kernel
diff --git a/‎.stats.yml‎
Lines changed: 4 additions & 4 deletions b/‎.stats.yml‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎api.md‎
Lines changed: 10 additions & 8 deletions b/‎api.md‎
Lines changed: 10 additions & 8 deletions
diff --git a/‎src/kernel/resources/agents/auth/auth.py‎
Lines changed: 29 additions & 102 deletions b/‎src/kernel/resources/agents/auth/auth.py‎
Lines changed: 29 additions & 102 deletions
@@ -1,4 +1,4 @@
-configured_endpoints: 90
-openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/kernel%2Fkernel-20fac779e9e13dc9421e467be31dbf274c39072ba0c01528ba451b48698d43c1.yml
-openapi_spec_hash: c3fc5784297ccc8f729326b62000d1f0
-config_hash: e47e015528251ee83e30367dbbb51044
+configured_endpoints: 89
+openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/kernel%2Fkernel-8d66dbedea5b240936b338809f272568ca84a452fc13dbda835479f2ec068b41.yml
+openapi_spec_hash: 7c499bfce2e996f1fff5e7791cea390e
+config_hash: fcc2db3ed48ab4e8d1b588d31d394a23
@@ -287,15 +287,13 @@ Types:
 
 ```python
 from kernel.types.agents import (
-    AgentAuthDiscoverResponse,
     AgentAuthInvocationResponse,
     AgentAuthSubmitResponse,
     AuthAgent,
     AuthAgentCreateRequest,
     AuthAgentInvocationCreateRequest,
     AuthAgentInvocationCreateResponse,
     DiscoveredField,
-    ReauthResponse,
 )
 ```
 
@@ -305,7 +303,6 @@ Methods:
 - <code title="get /agents/auth/{id}">client.agents.auth.<a href="./src/kernel/resources/agents/auth/auth.py">retrieve</a>(id) -> <a href="./src/kernel/types/agents/auth_agent.py">AuthAgent</a></code>
 - <code title="get /agents/auth">client.agents.auth.<a href="./src/kernel/resources/agents/auth/auth.py">list</a>(\*\*<a href="src/kernel/types/agents/auth_list_params.py">params</a>) -> <a href="./src/kernel/types/agents/auth_agent.py">SyncOffsetPagination[AuthAgent]</a></code>
 - <code title="delete /agents/auth/{id}">client.agents.auth.<a href="./src/kernel/resources/agents/auth/auth.py">delete</a>(id) -> None</code>
-- <code title="post /agents/auth/{id}/reauth">client.agents.auth.<a href="./src/kernel/resources/agents/auth/auth.py">reauth</a>(id) -> <a href="./src/kernel/types/agents/reauth_response.py">ReauthResponse</a></code>
 
 ### Invocations
 
@@ -319,7 +316,6 @@ Methods:
 
 - <code title="post /agents/auth/invocations">client.agents.auth.invocations.<a href="./src/kernel/resources/agents/auth/invocations.py">create</a>(\*\*<a href="src/kernel/types/agents/auth/invocation_create_params.py">params</a>) -> <a href="./src/kernel/types/agents/auth_agent_invocation_create_response.py">AuthAgentInvocationCreateResponse</a></code>
 - <code title="get /agents/auth/invocations/{invocation_id}">client.agents.auth.invocations.<a href="./src/kernel/resources/agents/auth/invocations.py">retrieve</a>(invocation_id) -> <a href="./src/kernel/types/agents/agent_auth_invocation_response.py">AgentAuthInvocationResponse</a></code>
-- <code title="post /agents/auth/invocations/{invocation_id}/discover">client.agents.auth.invocations.<a href="./src/kernel/resources/agents/auth/invocations.py">discover</a>(invocation_id, \*\*<a href="src/kernel/types/agents/auth/invocation_discover_params.py">params</a>) -> <a href="./src/kernel/types/agents/agent_auth_discover_response.py">AgentAuthDiscoverResponse</a></code>
 - <code title="post /agents/auth/invocations/{invocation_id}/exchange">client.agents.auth.invocations.<a href="./src/kernel/resources/agents/auth/invocations.py">exchange</a>(invocation_id, \*\*<a href="src/kernel/types/agents/auth/invocation_exchange_params.py">params</a>) -> <a href="./src/kernel/types/agents/auth/invocation_exchange_response.py">InvocationExchangeResponse</a></code>
 - <code title="post /agents/auth/invocations/{invocation_id}/submit">client.agents.auth.invocations.<a href="./src/kernel/resources/agents/auth/invocations.py">submit</a>(invocation_id, \*\*<a href="src/kernel/types/agents/auth/invocation_submit_params.py">params</a>) -> <a href="./src/kernel/types/agents/agent_auth_submit_response.py">AgentAuthSubmitResponse</a></code>
 
