autogen: regenerate OpenAPI client for v1.16.9

Version: v1.16.9

.github/workflows/publish.yml

@@ -0,0 +1,14 @@
+name: Publish to pub.dev
+
+on:
+  push:
+    tags:
+      - 'v[0-9]+.[0-9]+.[0-9]+*'
+
+jobs:
+  publish:
+    permissions:
+      id-token: write # Required for authentication using OIDC
+    uses: dart-lang/setup-dart/.github/workflows/publish.yml@v1
+    # with:
+    #   working-directory: path/to/package/within/repository

doc/CreateProjectNormalizedPayload.md

@@ -177,6 +177,8 @@ Name | Type | Description | Notes
 **kratosSelfserviceFlowsVerificationNotifyUnknownRecipients** | **bool** | Configures whether to notify unknown recipients of a Ory Kratos verification flow  This governs the \"selfservice.flows.verification.notify_unknown_recipients\" setting. | [optional] 
 **kratosSelfserviceFlowsVerificationUiUrl** | **String** | Configures the Ory Kratos Verification UI URL  This governs the \"selfservice.flows.verification.ui_url\" setting. | [optional] 
 **kratosSelfserviceFlowsVerificationUse** | **String** | Configures the Ory Kratos Strategy to use for Verification  This governs the \"selfservice.flows.verification.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode | [optional] 
+**kratosSelfserviceMethodsCaptchaConfigCfTurnstileSitekey** | **String** | Configures the Turnstile site key for CAPTCHA protection  The site key is public and will be shared with the client.  Reach out to your account manager to enable this feature. | [optional] 
+**kratosSelfserviceMethodsCaptchaEnabled** | **bool** | Configures the Ory Kratos Self-Service Methods' Captcha Enabled Setting  Reach out to your account manager to enable this feature. | [optional] 
 **kratosSelfserviceMethodsCodeConfigLifespan** | **String** | Configures the Ory Kratos Code Method's lifespan  This governs the \"selfservice.methods.code.config.lifespan\" setting. | [optional] 
 **kratosSelfserviceMethodsCodeConfigMissingCredentialFallbackEnabled** | **bool** | Enables a fallback method required in certain legacy use cases.  This governs the \"selfservice.methods.code.config.missing_credential_fallback_enabled\" setting. | [optional] 
 **kratosSelfserviceMethodsCodeEnabled** | **bool** | Configures whether Ory Kratos Code Method is enabled  This governs the \"selfservice.methods.code.enabled\" setting. | [optional] 

doc/IdentityCredentialsOidcProvider.md

@@ -14,6 +14,7 @@ Name | Type | Description | Notes
 **organization** | **String** |  | [optional] 
 **provider** | **String** |  | [optional] 
 **subject** | **String** |  | [optional] 
+**useAutoLink** | **bool** |  | [optional] 
 
 [[Back to Model list]](../README.md#documentation-for-models) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to README]](../README.md)
 

doc/IdentityWithCredentialsOidcConfigProvider.md

@@ -10,6 +10,7 @@ Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **provider** | **String** | The OpenID Connect provider to link the subject to. Usually something like `google` or `github`. | 
 **subject** | **String** | The subject (`sub`) of the OpenID Connect connection. Usually the `sub` field of the ID Token. | 
+**useAutoLink** | **bool** | If set, this credential allows the user to sign in using the OpenID Connect provider without setting the subject first. | [optional] 
 
 [[Back to Model list]](../README.md#documentation-for-models) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to README]](../README.md)
 

