From 4da7f20f2704bd124fa06e9a143266dd41377908 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Mon, 20 Apr 2026 17:21:40 -0700
Subject: [PATCH 01/13] Local emulator fixes

- Local emulator now saves to config at the end
- New "show-onboarding" value in stack.config.ts
---
 .claude/CLAUDE-KNOWLEDGE.md                   |   3 +
 .../migration.sql                             |   2 +
 .../tests/default-and-updates.ts              |  57 ++++
 apps/backend/prisma/schema.prisma             |   1 +
 .../internal/local-emulator/project/route.tsx |  88 ++++-
 apps/backend/src/lib/local-emulator.test.ts   |  28 +-
 apps/backend/src/lib/local-emulator.ts        |  64 +++-
 apps/backend/src/lib/projects.tsx             |  33 +-
 .../new-project/page-client-parts/content.tsx |  54 ++-
 .../project-onboarding-wizard.test.tsx        |   7 +
 .../project-onboarding-wizard.tsx             | 319 +++++++++++-------
 .../new-project/page-client-parts/shared.ts   |  81 +++++
 .../projects/page-client.tsx                  |  17 +-
 .../internal/local-emulator-project.test.ts   |  59 +++-
 .../stack-cli/src/commands/config-file.ts     |  15 +-
 packages/stack-cli/src/commands/emulator.ts   |  68 +++-
 .../stack-shared/src/config-authoring.test.ts |   3 +
 packages/stack-shared/src/config-authoring.ts |   9 +-
 .../src/interface/crud/projects.ts            |  15 +
 19 files changed, 774 insertions(+), 149 deletions(-)
 create mode 100644 apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/migration.sql
 create mode 100644 apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/tests/default-and-updates.ts

diff --git a/.claude/CLAUDE-KNOWLEDGE.md b/.claude/CLAUDE-KNOWLEDGE.md
index ffb334ee3c..5ae2db3457 100644
--- a/.claude/CLAUDE-KNOWLEDGE.md
+++ b/.claude/CLAUDE-KNOWLEDGE.md
@@ -355,3 +355,6 @@ Then restart the dev server. This rebuilds all packages and generates the necess
 