@@ -328,13 +324,19 @@ Methods:
 Types:
 
 ```python
-from kernel.types import CreateCredentialRequest, Credential, UpdateCredentialRequest
+from kernel.types import (
+    CreateCredentialRequest,
+    Credential,
+    UpdateCredentialRequest,
+    CredentialTotpCodeResponse,
+)
 ```
 
 Methods:
 
 - <code title="post /credentials">client.credentials.<a href="./src/kernel/resources/credentials.py">create</a>(\*\*<a href="src/kernel/types/credential_create_params.py">params</a>) -> <a href="./src/kernel/types/credential.py">Credential</a></code>
-- <code title="get /credentials/{id}">client.credentials.<a href="./src/kernel/resources/credentials.py">retrieve</a>(id) -> <a href="./src/kernel/types/credential.py">Credential</a></code>
-- <code title="patch /credentials/{id}">client.credentials.<a href="./src/kernel/resources/credentials.py">update</a>(id, \*\*<a href="src/kernel/types/credential_update_params.py">params</a>) -> <a href="./src/kernel/types/credential.py">Credential</a></code>
+- <code title="get /credentials/{id_or_name}">client.credentials.<a href="./src/kernel/resources/credentials.py">retrieve</a>(id_or_name) -> <a href="./src/kernel/types/credential.py">Credential</a></code>
+- <code title="patch /credentials/{id_or_name}">client.credentials.<a href="./src/kernel/resources/credentials.py">update</a>(id_or_name, \*\*<a href="src/kernel/types/credential_update_params.py">params</a>) -> <a href="./src/kernel/types/credential.py">Credential</a></code>
 - <code title="get /credentials">client.credentials.<a href="./src/kernel/resources/credentials.py">list</a>(\*\*<a href="src/kernel/types/credential_list_params.py">params</a>) -> <a href="./src/kernel/types/credential.py">SyncOffsetPagination[Credential]</a></code>
-- <code title="delete /credentials/{id}">client.credentials.<a href="./src/kernel/resources/credentials.py">delete</a>(id) -> None</code>
+- <code title="delete /credentials/{id_or_name}">client.credentials.<a href="./src/kernel/resources/credentials.py">delete</a>(id_or_name) -> None</code>
+- <code title="get /credentials/{id_or_name}/totp-code">client.credentials.<a href="./src/kernel/resources/credentials.py">totp_code</a>(id_or_name) -> <a href="./src/kernel/types/credential_totp_code_response.py">CredentialTotpCodeResponse</a></code>
@@ -4,7 +4,7 @@
 
 import httpx
 
-from ...._types import Body, Omit, Query, Headers, NoneType, NotGiven, omit, not_given
+from ...._types import Body, Omit, Query, Headers, NoneType, NotGiven, SequenceNotStr, omit, not_given
 from ...._utils import maybe_transform, async_maybe_transform
 from ...._compat import cached_property
 from .invocations import (
@@ -26,7 +26,6 @@
 from ...._base_client import AsyncPaginator, make_request_options
 from ....types.agents import auth_list_params, auth_create_params
 from ....types.agents.auth_agent import AuthAgent
-from ....types.agents.reauth_response import ReauthResponse
 
 __all__ = ["AuthResource", "AsyncAuthResource"]
 
@@ -58,8 +57,9 @@ def with_streaming_response(self) -> AuthResourceWithStreamingResponse:
     def create(
         self,
         *,
+        domain: str,
         profile_name: str,
-        target_domain: str,
+        allowed_domains: SequenceNotStr[str] | Omit = omit,
         credential_name: str | Omit = omit,
         login_url: str | Omit = omit,
         proxy: auth_create_params.Proxy | Omit = omit,
@@ -77,9 +77,13 @@ def create(
         invocation - use POST /agents/auth/invocations to start an auth flow.
 