doc/NormalizedProjectRevision.md

@@ -175,6 +175,8 @@ Name | Type | Description | Notes
 **kratosSelfserviceFlowsVerificationNotifyUnknownRecipients** | **bool** | Configures whether to notify unknown recipients of a Ory Kratos verification flow  This governs the \"selfservice.flows.verification.notify_unknown_recipients\" setting. | [optional] 
 **kratosSelfserviceFlowsVerificationUiUrl** | **String** | Configures the Ory Kratos Verification UI URL  This governs the \"selfservice.flows.verification.ui_url\" setting. | [optional] 
 **kratosSelfserviceFlowsVerificationUse** | **String** | Configures the Ory Kratos Strategy to use for Verification  This governs the \"selfservice.flows.verification.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode | [optional] 
+**kratosSelfserviceMethodsCaptchaConfigCfTurnstileSitekey** | **String** | Configures the Turnstile site key for CAPTCHA protection  The site key is public and will be shared with the client.  Reach out to your account manager to enable this feature. | [optional] 
+**kratosSelfserviceMethodsCaptchaEnabled** | **bool** | Configures the Ory Kratos Self-Service Methods' Captcha Enabled Setting  Reach out to your account manager to enable this feature. | [optional] 
 **kratosSelfserviceMethodsCodeConfigLifespan** | **String** | Configures the Ory Kratos Code Method's lifespan  This governs the \"selfservice.methods.code.config.lifespan\" setting. | [optional] 
 **kratosSelfserviceMethodsCodeConfigMissingCredentialFallbackEnabled** | **bool** | Enables a fallback method required in certain legacy use cases.  This governs the \"selfservice.methods.code.config.missing_credential_fallback_enabled\" setting. | [optional] 
 **kratosSelfserviceMethodsCodeEnabled** | **bool** | Configures whether Ory Kratos Code Method is enabled  This governs the \"selfservice.methods.code.enabled\" setting. | [optional] 

doc/OAuth2Api.md

@@ -1019,7 +1019,7 @@ void (empty response body)
 [[Back to top]](#) [[Back to API list]](../README.md#documentation-for-api-endpoints) [[Back to Model list]](../README.md#documentation-for-models) [[Back to README]](../README.md)
 
 # **revokeOAuth2ConsentSessions**
-> revokeOAuth2ConsentSessions(subject, client, all)
+> revokeOAuth2ConsentSessions(subject, client, consentRequestId, all)
 
 Revoke OAuth 2.0 Consent Sessions of a Subject
 
@@ -1032,10 +1032,11 @@ import 'package:ory_client/api.dart';
 final api = OryClient().getOAuth2Api();
 final String subject = subject_example; // String | OAuth 2.0 Consent Subject  The subject whose consent sessions should be deleted.
 final String client = client_example; // String | OAuth 2.0 Client ID  If set, deletes only those consent sessions that have been granted to the specified OAuth 2.0 Client ID.
+final String consentRequestId = consentRequestId_example; // String | Consent Request ID  If set, revoke all token chains derived from this particular consent request ID.
 final bool all = true; // bool | Revoke All Consent Sessions  If set to `true` deletes all consent sessions by the Subject that have been granted.
 
 try {
-    api.revokeOAuth2ConsentSessions(subject, client, all);
+    api.revokeOAuth2ConsentSessions(subject, client, consentRequestId, all);
 } catch on DioException (e) {
     print('Exception when calling OAuth2Api->revokeOAuth2ConsentSessions: $e\n');
 }
@@ -1045,8 +1046,9 @@ try {
 
 Name | Type | Description  | Notes
 ------------- | ------------- | ------------- | -------------
- **subject** | **String**| OAuth 2.0 Consent Subject  The subject whose consent sessions should be deleted. | 
+ **subject** | **String**| OAuth 2.0 Consent Subject  The subject whose consent sessions should be deleted. | [optional] 
  **client** | **String**| OAuth 2.0 Client ID  If set, deletes only those consent sessions that have been granted to the specified OAuth 2.0 Client ID. | [optional] 
+ **consentRequestId** | **String**| Consent Request ID  If set, revoke all token chains derived from this particular consent request ID. | [optional] 
  **all** | **bool**| Revoke All Consent Sessions  If set to `true` deletes all consent sessions by the Subject that have been granted. | [optional] 
 
 ### Return type
@@ -1069,7 +1071,7 @@ void (empty response body)
 
 Revokes OAuth 2.0 Login Sessions by either a Subject or a SessionID
 
-This endpoint invalidates authentication sessions. After revoking the authentication session(s), the subject has to re-authenticate at the Ory OAuth2 Provider. This endpoint does not invalidate any tokens.  If you send the subject in a query param, all authentication sessions that belong to that subject are revoked. No OpenID Connect Front- or Back-channel logout is performed in this case.  Alternatively, you can send a SessionID via `sid` query param, in which case, only the session that is connected to that SessionID is revoked. OpenID Connect Back-channel logout is performed in this case.
+This endpoint invalidates authentication sessions. After revoking the authentication session(s), the subject has to re-authenticate at the Ory OAuth2 Provider. This endpoint does not invalidate any tokens.  If you send the subject in a query param, all authentication sessions that belong to that subject are revoked. No OpenID Connect Front- or Back-channel logout is performed in this case.  Alternatively, you can send a SessionID via `sid` query param, in which case, only the session that is connected to that SessionID is revoked. OpenID Connect Back-channel logout is performed in this case.  When using Ory for the identity provider, the login provider will also invalidate the session cookie.
 
