Merge branch 'dev' into clients-user

2026-03-02 16:56:39 +00:00 · 2025-11-17 11:28:47 -05:00
parent 1261ad3a00 33331fd3c8
commit 97312343e4
251 changed files with 3872 additions and 1666 deletions
--- a/server/routers/idp/createIdpOrgPolicy.ts
+++ b/server/routers/idp/createIdpOrgPolicy.ts
@@ -11,19 +11,15 @@ import config from "@server/lib/config";
 import { eq, and } from "drizzle-orm";
 import { idp, idpOrg } from "@server/db";

-const paramsSchema = z
-    .object({
-        idpId: z.coerce.number(),
+const paramsSchema = z.strictObject({
+        idpId: z.coerce.number<number>(),
        orgId: z.string()
-    })
-    .strict();
+    });

-const bodySchema = z
-    .object({
+const bodySchema = z.strictObject({
        roleMapping: z.string().optional(),
        orgMapping: z.string().optional()
-    })
-    .strict();
+    });

 export type CreateIdpOrgPolicyResponse = {};

--- a/server/routers/idp/createOidcIdp.ts
+++ b/server/routers/idp/createOidcIdp.ts
@@ -12,22 +12,20 @@ import { generateOidcRedirectUrl } from "@server/lib/idp/generateRedirectUrl";
 import { encrypt } from "@server/lib/crypto";
 import config from "@server/lib/config";

-const paramsSchema = z.object({}).strict();
+const paramsSchema = z.strictObject({});

-const bodySchema = z
-    .object({
+const bodySchema = z.strictObject({
        name: z.string().nonempty(),
        clientId: z.string().nonempty(),
        clientSecret: z.string().nonempty(),
-        authUrl: z.string().url(),
-        tokenUrl: z.string().url(),
+        authUrl: z.url(),
+        tokenUrl: z.url(),
        identifierPath: z.string().nonempty(),
        emailPath: z.string().optional(),
        namePath: z.string().optional(),
        scopes: z.string().nonempty(),
        autoProvision: z.boolean().optional()
-    })
-    .strict();
+    });

 export type CreateIdpResponse = {
    idpId: number;
--- a/server/routers/idp/deleteIdp.ts
+++ b/server/routers/idp/deleteIdp.ts
@@ -13,7 +13,7 @@ import { OpenAPITags, registry } from "@server/openApi";
 const paramsSchema = z
    .object({
        orgId: z.string().optional(), // Optional; used with org idp in saas
-        idpId: z.coerce.number()
+        idpId: z.coerce.number<number>()
    })
    .strict();

--- a/server/routers/idp/deleteIdpOrgPolicy.ts
+++ b/server/routers/idp/deleteIdpOrgPolicy.ts
@@ -10,12 +10,10 @@ import { idp, idpOrg } from "@server/db";
 import { eq, and } from "drizzle-orm";
 import { OpenAPITags, registry } from "@server/openApi";

-const paramsSchema = z
-    .object({
-        idpId: z.coerce.number(),
+const paramsSchema = z.strictObject({
+        idpId: z.coerce.number<number>(),
        orgId: z.string()
-    })
-    .strict();
+    });

 registry.registerPath({
    method: "delete",
--- a/server/routers/idp/generateOidcUrl.ts
+++ b/server/routers/idp/generateOidcUrl.ts
@@ -19,15 +19,13 @@ import { TierId } from "@server/lib/billing/tiers";

 const paramsSchema = z
    .object({
-        idpId: z.coerce.number()
+        idpId: z.coerce.number<number>()
    })
    .strict();

-const bodySchema = z
-    .object({
+const bodySchema = z.strictObject({
        redirectUrl: z.string()
-    })
-    .strict();
+    });

 const querySchema = z.object({
    orgId: z.string().optional() // check what actuall calls it
--- a/server/routers/idp/getIdp.ts
+++ b/server/routers/idp/getIdp.ts
@@ -14,7 +14,7 @@ import { decrypt } from "@server/lib/crypto";

 const paramsSchema = z
    .object({
-        idpId: z.coerce.number()
+        idpId: z.coerce.number<number>()
    })
    .strict();

--- a/server/routers/idp/listIdpOrgPolicies.ts
+++ b/server/routers/idp/listIdpOrgPolicies.ts
@@ -11,25 +11,23 @@ import { fromError } from "zod-validation-error";
 import { OpenAPITags, registry } from "@server/openApi";

 const paramsSchema = z.object({
-    idpId: z.coerce.number()
+    idpId: z.coerce.number<number>()
 });

-const querySchema = z
-    .object({
+const querySchema = z.strictObject({
        limit: z
            .string()
            .optional()
            .default("1000")
            .transform(Number)
-            .pipe(z.number().int().nonnegative()),
+            .pipe(z.int().nonnegative()),
        offset: z
            .string()
            .optional()
            .default("0")
            .transform(Number)
-            .pipe(z.number().int().nonnegative())
-    })
-    .strict();
+            .pipe(z.int().nonnegative())
+    });

 async function query(idpId: number, limit: number, offset: number) {
    const res = await db
--- a/server/routers/idp/listIdps.ts
+++ b/server/routers/idp/listIdps.ts
@@ -10,22 +10,20 @@ import logger from "@server/logger";
 import { fromError } from "zod-validation-error";
 import { OpenAPITags, registry } from "@server/openApi";

-const querySchema = z
-    .object({
+const querySchema = z.strictObject({
        limit: z
            .string()
            .optional()
            .default("1000")
            .transform(Number)
-            .pipe(z.number().int().nonnegative()),
+            .pipe(z.int().nonnegative()),
        offset: z
            .string()
            .optional()
            .default("0")
            .transform(Number)
-            .pipe(z.number().int().nonnegative())
-    })
-    .strict();
+            .pipe(z.int().nonnegative())
+    });

 async function query(limit: number, offset: number) {
    const res = await db
--- a/server/routers/idp/updateIdpOrgPolicy.ts
+++ b/server/routers/idp/updateIdpOrgPolicy.ts
@@ -10,19 +10,15 @@ import { OpenAPITags, registry } from "@server/openApi";
 import { eq, and } from "drizzle-orm";
 import { idp, idpOrg } from "@server/db";

-const paramsSchema = z
-    .object({
-        idpId: z.coerce.number(),
+const paramsSchema = z.strictObject({
+        idpId: z.coerce.number<number>(),
        orgId: z.string()
-    })
-    .strict();
+    });

-const bodySchema = z
-    .object({
+const bodySchema = z.strictObject({
        roleMapping: z.string().optional(),
        orgMapping: z.string().optional()
-    })
-    .strict();
+    });

 export type UpdateIdpOrgPolicyResponse = {};

--- a/server/routers/idp/updateOidcIdp.ts
+++ b/server/routers/idp/updateOidcIdp.ts
@@ -14,12 +14,11 @@ import config from "@server/lib/config";

 const paramsSchema = z
    .object({
-        idpId: z.coerce.number()
+        idpId: z.coerce.number<number>()
    })
    .strict();

-const bodySchema = z
-    .object({
+const bodySchema = z.strictObject({
        name: z.string().optional(),
        clientId: z.string().optional(),
        clientSecret: z.string().optional(),
@@ -32,8 +31,7 @@ const bodySchema = z
        autoProvision: z.boolean().optional(),
        defaultRoleMapping: z.string().optional(),
        defaultOrgMapping: z.string().optional()
-    })
-    .strict();
+    });

 export type UpdateIdpResponse = {
    idpId: number;
--- a/server/routers/idp/validateOidcCallback.ts
+++ b/server/routers/idp/validateOidcCallback.ts
@@ -41,7 +41,7 @@ const ensureTrailingSlash = (url: string): string => {

 const paramsSchema = z
    .object({
-        idpId: z.coerce.number()
+        idpId: z.coerce.number<number>()
    })
    .strict();

@@ -52,7 +52,7 @@ const bodySchema = z.object({
 });

 const querySchema = z.object({
-    loginPageId: z.coerce.number().optional()
+    loginPageId: z.coerce.number<number>().optional()
 });

 export type ValidateOidcUrlCallbackResponse = {