stytchauth · max-stytch · Mar 4, 2024 · Feb 23, 2024 · Feb 23, 2024 · logan-stytch
@@ -17,8 +17,10 @@ export interface B2BDiscoveryIntermediateSessionsExchangeRequest {
    * The Intermediate Session Token. This token does not necessarily belong to a specific instance of a
    * Member, but represents a bag of factors that may be converted to a member session.
    *     The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete an MFA
-   * flow;
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *     or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete an MFA flow;
    *     the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a specific Organization that allows the factors represented by the intermediate session token;
@@ -102,8 +104,10 @@ export interface B2BDiscoveryIntermediateSessionsExchangeResponse {
    * The returned Intermediate Session Token is identical to the one that was originally passed in to the
    * request.
    *       The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete the
-   * MFA flow and log in to the Organization.
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *       or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete the MFA flow and log in to the Organization.
    *       It can also be used with the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a different existing Organization,

@@ -22,8 +22,10 @@ export interface B2BDiscoveryOrganizationsCreateRequest {
    * The Intermediate Session Token. This token does not necessarily belong to a specific instance of a
    * Member, but represents a bag of factors that may be converted to a member session.
    *     The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete an MFA
-   * flow;
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *     or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete an MFA flow;
    *     the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a specific Organization that allows the factors represented by the intermediate session token;
@@ -165,18 +167,18 @@ export interface B2BDiscoveryOrganizationsCreateRequest {
    */
   rbac_email_implicit_role_assignments?: EmailImplicitRoleAssignment[];
   /**
-   * The setting that controls which mfa methods can be used by Members of an Organization. The accepted
+   * The setting that controls which MFA methods can be used by Members of an Organization. The accepted
    * values are:
    *
    *   `ALL_ALLOWED` – the default setting which allows all authentication methods to be used.
    *
-   *   `RESTRICTED` – only methods that comply with `allowed_auth_methods` can be used for authentication.
+   *   `RESTRICTED` – only methods that comply with `allowed_mfa_methods` can be used for authentication.
    * This setting does not apply to Members with `is_breakglass` set to `true`.
    *
    */
   mfa_methods?: string;
   /**
-   * An array of allowed mfa authentication methods. This list is enforced when `mfa_methods` is set to
+   * An array of allowed MFA authentication methods. This list is enforced when `mfa_methods` is set to
    * `RESTRICTED`.
    *   The list's accepted values are: `sms_otp` and `totp`.
    *
@@ -208,8 +210,10 @@ export interface B2BDiscoveryOrganizationsCreateResponse {
    * The returned Intermediate Session Token is identical to the one that was originally passed in to the
    * request.
    *       The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete the
-   * MFA flow and log in to the Organization.
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *       or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete the MFA flow and log in to the Organization.
    *       It can also be used with the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a different existing Organization,
@@ -236,8 +240,10 @@ export interface B2BDiscoveryOrganizationsListRequest {
    * The Intermediate Session Token. This token does not necessarily belong to a specific instance of a
    * Member, but represents a bag of factors that may be converted to a member session.
    *     The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete an MFA
-   * flow;
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *     or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete an MFA flow;
    *     the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a specific Organization that allows the factors represented by the intermediate session token;

@@ -78,6 +78,12 @@ export type {
   B2BOrganizationsMembersCreateRequestOptions,
 } from "./organizations_members";
 
+export type {
+  B2BOrganizationsMembersOAuthProvidersGoogleResponse,
+  B2BOrganizationsMembersOAuthProvidersMicrosoftRequest,
+  B2BOrganizationsMembersOAuthProvidersMicrosoftResponse,
+} from "./organizations_members_oauth_providers";
+
 export type {
   AuthorizationCheck,
   AuthorizationVerdict,

@@ -117,8 +117,10 @@ export interface B2BMagicLinksAuthenticateResponse {
    * The returned Intermediate Session Token contains an Email Magic Link factor associated with the Member's
    * email address.
    *       The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete the
-   * MFA flow and log in to the Organization.
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *       or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete the MFA flow and log in to the Organization.
    *       It can also be used with the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a different existing Organization that allows login with Email Magic Links,
@@ -161,8 +163,10 @@ export class MagicLinks {
    * If the Member is required to complete MFA to log in to the Organization, the returned value of
    * `member_authenticated` will be `false`, and an `intermediate_session_token` will be returned.
    * The `intermediate_session_token` can be passed into the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete the
-   * MFA step and acquire a full member session.
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   * or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to complete
+   * the MFA step and acquire a full member session.
    * The `intermediate_session_token` can also be used with the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * or the

@@ -28,8 +28,10 @@ export interface B2BMagicLinksDiscoveryAuthenticateResponse {
    * The Intermediate Session Token. This token does not necessarily belong to a specific instance of a
    * Member, but represents a bag of factors that may be converted to a member session.
    *     The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete an MFA
-   * flow;
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *     or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete an MFA flow;
    *     the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a specific Organization that allows the factors represented by the intermediate session token;

@@ -5,8 +5,8 @@
 // !!!
 
 import {
-  Authorization,
   addAuthorizationHeaders,
+  Authorization,
 } from "../shared/method_options";
 import { Discovery } from "./magic_links_email_discovery";
 import { fetchConfig } from "../shared";

@@ -9,6 +9,8 @@ import {} from "../shared/method_options";
 export interface MemberOptions {
   // The Member's MFA phone number.
   mfa_phone_number: string;
+  // The Member's MFA TOTP registration ID.
+  totp_registration_id: string;
 }
 
 export interface MfaRequired {

@@ -129,8 +129,10 @@ export interface B2BOAuthAuthenticateResponse {
    * The returned Intermediate Session Token contains an OAuth factor associated with the Member's email
    * address.
    *       The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete the
-   * MFA flow and log in to the Organization.
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *       or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete the MFA flow and log in to the Organization.
    *       It can also be used with the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a different existing Organization that allows login with OAuth,

@@ -32,8 +32,10 @@ export interface B2BOAuthDiscoveryAuthenticateResponse {
    * The Intermediate Session Token. This token does not necessarily belong to a specific instance of a
    * Member, but represents a bag of factors that may be converted to a member session.
    *     The token can be used with the
-   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms) to complete an MFA
-   * flow;
+   * [OTP SMS Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-otp-sms),
+   * [TOTP Authenticate endpoint](https://stytch.com/docs/b2b/api/authenticate-totp),
+   *     or [Recovery Codes Recover endpoint](https://stytch.com/docs/b2b/api/recovery-codes-recover) to
+   * complete an MFA flow;
    *     the
    * [Exchange Intermediate Session endpoint](https://stytch.com/docs/b2b/api/exchange-intermediate-session)
    * to join a specific Organization that allows the factors represented by the intermediate session token;