 ## Q: How is backwards compatibility for the offer→product rename handled in the payments purchase APIs?
 A: API v1 requests are routed through the `v2beta1` migration. The migration wraps the latest handlers, accepts legacy `offer_id`/`offer_inline` request fields, translates product-related errors back to the old offer error codes/messages, and augments responses (like `validate-code`) with `offer`/`conflicting_group_offers` aliases alongside the new `product` fields. Newer API versions keep the product-only contract.
+
+### Q: What's the reliable way to run targeted tests across backend, dashboard, stack-shared, and e2e at once?
+A: Run from the monorepo root with explicit file paths: `pnpm test run "<path1>" "<path2>" ...`. This works even when individual packages do not define a local `test` script. Also avoid passing an extra `run` argument to package-level `test` scripts that already execute `vitest run`.
diff --git a/apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/migration.sql b/apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/migration.sql
new file mode 100644
index 0000000000..40411aed73
--- /dev/null
+++ b/apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/migration.sql
@@ -0,0 +1,2 @@
+ALTER TABLE "Project"
+  ADD COLUMN "onboardingState" JSONB;
diff --git a/apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/tests/default-and-updates.ts b/apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/tests/default-and-updates.ts
new file mode 100644
index 0000000000..a474db0171
--- /dev/null
+++ b/apps/backend/prisma/migrations/20260420000000_add_project_onboarding_state/tests/default-and-updates.ts
@@ -0,0 +1,57 @@
+import { randomUUID } from "crypto";
+import type { Sql } from "postgres";
+import { expect } from "vitest";
+
+export const preMigration = async (sql: Sql) => {
+  const projectId = `test-${randomUUID()}`;
+  await sql`
+    INSERT INTO "Project" ("id", "createdAt", "updatedAt", "displayName", "description", "isProductionMode")
+    VALUES (${projectId}, NOW(), NOW(), 'Onboarding State Project', '', false)
+  `;
+  return { projectId };
+};
+
+export const postMigration = async (sql: Sql, ctx: Awaited<ReturnType<typeof preMigration>>) => {
+  const rows = await sql`
+    SELECT "onboardingState"
+    FROM "Project"
+    WHERE "id" = ${ctx.projectId}
+  `;
+  expect(rows).toHaveLength(1);
+  expect(rows[0].onboardingState).toBeNull();
+
+  const onboardingState = {
+    selected_config_choice: "create-new",
+    selected_apps: ["authentication", "emails"],
+    selected_sign_in_methods: ["credential", "magicLink"],
+    selected_email_theme_id: null,
+    selected_payments_country: "US",
+  };
+  await sql`
+    UPDATE "Project"
+    SET "onboardingState" = ${JSON.stringify(onboardingState)}::jsonb
+    WHERE "id" = ${ctx.projectId}
+  `;
+
+  const updatedRows = await sql`
+    SELECT "onboardingState"
+    FROM "Project"
+    WHERE "id" = ${ctx.projectId}
+  `;
+  expect(updatedRows).toHaveLength(1);
+  expect(updatedRows[0].onboardingState).toMatchInlineSnapshot(`
+    {
+      "selected_apps": [
+        "authentication",
+        "emails",
+      ],
+      "selected_config_choice": "create-new",
+      "selected_email_theme_id": null,
+      "selected_payments_country": "US",
+      "selected_sign_in_methods": [
+        "credential",
+        "magicLink",
+      ],
+    }
+  `);
+};
diff --git a/apps/backend/prisma/schema.prisma b/apps/backend/prisma/schema.prisma
index 1b20c77b17..0b32726af2 100644
--- a/apps/backend/prisma/schema.prisma
+++ b/apps/backend/prisma/schema.prisma
@@ -27,6 +27,7 @@ model Project {
   isProductionMode Boolean
   ownerTeamId      String? @db.Uuid
   onboardingStatus String  @default("completed")
+  onboardingState  Json?
 
   logoUrl             String?
   logoFullUrl         String?
diff --git a/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx b/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx
index 5e13731498..543db2002c 100644
--- a/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx
+++ b/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx
@@ -4,15 +4,25 @@ import {
   LOCAL_EMULATOR_ADMIN_USER_ID,
   LOCAL_EMULATOR_ONLY_ENDPOINT_MESSAGE,
   LOCAL_EMULATOR_OWNER_TEAM_ID,
+  isLocalEmulatorOnboardingEnabledInConfig,
   isLocalEmulatorEnabled,
   readConfigFromFile,
   resolveEmulatorPath,
-  writeConfigToFile,
+  writeShowOnboardingConfigToFile,
 } from "@/lib/local-emulator";
 import { DEFAULT_BRANCH_ID, getSoleTenancyFromProjectBranch } from "@/lib/tenancies";
 import { getPrismaClientForTenancy, globalPrismaClient } from "@/prisma-client";
 import { createSmartRouteHandler } from "@/route-handlers/smart-route-handler";
-import { clientOrHigherAuthTypeSchema, yupNumber, yupObject, yupString } from "@stackframe/stack-shared/dist/schema-fields";
+import {
+  clientOrHigherAuthTypeSchema,
+  projectOnboardingStatusSchema,
+  projectOnboardingStatusValues,
+  type ProjectOnboardingStatus,
+  yupBoolean,
+  yupNumber,
+  yupObject,
+  yupString,
+} from "@stackframe/stack-shared/dist/schema-fields";
 import { generateSecureRandomString } from "@stackframe/stack-shared/dist/utils/crypto";
 import { StackAssertionError, StatusError } from "@stackframe/stack-shared/dist/utils/errors";
 import { generateUuid } from "@stackframe/stack-shared/dist/utils/uuids";
@@ -23,6 +33,10 @@ type LocalEmulatorProjectMappingRow = {
   projectId: string,
 };
 