         Args:
+          domain: Domain for authentication
+
           profile_name: Name of the profile to use for this auth agent
 
-          target_domain: Target domain for authentication
+          allowed_domains: Additional domains that are valid for this auth agent's authentication flow
+              (besides the primary domain). Useful when login pages redirect to different
+              domains.
 
           credential_name: Optional name of an existing credential to use for this auth agent. If provided,
               the credential will be linked to the agent and its values will be used to
@@ -102,8 +106,9 @@ def create(
             "/agents/auth",
             body=maybe_transform(
                 {
+                    "domain": domain,
                     "profile_name": profile_name,
-                    "target_domain": target_domain,
+                    "allowed_domains": allowed_domains,
                     "credential_name": credential_name,
                     "login_url": login_url,
                     "proxy": proxy,
@@ -154,10 +159,10 @@ def retrieve(
     def list(
         self,
         *,
+        domain: str | Omit = omit,
         limit: int | Omit = omit,
         offset: int | Omit = omit,
         profile_name: str | Omit = omit,
-        target_domain: str | Omit = omit,
         # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
         # The extra values given here take precedence over values defined on the client or passed to this method.
         extra_headers: Headers | None = None,
@@ -166,17 +171,17 @@ def list(
         timeout: float | httpx.Timeout | None | NotGiven = not_given,
     ) -> SyncOffsetPagination[AuthAgent]:
         """
-        List auth agents with optional filters for profile_name and target_domain.
+        List auth agents with optional filters for profile_name and domain.
 
         Args:
+          domain: Filter by domain
+
           limit: Maximum number of results to return
 
           offset: Number of results to skip
 
           profile_name: Filter by profile name
 
-          target_domain: Filter by target domain
-
           extra_headers: Send extra headers
 
           extra_query: Add additional query parameters to the request
@@ -195,10 +200,10 @@ def list(
                 timeout=timeout,
                 query=maybe_transform(
                     {
+                        "domain": domain,
                         "limit": limit,
                         "offset": offset,
                         "profile_name": profile_name,
-                        "target_domain": target_domain,
                     },
                     auth_list_params.AuthListParams,
                 ),
@@ -245,42 +250,6 @@ def delete(
             cast_to=NoneType,
         )
 
-    def reauth(
-        self,
-        id: str,
-        *,
-        # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
-        # The extra values given here take precedence over values defined on the client or passed to this method.
-        extra_headers: Headers | None = None,
-        extra_query: Query | None = None,
-        extra_body: Body | None = None,
-        timeout: float | httpx.Timeout | None | NotGiven = not_given,
-    ) -> ReauthResponse:
-        """
-        Triggers automatic re-authentication for an auth agent using stored credentials.
-        Requires the auth agent to have a linked credential, stored selectors, and
-        login_url. Returns immediately with status indicating whether re-auth was
-        started.
-
-        Args:
-          extra_headers: Send extra headers
-
-          extra_query: Add additional query parameters to the request
-
-          extra_body: Add additional JSON properties to the request
-
-          timeout: Override the client-level default timeout for this request, in seconds
-        """
-        if not id:
-            raise ValueError(f"Expected a non-empty value for `id` but received {id!r}")
-        return self._post(
-            f"/agents/auth/{id}/reauth",
-            options=make_request_options(
-                extra_headers=extra_headers, extra_query=extra_query, extra_body=extra_body, timeout=timeout
-            ),
-            cast_to=ReauthResponse,
-        )
-
 
 class AsyncAuthResource(AsyncAPIResource):
     @cached_property
@@ -309,8 +278,9 @@ def with_streaming_response(self) -> AsyncAuthResourceWithStreamingResponse:
     async def create(
         self,
         *,
+        domain: str,
         profile_name: str,
-        target_domain: str,
+        allowed_domains: SequenceNotStr[str] | Omit = omit,
         credential_name: str | Omit = omit,
         login_url: str | Omit = omit,
         proxy: auth_create_params.Proxy | Omit = omit,
@@ -328,9 +298,13 @@ async def create(
         invocation - use POST /agents/auth/invocations to start an auth flow.
 
         Args:
+          domain: Domain for authentication
+
           profile_name: Name of the profile to use for this auth agent
 
-          target_domain: Target domain for authentication
+          allowed_domains: Additional domains that are valid for this auth agent's authentication flow
+              (besides the primary domain). Useful when login pages redirect to different
+              domains.
 