 ### Example
 ```dart

doc/OAuth2Client.md

@@ -8,7 +8,7 @@ import 'package:ory_client/api.dart';
 ## Properties
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
-**accessTokenStrategy** | **String** | OAuth 2.0 Access Token Strategy  AccessTokenStrategy is the strategy used to generate access tokens. Valid options are `jwt` and `opaque`. `jwt` is a bad idea, see https://www.ory.sh/docs/hydra/advanced#json-web-tokens Setting the stragegy here overrides the global setting in `strategies.access_token`. | [optional] 
+**accessTokenStrategy** | **String** | OAuth 2.0 Access Token Strategy  AccessTokenStrategy is the strategy used to generate access tokens. Valid options are `jwt` and `opaque`. `jwt` is a bad idea, see https://www.ory.sh/docs/oauth2-oidc/jwt-access-token Setting the stragegy here overrides the global setting in `strategies.access_token`. | [optional] 
 **allowedCorsOrigins** | **BuiltList<String>** |  | [optional] 
 **audience** | **BuiltList<String>** |  | [optional] 
 **authorizationCodeGrantAccessTokenLifespan** | **String** |  | [optional] 

doc/OAuth2ConsentRequest.md

@@ -10,8 +10,9 @@ Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **acr** | **String** | ACR represents the Authentication AuthorizationContext Class Reference value for this authentication session. You can use it to express that, for example, a user authenticated using two factor authentication. | [optional] 
 **amr** | **BuiltList<String>** |  | [optional] 
-**challenge** | **String** | ID is the identifier (\"authorization challenge\") of the consent authorization request. It is used to identify the session. | 
+**challenge** | **String** | Challenge is used to retrieve/accept/deny the consent request. | 
 **client** | [**OAuth2Client**](OAuth2Client.md) |  | [optional] 
+**consentRequestId** | **String** | ConsentRequestID is the ID of the consent request. | [optional] 
 **context** | [**JsonObject**](.md) |  | [optional] 
 **loginChallenge** | **String** | LoginChallenge is the login challenge this consent challenge belongs to. It can be used to associate a login and consent request in the login & consent app. | [optional] 
 **loginSessionId** | **String** | LoginSessionID is the login session ID. If the user-agent reuses a login session (via cookie / remember flag) this ID will remain the same. If the user-agent did not have an existing authentication session (e.g. remember is false) this will be a new random value. This value is used as the \"sid\" parameter in the ID Token and in OIDC Front-/Back- channel logout. It's value can generally be used to associate consecutive login requests by a certain user. | [optional] 

doc/OAuth2ConsentSession.md

@@ -9,6 +9,7 @@ import 'package:ory_client/api.dart';
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **consentRequest** | [**OAuth2ConsentRequest**](OAuth2ConsentRequest.md) |  | [optional] 
+**consentRequestId** | **String** | ConsentRequestID is the identifier of the consent request that initiated this consent session. | [optional] 
 **context** | [**JsonObject**](.md) |  | [optional] 
 **expiresAt** | [**OAuth2ConsentSessionExpiresAt**](OAuth2ConsentSessionExpiresAt.md) |  | [optional] 
 **grantAccessTokenAudience** | **BuiltList<String>** |  | [optional] 

doc/OAuth2LoginRequest.md

@@ -8,7 +8,7 @@ import 'package:ory_client/api.dart';
 ## Properties
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
-**challenge** | **String** | ID is the identifier (\"login challenge\") of the login request. It is used to identify the session. | 
+**challenge** | **String** | ID is the identifier of the login request. | 
 **client** | [**OAuth2Client**](OAuth2Client.md) |  | 
 **oidcContext** | [**OAuth2ConsentRequestOpenIDConnectContext**](OAuth2ConsentRequestOpenIDConnectContext.md) |  | [optional] 
 **requestUrl** | **String** | RequestURL is the original OAuth 2.0 Authorization URL requested by the OAuth 2.0 client. It is the URL which initiates the OAuth 2.0 Authorization Code or OAuth 2.0 Implicit flow. This URL is typically not needed, but might come in handy if you want to deal with additional request parameters. | 

doc/OAuth2LogoutRequest.md