+function isProjectOnboardingStatus(value: string): value is ProjectOnboardingStatus {
+  return projectOnboardingStatusValues.some((status) => status === value);
+}
+
 async function assertLocalEmulatorOwnerTeamReadiness() {
   const internalTenancy = await getSoleTenancyFromProjectBranch("internal", DEFAULT_BRANCH_ID);
   const internalPrisma = await getPrismaClientForTenancy(internalTenancy);
@@ -177,6 +191,66 @@ async function getOrCreateCredentials(projectId: string) {
   };
 }
 
+async function syncLocalEmulatorOnboardingStatus(projectId: string, showOnboarding: boolean): Promise<ProjectOnboardingStatus> {
+  const onboardingStateColumnExistsRows = await globalPrismaClient.$queryRaw<Array<{ exists: boolean }>>(Prisma.sql`
+    SELECT EXISTS (
+      SELECT 1
+      FROM information_schema.columns
+      WHERE table_schema = 'public'
+        AND table_name = 'Project'
+        AND column_name = 'onboardingState'
+    ) AS "exists"
+  `);
+  const onboardingStateColumnExists = onboardingStateColumnExistsRows[0]?.exists === true;
+
+  const rows = await globalPrismaClient.$queryRaw<Array<{ onboardingStatus: string }>>(Prisma.sql`
+    SELECT "onboardingStatus"
+    FROM "Project"
+    WHERE "id" = ${projectId}
+    LIMIT 1
+  `);
+  const row = rows.length > 0 ? rows[0] : undefined;
+  if (!row) {
+    throw new StackAssertionError("Local emulator project not found while syncing onboarding state.", { projectId });
+  }
+  if (!isProjectOnboardingStatus(row.onboardingStatus)) {
+    throw new StackAssertionError("Project onboarding status in DB is invalid.", {
+      projectId,
+      onboardingStatus: row.onboardingStatus,
+    });
+  }
+  const currentOnboardingStatus = row.onboardingStatus;
+
+  if (!showOnboarding) {
+    if (onboardingStateColumnExists) {
+      await globalPrismaClient.$executeRaw(Prisma.sql`
+        UPDATE "Project"
+        SET "onboardingStatus" = 'completed',
+            "onboardingState" = NULL
+        WHERE "id" = ${projectId}
+      `);
+    } else {
+      await globalPrismaClient.$executeRaw(Prisma.sql`
+        UPDATE "Project"
+        SET "onboardingStatus" = 'completed'
+        WHERE "id" = ${projectId}
+      `);
+    }
+    return "completed";
+  }
+
+  if (currentOnboardingStatus === "completed") {
+    await globalPrismaClient.$executeRaw(Prisma.sql`
+      UPDATE "Project"
+      SET "onboardingStatus" = 'config_choice'
+      WHERE "id" = ${projectId}
+    `);
+    return "config_choice";
+  }
+
+  return currentOnboardingStatus;
+}
+
 export const POST = createSmartRouteHandler({
   metadata: {
     hidden: true,
@@ -205,6 +279,8 @@ export const POST = createSmartRouteHandler({
       secret_server_key: yupString().defined(),
       super_secret_admin_key: yupString().defined(),
       branch_config_override_string: yupString().defined(),
+      onboarding_status: projectOnboardingStatusSchema.defined(),
+      onboarding_outstanding: yupBoolean().defined(),
     }).defined(),
   }),
   handler: async (req) => {
@@ -230,15 +306,17 @@ export const POST = createSmartRouteHandler({
       throw new StatusError(StatusError.BadRequest, `Config file not found: ${absoluteFilePath}`);
     }
 