           credential_name: Optional name of an existing credential to use for this auth agent. If provided,
               the credential will be linked to the agent and its values will be used to
@@ -353,8 +327,9 @@ async def create(
             "/agents/auth",
             body=await async_maybe_transform(
                 {
+                    "domain": domain,
                     "profile_name": profile_name,
-                    "target_domain": target_domain,
+                    "allowed_domains": allowed_domains,
                     "credential_name": credential_name,
                     "login_url": login_url,
                     "proxy": proxy,
@@ -405,10 +380,10 @@ async def retrieve(
     def list(
         self,
         *,
+        domain: str | Omit = omit,
         limit: int | Omit = omit,
         offset: int | Omit = omit,
         profile_name: str | Omit = omit,
-        target_domain: str | Omit = omit,
         # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
         # The extra values given here take precedence over values defined on the client or passed to this method.
         extra_headers: Headers | None = None,
@@ -417,17 +392,17 @@ def list(
         timeout: float | httpx.Timeout | None | NotGiven = not_given,
     ) -> AsyncPaginator[AuthAgent, AsyncOffsetPagination[AuthAgent]]:
         """
-        List auth agents with optional filters for profile_name and target_domain.
+        List auth agents with optional filters for profile_name and domain.
 
         Args:
+          domain: Filter by domain
+
           limit: Maximum number of results to return
 
           offset: Number of results to skip
 
           profile_name: Filter by profile name
 
-          target_domain: Filter by target domain
-
           extra_headers: Send extra headers
 
           extra_query: Add additional query parameters to the request
@@ -446,10 +421,10 @@ def list(
                 timeout=timeout,
                 query=maybe_transform(
                     {
+                        "domain": domain,
                         "limit": limit,
                         "offset": offset,
                         "profile_name": profile_name,
-                        "target_domain": target_domain,
                     },
                     auth_list_params.AuthListParams,
                 ),
@@ -496,42 +471,6 @@ async def delete(
             cast_to=NoneType,
         )
 
-    async def reauth(
-        self,
-        id: str,
-        *,
-        # Use the following arguments if you need to pass additional parameters to the API that aren't available via kwargs.
-        # The extra values given here take precedence over values defined on the client or passed to this method.
-        extra_headers: Headers | None = None,
-        extra_query: Query | None = None,
-        extra_body: Body | None = None,
-        timeout: float | httpx.Timeout | None | NotGiven = not_given,
-    ) -> ReauthResponse:
-        """
-        Triggers automatic re-authentication for an auth agent using stored credentials.
-        Requires the auth agent to have a linked credential, stored selectors, and
-        login_url. Returns immediately with status indicating whether re-auth was
-        started.
-
-        Args:
-          extra_headers: Send extra headers
-
-          extra_query: Add additional query parameters to the request
-
-          extra_body: Add additional JSON properties to the request
-
-          timeout: Override the client-level default timeout for this request, in seconds
-        """
-        if not id:
-            raise ValueError(f"Expected a non-empty value for `id` but received {id!r}")
-        return await self._post(
-            f"/agents/auth/{id}/reauth",
-            options=make_request_options(
-                extra_headers=extra_headers, extra_query=extra_query, extra_body=extra_body, timeout=timeout
-            ),
-            cast_to=ReauthResponse,
-        )
-
 
 class AuthResourceWithRawResponse:
     def __init__(self, auth: AuthResource) -> None:
@@ -549,9 +488,6 @@ def __init__(self, auth: AuthResource) -> None:
         self.delete = to_raw_response_wrapper(
             auth.delete,
         )
-        self.reauth = to_raw_response_wrapper(
-            auth.reauth,
-        )
 
     @cached_property
     def invocations(self) -> InvocationsResourceWithRawResponse:
@@ -574,9 +510,6 @@ def __init__(self, auth: AsyncAuthResource) -> None:
         self.delete = async_to_raw_response_wrapper(
             auth.delete,
         )
-        self.reauth = async_to_raw_response_wrapper(
-            auth.reauth,
-        )
 
     @cached_property
     def invocations(self) -> AsyncInvocationsResourceWithRawResponse:
@@ -599,9 +532,6 @@ def __init__(self, auth: AuthResource) -> None:
         self.delete = to_streamed_response_wrapper(
             auth.delete,
         )
-        self.reauth = to_streamed_response_wrapper(
-            auth.reauth,
-        )
 
     @cached_property
     def invocations(self) -> InvocationsResourceWithStreamingResponse:
@@ -624,9 +554,6 @@ def __init__(self, auth: AsyncAuthResource) -> None:
         self.delete = async_to_streamed_response_wrapper(
             auth.delete,
         )
-        self.reauth = async_to_streamed_response_wrapper(
-            auth.reauth,
-        )
 
     @cached_property
     def invocations(self) -> AsyncInvocationsResourceWithStreamingResponse: