feat: add support for organization discovery domains (#1187)

* feat: add discovery domain handling to organisations
feat(clients.ts): rename multiResourceRefreshTokenPolicies to multiResourceRefreshTokenPoliciesSchema
feat(clients.ts): allow organization_discovery_methods to accept null values
* e2e update

Author: kushalshit27

src/context/directory/handlers/organizations.ts

@@ -61,6 +61,17 @@ async function dump(context: DirectoryContext): Promise<void> {
       });
     }
 
+    if (organization.discovery_domains && organization.discovery_domains.length > 0) {
+      organization.discovery_domains = organization.discovery_domains.map((dd) => {
+        // discovery_domains id is a computed field
+        delete dd.id;
+
+        return {
+          ...dd,
+        };
+      });
+    }
+
     dumpJSON(organizationFile, organization);
   });
 }

src/context/yaml/handlers/organizations.ts

@@ -1,6 +1,6 @@
 import { YAMLHandler } from '.';
 import YAMLContext from '..';
-import { Asset, ParsedAsset } from '../../../types';
+import { Asset } from '../../../types';
 
 type ParsedOrganizations = {
   organizations: Asset[] | null;
@@ -36,6 +36,16 @@ async function dump(context: YAMLContext): Promise<ParsedOrganizations> {
           };
         });
       }
+      if (org.discovery_domains && org.discovery_domains.length > 0) {
+        org.discovery_domains = org.discovery_domains.map((dd) => {
+          // discovery_domains id is a computed field
+          delete dd.id;
+
+          return {
+            ...dd,
+          };
+        });
+      }
 
       return org;
     }),

src/tools/auth0/handlers/clients.ts

@@ -2,7 +2,7 @@ import { Assets } from '../../../types';
 import { paginate } from '../client';
 import DefaultAPIHandler from './default';
 
-const multiResourceRefreshTokenPolicies = {
+const multiResourceRefreshTokenPoliciesSchema = {
   type: ['array', 'null'],
   description:
     'A collection of policies governing multi-resource refresh token exchange (MRRT), defining how refresh tokens can be used across different resource servers',
@@ -79,7 +79,7 @@ export const schema = {
         type: ['object', 'null'],
         description: 'Refresh token configuration',
         properties: {
-          policies: multiResourceRefreshTokenPolicies,
+          policies: multiResourceRefreshTokenPoliciesSchema,
         },
       },
       token_quota: {
@@ -145,6 +145,21 @@ export const schema = {
         description:
           'The identifier of a resource server in your tenant. This property links a client to a resource server indicating that the client IS that resource server. Can only be set when app_type=resource_server.',
       },
+      organization_usage: {
+        type: 'string',
+        enum: ['deny', 'allow', 'require'],
+      },
+      organization_require_behavior: {
+        type: 'string',
+        enum: ['no_prompt', 'pre_login_prompt', 'post_login_prompt'],
+      },
+      organization_discovery_methods: {
+        type: ['array', 'null'],
+        items: {
+          type: 'string',
+          enum: ['email', 'organization_name'],
+        },
+      },
       skip_non_verifiable_callback_uri_confirmation_prompt: {
         type: ['boolean', 'null'],
         description: 'Whether to skip the confirmation prompt for non-verifiable callback URIs',