-    // If the file is empty, write a default config
+    // If the file is empty, write the onboarding sentinel config.
     const fileContent = await fs.readFile(resolvedFilePath, "utf-8");
     if (fileContent.trim() === "") {
-      await writeConfigToFile(absoluteFilePath, {});
+      await writeShowOnboardingConfigToFile(absoluteFilePath);
     }
 
     await assertLocalEmulatorOwnerTeamReadiness();
 
     const { projectId } = await getOrCreateLocalEmulatorProjectId(absoluteFilePath);
+    const showOnboarding = await isLocalEmulatorOnboardingEnabledInConfig(absoluteFilePath);
+    const onboardingStatus = await syncLocalEmulatorOnboardingStatus(projectId, showOnboarding);
     const credentials = await getOrCreateCredentials(projectId);
     const fileConfig = await readConfigFromFile(absoluteFilePath);
 
@@ -251,6 +329,8 @@ export const POST = createSmartRouteHandler({
         secret_server_key: credentials.secretServerKey,
         super_secret_admin_key: credentials.superSecretAdminKey,
         branch_config_override_string: JSON.stringify(fileConfig),
+        onboarding_status: onboardingStatus,
+        onboarding_outstanding: onboardingStatus !== "completed",
       },
     };
   },
diff --git a/apps/backend/src/lib/local-emulator.test.ts b/apps/backend/src/lib/local-emulator.test.ts
index bded64af07..efd23a1423 100644
--- a/apps/backend/src/lib/local-emulator.test.ts
+++ b/apps/backend/src/lib/local-emulator.test.ts
@@ -4,8 +4,10 @@ import path from "path";
 import { afterEach, describe, expect, it, vi } from "vitest";
 import {
   LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV,
+  isLocalEmulatorOnboardingEnabledInConfig,
   readConfigFromFile,
   writeConfigToFile,
+  writeShowOnboardingConfigToFile,
 } from "./local-emulator";
 
 describe("local emulator config", () => {
@@ -38,12 +40,20 @@ describe("local emulator config", () => {
     await expect(readConfigFromFile("/irrelevant/path/stack.config.ts")).resolves.toEqual({});
   });
 
+  it("treats show-onboarding config as an empty config override", async () => {
+    const content = `export const config = "show-onboarding";\n`;
+    vi.stubEnv("STACK_LOCAL_EMULATOR_CONFIG_CONTENT", Buffer.from(content).toString("base64"));
+
+    await expect(readConfigFromFile("/irrelevant/path/stack.config.ts")).resolves.toEqual({});
+    await expect(isLocalEmulatorOnboardingEnabledInConfig("/irrelevant/path/stack.config.ts")).resolves.toBe(true);
+  });
+
   it("throws when the config module does not export config", async () => {
     const content = `export default { auth: { allowLocalhost: true } };\n`;
     vi.stubEnv("STACK_LOCAL_EMULATOR_CONFIG_CONTENT", Buffer.from(content).toString("base64"));
 
     await expect(readConfigFromFile("/irrelevant/path/stack.config.ts")).rejects.toThrow(
-      "Invalid config in /irrelevant/path/stack.config.ts. The file must export a 'config' object."
+      "Invalid config in /irrelevant/path/stack.config.ts. The file must export a 'config' object or \"show-onboarding\"."
     );
   });
 
@@ -81,6 +91,22 @@ describe("local emulator config", () => {
     );
   });
 
