use chrono::{DateTime, Utc};
use serde::{Deserialize, Serialize};
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct OAuthScopeDefinition {
pub scope: String,
pub display_name: String,
pub description: String,
pub archived: bool,
#[serde(default)]
pub category: String,
#[serde(skip_serializing_if = "Option::is_none")]
pub organization_permission: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub workspace_permission: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct OAuthApp {
pub id: String,
pub slug: String,
pub name: String,
#[serde(skip_serializing_if = "Option::is_none")]
pub description: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub logo_url: Option<String>,
pub fqdn: String,
#[serde(default)]
pub supported_scopes: Vec<String>,
#[serde(default)]
pub scope_definitions: Vec<OAuthScopeDefinition>,
pub allow_dynamic_client_registration: bool,
pub is_active: bool,
pub created_at: DateTime<Utc>,
pub updated_at: DateTime<Utc>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct OAuthDomainVerificationResponse {
pub domain: String,
pub cname_target: String,
pub verified: bool,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct CreateOAuthAppRequest {
pub slug: String,
pub name: String,
#[serde(skip_serializing_if = "Option::is_none")]
pub description: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub fqdn: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub supported_scopes: Option<Vec<String>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub scope_definitions: Option<Vec<OAuthScopeDefinition>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub allow_dynamic_client_registration: Option<bool>,
#[serde(skip)]
pub logo_file: Option<Vec<u8>>,
#[serde(skip)]
pub logo_filename: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct UpdateOAuthAppRequest {
#[serde(skip_serializing_if = "Option::is_none")]
pub name: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub description: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub supported_scopes: Option<Vec<String>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub scope_definitions: Option<Vec<OAuthScopeDefinition>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub allow_dynamic_client_registration: Option<bool>,
#[serde(skip_serializing_if = "Option::is_none")]
pub is_active: Option<bool>,
}
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct UpdateOAuthScopeRequest {
#[serde(skip_serializing_if = "Option::is_none")]
pub display_name: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub description: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SetOAuthScopeMappingRequest {
pub category: String,
#[serde(skip_serializing_if = "Option::is_none")]
pub organization_permission: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub workspace_permission: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct Jwk {
pub kty: String,
#[serde(skip_serializing_if = "Option::is_none")]
pub kid: Option<String>,
#[serde(rename = "use", skip_serializing_if = "Option::is_none")]
pub use_: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub key_ops: Option<Vec<String>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub alg: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub n: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub e: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub crv: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub x: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub y: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub x5u: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub x5c: Option<Vec<String>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub x5t: Option<String>,
#[serde(rename = "x5t#S256", skip_serializing_if = "Option::is_none")]
pub x5t_s256: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct JwksDocument {
pub keys: Vec<Jwk>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct OAuthClient {
pub id: String,
pub oauth_app_id: String,
pub client_id: String,
pub client_auth_method: String,
#[serde(default)]
pub grant_types: Vec<String>,
#[serde(default)]
pub redirect_uris: Vec<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub token_endpoint_auth_signing_alg: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub jwks_uri: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub jwks: Option<JwksDocument>,
#[serde(skip_serializing_if = "Option::is_none")]
pub public_key_pem: Option<String>,
pub is_active: bool,
pub created_at: DateTime<Utc>,
pub updated_at: DateTime<Utc>,
#[serde(skip_serializing_if = "Option::is_none")]
pub client_secret: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct CreateOAuthClientRequest {
pub client_auth_method: String,
pub grant_types: Vec<String>,
pub redirect_uris: Vec<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub token_endpoint_auth_signing_alg: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub jwks_uri: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub jwks: Option<JwksDocument>,
#[serde(skip_serializing_if = "Option::is_none")]
pub public_key_pem: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct UpdateOAuthClientRequest {
#[serde(skip_serializing_if = "Option::is_none")]
pub client_auth_method: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub grant_types: Option<Vec<String>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub redirect_uris: Option<Vec<String>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub token_endpoint_auth_signing_alg: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub jwks_uri: Option<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub jwks: Option<JwksDocument>,
#[serde(skip_serializing_if = "Option::is_none")]
pub public_key_pem: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RotateOAuthClientSecretResponse {
pub client_secret: String,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct OAuthGrant {
pub id: String,
pub api_auth_app_slug: String,
pub oauth_client_id: String,
pub resource: String,
#[serde(default)]
pub scopes: Vec<String>,
pub status: String,
pub granted_at: DateTime<Utc>,
#[serde(skip_serializing_if = "Option::is_none")]
pub expires_at: Option<DateTime<Utc>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub revoked_at: Option<DateTime<Utc>>,
#[serde(skip_serializing_if = "Option::is_none")]
pub granted_by_user_id: Option<String>,
pub created_at: DateTime<Utc>,
pub updated_at: DateTime<Utc>,
}
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct ListOAuthAppsResponse {
pub apps: Vec<OAuthApp>,
}
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct ListOAuthClientsResponse {
pub clients: Vec<OAuthClient>,
}
#[derive(Debug, Clone, Serialize, Deserialize, Default)]
pub struct ListOAuthGrantsResponse {
pub grants: Vec<OAuthGrant>,
}