope?: string | undefined; clientId?: string | undefined; aud?: string | string[] | undefined; } | undefined; }; key: LogtoJwtTokenKey.ClientCredentials; }>]>; export type JwtCustomizerConfigs = z.infer; export declare const adminConsoleDataGuard: z.ZodObject<{ signInExperienceCustomized: z.ZodBoolean; organizationCreated: z.ZodBoolean; developmentTenantMigrationNotification: z.ZodOptional; }, "strip", z.ZodTypeAny, { isPaidTenant: boolean; tag: string; readAt?: number | undefined; }, { isPaidTenant: boolean; tag: string; readAt?: number | undefined; }>>; checkedChargeNotification: z.ZodOptional; apiResource: z.ZodOptional; machineToMachineApp: z.ZodOptional; tenantMember: z.ZodOptional; }, "strip", z.ZodTypeAny, { token?: boolean | undefined; apiResource?: boolean | undefined; machineToMachineApp?: boolean | undefined; tenantMember?: boolean | undefined; }, { token?: boolean | undefined; apiResource?: boolean | undefined; machineToMachineApp?: boolean | undefined; tenantMember?: boolean | undefined; }>>; }, "strip", z.ZodTypeAny, { signInExperienceCustomized: boolean; organizationCreated: boolean; developmentTenantMigrationNotification?: { isPaidTenant: boolean; tag: string; readAt?: number | undefined; } | undefined; checkedChargeNotification?: { token?: boolean | undefined; apiResource?: boolean | undefined; machineToMachineApp?: boolean | undefined; tenantMember?: boolean | undefined; } | undefined; }, { signInExperienceCustomized: boolean; organizationCreated: boolean; developmentTenantMigrationNotification?: { isPaidTenant: boolean; tag: string; readAt?: number | undefined; } | undefined; checkedChargeNotification?: { token?: boolean | undefined; apiResource?: boolean | undefined; machineToMachineApp?: boolean | undefined; tenantMember?: boolean | undefined; } | undefined; }>; export type AdminConsoleData = z.infer; export declare const cloudConnectionDataGuard: z.ZodObject<{ appId: z.ZodString; appSecret: z.ZodString; resource: z.ZodString; }, "strip", z.ZodTypeAny, { resource: string; appId: string; appSecret: string; }, { resource: string; appId: string; appSecret: string; }>; export type CloudConnectionData = z.infer; export declare const extendedIdTokenClaimsGuard: z.ZodEnum<["custom_data", "identities", "sso_identities", "roles", "organizations", "organization_data", "organization_roles"]>; export type ExtendedIdTokenClaim = (typeof extendedIdTokenClaims)[number]; export declare const idTokenConfigGuard: z.ZodObject<{ enabledExtendedClaims: z.ZodOptional, "many">>; }, "strip", z.ZodTypeAny, { enabledExtendedClaims?: ("custom_data" | "identities" | "sso_identities" | "roles" | "organizations" | "organization_data" | "organization_roles")[] | undefined; }, { enabledExtendedClaims?: ("custom_data" | "identities" | "sso_identities" | "roles" | "organizations" | "organization_data" | "organization_roles")[] | undefined; }>; export type IdTokenConfig = z.infer; export declare enum LogtoTenantConfigKey { AdminConsole = "adminConsole", CloudConnection = "cloudConnection", /** The URL to redirect when session not found in Sign-in Experience. */ SessionNotFoundRedirectUrl = "sessionNotFoundRedirectUrl", /** ID token configuration for extended claims. */ IdToken = "idToken" } export type LogtoTenantConfigType = { [LogtoTenantConfigKey.AdminConsole]: AdminConsoleData; [LogtoTenantConfigKey.CloudConnection]: CloudConnectionData; [LogtoTenantConfigKey.SessionNotFoundRedirectUrl]: { url: string; }; [LogtoTenantConfigKey.IdToken]: IdTokenConfig; }; export declare const logtoTenantConfigGuard: Readonly<{ [key in LogtoTenantConfigKey]: ZodType; }>; export type LogtoConfigKey = LogtoOidcConfigKey | LogtoJwtTokenKey | LogtoTenantConfigKey; export type LogtoConfigType = LogtoOidcConfigType | JwtCustomizerType | LogtoTenantConfigType; export type LogtoConfigGuard = typeof logtoOidcConfigGuard & typeof jwtCustomizerConfigGuard & typeof logtoTenantConfigGuard; export declare const logtoConfigKeys: readonly LogtoConfigKey[]; export declare const logtoConfigGuards: LogtoConfigGuard; export declare const oidcConfigKeysResponseGuard: z.ZodObject & { signingKeyAlgorithm: z.ZodOptional>; }, "strip", z.ZodTypeAny, { id: string; createdAt: number; signingKeyAlgorithm?: SupportedSigningKeyAlgorithm | undefined; }, { id: string; createdAt: number; signingKeyAlgorithm?: SupportedSigningKeyAlgorithm | undefined; }>; export type OidcConfigKeysResponse = z.infer;