+  it("writes show-onboarding config files to the host mount", async () => {
+    const hostMountRoot = await fs.mkdtemp(path.join(os.tmpdir(), "stack-host-mount-"));
+    const absoluteFilePath = "/Users/foo/project/stack.config.ts";
+    const mountedParentPath = path.join(hostMountRoot, "/Users/foo/project");
+    const mountedFilePath = path.join(hostMountRoot, absoluteFilePath);
+    await fs.mkdir(mountedParentPath, { recursive: true });
+
+    vi.stubEnv(LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV, hostMountRoot);
+
+    await writeShowOnboardingConfigToFile(absoluteFilePath);
+
+    await expect(fs.readFile(mountedFilePath, "utf-8")).resolves.toBe(
+      `import type { StackConfig } from "@stackframe/js";\n\nexport const config: StackConfig = "show-onboarding";\n`
+    );
+  });
+
   it("fails loudly when the QEMU host mount root is configured but unavailable", async () => {
     const hostMountRoot = await fs.mkdtemp(path.join(os.tmpdir(), "stack-host-mount-"));
     vi.stubEnv(LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV, hostMountRoot);
diff --git a/apps/backend/src/lib/local-emulator.ts b/apps/backend/src/lib/local-emulator.ts
index c56379d47d..2f2e5f7011 100644
--- a/apps/backend/src/lib/local-emulator.ts
+++ b/apps/backend/src/lib/local-emulator.ts
@@ -17,6 +17,9 @@ export const LOCAL_EMULATOR_ENV_CONFIG_BLOCKED_MESSAGE =
 export const LOCAL_EMULATOR_ONLY_ENDPOINT_MESSAGE =
   "This endpoint is only available in local emulator mode (set NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR=true).";
 export const LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV = "STACK_LOCAL_EMULATOR_HOST_MOUNT_ROOT";
+export const LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE = "show-onboarding" as const;
+
+type LocalEmulatorConfigValue = Record<string, unknown> | typeof LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE;
 
 export function isLocalEmulatorEnabled() {
   return getEnvVariable("NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR", "") === "true";
@@ -54,24 +57,25 @@ export function resolveEmulatorPath(filePath: string): string {
   return filePath;
 }
 
-export async function readConfigFromFile(filePath: string): Promise<Record<string, unknown>> {
+async function readConfigContent(filePath: string): Promise<string> {
   // Check for base64-encoded config content override from env var
   const envContent = getEnvVariable("STACK_LOCAL_EMULATOR_CONFIG_CONTENT", "");
-  let content: string;
   if (envContent) {
-    content = Buffer.from(envContent, "base64").toString("utf-8");
-  } else {
-    const resolvedPath = resolveEmulatorPath(filePath);
-    try {
-      content = await fs.readFile(resolvedPath, "utf-8");
-    } catch (e: any) {
-      if (e?.code === "ENOENT") {
-        return {};
-      }
-      throw e;
+    return Buffer.from(envContent, "base64").toString("utf-8");
+  }
+  const resolvedPath = resolveEmulatorPath(filePath);
+  try {
+    return await fs.readFile(resolvedPath, "utf-8");
+  } catch (e: any) {
+    if (e?.code === "ENOENT") {
+      return "";
     }
+    throw e;
   }
+}
 
+async function readConfigValueFromFile(filePath: string): Promise<LocalEmulatorConfigValue> {
+  const content = await readConfigContent(filePath);
   if (content.trim() === "") {
     return {};
   }
@@ -79,8 +83,24 @@ export async function readConfigFromFile(filePath: string): Promise<Record<strin
   const jiti = createJiti(import.meta.url, { cache: false });
   const mod = jiti.evalModule(content, { filename: filePath }) as Record<string, unknown>;
   const config = mod.config;
+  if (config === LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE) {
+    return config;
+  }
   if (!isValidConfig(config)) {
-    throw new StatusError(StatusError.BadRequest, `Invalid config in ${filePath}. The file must export a 'config' object.`);
+    throw new StatusError(StatusError.BadRequest, `Invalid config in ${filePath}. The file must export a 'config' object or "show-onboarding".`);
+  }
+  return config;
+}
+
+export async function isLocalEmulatorOnboardingEnabledInConfig(filePath: string): Promise<boolean> {
+  const config = await readConfigValueFromFile(filePath);
+  return config === LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE;
+}
+
+export async function readConfigFromFile(filePath: string): Promise<Record<string, unknown>> {
+  const config = await readConfigValueFromFile(filePath);
+  if (config === LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE) {
+    return {};
   }
   return config;
 }
@@ -102,3 +122,21 @@ export async function writeConfigToFile(filePath: string, config: Record<string,
   const content = renderConfigFileContent(config, importPackage);
   await fs.writeFile(resolvedPath, content, "utf-8");
 }
+
+export async function writeShowOnboardingConfigToFile(filePath: string): Promise<void> {
+  const resolvedPath = resolveEmulatorPath(filePath);
+  const dir = path.dirname(resolvedPath);
+  const hostMountRoot = getEnvVariable(LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV, "");
+  if (hostMountRoot) {
+    try {
+      await fs.access(dir);
+    } catch {
+      throw new Error(`Local emulator host mount root ${hostMountRoot} is configured but the parent directory for ${filePath} is not available at ${dir}. Ensure the host filesystem is mounted correctly.`);
+    }
+  } else {
+    await fs.mkdir(dir, { recursive: true });
+  }
+  const importPackage = detectImportPackageFromDir(dir) ?? "@stackframe/js";
+  const content = `import type { StackConfig } from "${importPackage}";\n\nexport const config: StackConfig = "show-onboarding";\n`;
+  await fs.writeFile(resolvedPath, content, "utf-8");
+}
diff --git a/apps/backend/src/lib/projects.tsx b/apps/backend/src/lib/projects.tsx
index c654691781..d839314b9b 100644
--- a/apps/backend/src/lib/projects.tsx
+++ b/apps/backend/src/lib/projects.tsx
@@ -55,6 +55,13 @@ export function getProjectQuery(projectId: string): RawQuery<Promise<Omit<Projec
         return null;
       }
       const row = queryResult[0];
+      const onboardingState = row.onboardingState;
+      if (onboardingState != null && (typeof onboardingState !== "object" || Array.isArray(onboardingState))) {
+        throw new StackAssertionError("Expected Project.onboardingState to be an object or null.", {
+          projectId,
+          onboardingState,
+        });
+      }
       return {
         id: row.id,
         display_name: row.displayName,
@@ -67,6 +74,7 @@ export function getProjectQuery(projectId: string): RawQuery<Promise<Omit<Projec
         is_production_mode: row.isProductionMode,
         owner_team_id: row.ownerTeamId,
         onboarding_status: row.onboardingStatus,
+        onboarding_state: onboardingState ?? undefined,
       };
     },
   };
@@ -102,16 +110,24 @@ export async function createOrUpdateProjectWithLegacyConfig(
   }
 
   const [projectId, branchId] = await retryTransaction(globalPrismaClient, async (tx) => {
-    const onboardingStatusColumnExistsRows = await tx.$queryRaw<Array<{ exists: boolean }>>`
+    const onboardingColumnExistsRows = await tx.$queryRaw<Array<{ onboardingStatusExists: boolean, onboardingStateExists: boolean }>>`
       SELECT EXISTS (
         SELECT 1
         FROM information_schema.columns
         WHERE table_schema = 'public'
           AND table_name = 'Project'
           AND column_name = 'onboardingStatus'
-      ) AS "exists"
+      ) AS "onboardingStatusExists",
+      EXISTS (
+        SELECT 1
+        FROM information_schema.columns
+        WHERE table_schema = 'public'
+          AND table_name = 'Project'
+          AND column_name = 'onboardingState'
+      ) AS "onboardingStateExists"
     `;
-    const onboardingStatusColumnExists = onboardingStatusColumnExistsRows[0]?.exists === true;
+    const onboardingStatusColumnExists = onboardingColumnExistsRows[0]?.onboardingStatusExists === true;
+    const onboardingStateColumnExists = onboardingColumnExistsRows[0]?.onboardingStateExists === true;
 
     let project: Prisma.ProjectGetPayload<{}>;
     let branchId: string;
@@ -176,6 +192,17 @@ export async function createOrUpdateProjectWithLegacyConfig(
       branchId = options.branchId;
     }
 