@@ -8,9 +8,11 @@ import 'package:ory_client/api.dart';
 ## Properties
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
-**challenge** | **String** | Challenge is the identifier (\"logout challenge\") of the logout authentication request. It is used to identify the session. | [optional] 
+**challenge** | **String** | Challenge is the identifier of the logout authentication request. | [optional] 
 **client** | [**OAuth2Client**](OAuth2Client.md) |  | [optional] 
+**expiresAt** | [**DateTime**](DateTime.md) |  | [optional] 
 **requestUrl** | **String** | RequestURL is the original Logout URL requested. | [optional] 
+**requestedAt** | [**DateTime**](DateTime.md) |  | [optional] 
 **rpInitiated** | **bool** | RPInitiated is set to true if the request was initiated by a Relying Party (RP), also known as an OAuth 2.0 Client. | [optional] 
 **sid** | **String** | SessionID is the login session ID that was requested to log out. | [optional] 
 **subject** | **String** | Subject is the user for whom the logout was request. | [optional] 

doc/QuotaUsage.md

@@ -10,7 +10,7 @@ Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
 **additionalPrice** | **String** | The additional price per unit in cents. | 
 **canUseMore** | **bool** |  | 
-**feature** | **String** |  production_projects ProductionProjects staging_projects StagingProjects development_projects DevelopmentProjects daily_active_users DailyActiveUsers custom_domains CustomDomains event_streams EventStreams event_stream_events EventStreamEvents sla SLA collaborator_seats CollaboratorSeats edge_cache EdgeCache branding_themes BrandingThemes zendesk_support ZendeskSupport project_metrics ProjectMetrics project_metrics_time_window ProjectMetricsTimeWindow project_metrics_events_history ProjectMetricsEventsHistory organizations Organizations rop_grant ResourceOwnerPasswordGrant concierge_onboarding ConciergeOnboarding credit Credit data_location_global DataLocationGlobal data_location_us DataLocationUS data_location_asiane DataLocationAsiaNorthEast m2m_token_issuance M2MTokenIssuance permission_checks PermissionChecks captcha Captcha saml_sp SAMLSP saml_idp SAMLIDP data_location_regional DataLocationRegional  Required Features rate_limit_tier RateLimitTier session_rate_limit_tier RateLimitTierSessions identities_list_rate_limit_tier RateLimitTierIdentitiesList permission_checks_rate_limit_tier RateLimitTierPermissionChecks oauth2_introspect_rate_limit_tier RateLimitTierOAuth2Introspect create_recovery_admin_rate_limit_tier RateLimitTierCreateAdminRecovery | 
+**feature** | **String** |  production_projects ProductionProjects staging_projects StagingProjects development_projects DevelopmentProjects daily_active_users DailyActiveUsers custom_domains CustomDomains event_streams EventStreams event_stream_events EventStreamEvents sla SLA collaborator_seats CollaboratorSeats edge_cache EdgeCache branding_themes BrandingThemes zendesk_support ZendeskSupport project_metrics ProjectMetrics project_metrics_time_window ProjectMetricsTimeWindow project_metrics_events_history ProjectMetricsEventsHistory organizations Organizations rop_grant ResourceOwnerPasswordGrant concierge_onboarding ConciergeOnboarding credit Credit data_location_global DataLocationGlobal data_location_us DataLocationUS data_location_asiane DataLocationAsiaNorthEast m2m_token_issuance M2MTokenIssuance permission_checks PermissionChecks captcha Captcha saml_sp SAMLSP saml_idp SAMLIDP auto_link_policy AutoLinkPolicy data_location_regional DataLocationRegional  Required Features rate_limit_tier RateLimitTier session_rate_limit_tier RateLimitTierSessions identities_list_rate_limit_tier RateLimitTierIdentitiesList permission_checks_rate_limit_tier RateLimitTierPermissionChecks oauth2_introspect_rate_limit_tier RateLimitTierOAuth2Introspect create_recovery_admin_rate_limit_tier RateLimitTierCreateAdminRecovery | 
 **featureAvailable** | **bool** |  | 
 **included** | **int** |  | 
 **isUnlimited** | **bool** |  |