+    if (onboardingStateColumnExists && options.data.onboarding_state !== undefined) {
+      const onboardingStateString = options.data.onboarding_state == null
+        ? null
+        : JSON.stringify(options.data.onboarding_state);
+      await tx.$executeRaw`
+        UPDATE "Project"
+        SET "onboardingState" = ${onboardingStateString}::jsonb
+        WHERE "id" = ${project.id}
+      `;
+    }
+
     return [project.id, branchId];
   });
 
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/content.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/content.tsx
index 9f8fb9b2b9..1c342ef581 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/content.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/content.tsx
@@ -34,7 +34,9 @@ import {
   beginPendingAction,
   endPendingAction,
   getStackAppInternals,
+  isProjectOnboardingState,
   isProjectOnboardingStatus,
+  type ProjectOnboardingState,
 } from "./shared";
 
 export default function PageClient() {
@@ -54,6 +56,7 @@ export default function PageClient() {
   const mode = searchParams.get("mode");
 
   const [projectStatuses, setProjectStatuses] = useState<Map<string, ProjectOnboardingStatus>>(new Map());
+  const [projectOnboardingStates, setProjectOnboardingStates] = useState<Map<string, ProjectOnboardingState | null>>(new Map());
   const [loadingStatuses, setLoadingStatuses] = useState(true);
   const [projectName, setProjectName] = useState(displayNameFromSearch ?? "");
   const [selectedTeamId, setSelectedTeamId] = useState<string | null>(null);
@@ -113,6 +116,7 @@ export default function PageClient() {
         }
 
         const statusMap = new Map<string, ProjectOnboardingStatus>();
+        const onboardingStateMap = new Map<string, ProjectOnboardingState | null>();
         for (const item of body.items) {
           if (item == null || typeof item !== "object" || !("id" in item) || typeof item.id !== "string") {
             continue;
@@ -123,10 +127,17 @@ export default function PageClient() {
             throw new Error(`Project ${item.id} returned an invalid onboarding status.`);
           }
           statusMap.set(item.id, onboardingStatus);
+
+          const onboardingState = "onboarding_state" in item ? item.onboarding_state : null;
+          if (onboardingState != null && !isProjectOnboardingState(onboardingState)) {
+            throw new Error(`Project ${item.id} returned an invalid onboarding state.`);
+          }
+          onboardingStateMap.set(item.id, onboardingState);
         }
 
         if (!cancelled) {
           setProjectStatuses(statusMap);
+          setProjectOnboardingStates(onboardingStateMap);
         }
       } finally {
         if (!cancelled) {
@@ -154,6 +165,13 @@ export default function PageClient() {
     return projectStatuses.get(selectedProjectId) ?? null;
   }, [projectStatuses, selectedProjectId]);
 
+  const selectedProjectOnboardingState = useMemo(() => {
+    if (selectedProjectId == null) {
+      return null;
+    }
+    return projectOnboardingStates.get(selectedProjectId) ?? null;
+  }, [projectOnboardingStates, selectedProjectId]);
+
   useEffect(() => {
     if (selectedProject == null || loadingStatuses || selectedProjectStatus !== "completed") {
       return;
@@ -190,7 +208,33 @@ export default function PageClient() {
     await appInternals.refreshOwnedProjects();
   };
 
-  if (isLocalEmulator) {
+  const setSelectedProjectOnboardingState = async (project: AdminOwnedProject, onboardingState: ProjectOnboardingState | null) => {
+    const projectInternals = getStackAppInternals(project.app);
+
+    const response = await projectInternals.sendRequest(
+      "/internal/projects/current",
+      {
+        method: "PATCH",
+        headers: {
+          "content-type": "application/json",
+        },
+        body: JSON.stringify({ onboarding_state: onboardingState }),
+      },
+      "admin",
+    );
+
+    if (!response.ok) {
+      throw new Error(`Failed to update onboarding state: ${response.status} ${await response.text()}`);
+    }
+
+    setProjectOnboardingStates((previous) => {
+      const next = new Map(previous);
+      next.set(project.id, onboardingState);
+      return next;
+    });
+  };
+
+  if (isLocalEmulator && selectedProjectId == null) {
     return (
       <div className="w-full flex-grow flex items-center justify-center p-4">
         <div className="max-w-lg w-full rounded-lg border border-border p-6 space-y-4">
@@ -344,6 +388,11 @@ export default function PageClient() {
                         next.set(newProject.id, "config_choice");
                         return next;
                       });
+                      setProjectOnboardingStates((previous) => {
+                        const next = new Map(previous);
+                        next.set(newProject.id, null);
+                        return next;
+                      });
 
                       if (redirectToNeonConfirmWith != null) {
                         const confirmSearchParams = new URLSearchParams(redirectToNeonConfirmWith);
@@ -455,9 +504,12 @@ export default function PageClient() {
       <ProjectOnboardingWizard
         project={selectedProject}
         status={selectedProjectStatus ?? "config_choice"}
+        onboardingState={selectedProjectOnboardingState}
         mode={mode}
         setMode={(nextMode) => updateSearchParams({ mode: nextMode })}
         setStatus={(nextStatus) => setSelectedProjectStatus(selectedProject, nextStatus)}
+        setOnboardingState={(nextState) => setSelectedProjectOnboardingState(selectedProject, nextState)}
+        clearOnboardingState={() => setSelectedProjectOnboardingState(selectedProject, null)}
         onComplete={() => {
           router.push(`/projects/${encodeURIComponent(selectedProject.id)}`);
         }}
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx
index aa55dd95cc..da1ea3d167 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx
@@ -77,6 +77,10 @@ vi.mock("@/components/ui", () => ({
   cn: (...classNames: Array<string | false | null | undefined>) => classNames.filter(Boolean).join(" "),
 }));
 
+vi.mock("@/lib/env", () => ({
+  getPublicEnvVar: () => "false",
+}));
+
 vi.mock("@/lib/config-update", () => ({
   useUpdateConfig: () => vi.fn(async () => true),
 }));
@@ -183,9 +187,12 @@ describe("ProjectOnboardingWizard", () => {
       <ProjectOnboardingWizard
         project={project as never}
         status="payments_setup"
+        onboardingState={null}
         mode={null}
         setMode={vi.fn()}
         setStatus={setStatus}
+        setOnboardingState={vi.fn(async () => {})}
+        clearOnboardingState={vi.fn(async () => {})}
         onComplete={onComplete}
       />,
     );
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx
index 3baca08a41..c3b5a882ed 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx
@@ -17,6 +17,7 @@ import {
   TooltipProvider,
   Typography,
 } from "@/components/ui";
+import { getPublicEnvVar } from "@/lib/env";
 import { useUpdateConfig } from "@/lib/config-update";
 import {
   ArrowsClockwiseIcon,
@@ -30,6 +31,7 @@ import {
 } from "@phosphor-icons/react";
 import { AdminOwnedProject, AuthPage } from "@stackframe/stack";
 import { type AppId } from "@stackframe/stack-shared/dist/apps/apps-config";
+import { type EnvironmentConfigOverrideOverride } from "@stackframe/stack-shared/dist/config/schema";
 import { projectOnboardingStatusValues, type ProjectOnboardingStatus } from "@stackframe/stack-shared/dist/schema-fields";
 import { allProviders } from "@stackframe/stack-shared/dist/utils/oauth";
 import { runAsynchronouslyWithAlert } from "@stackframe/stack-shared/dist/utils/promises";
@@ -49,9 +51,15 @@ import {
   deriveInitialApps,
   deriveInitialSignInMethods,
   getStepIndex,
+  normalizeProjectOnboardingState,
+  createProjectOnboardingState,
+  OAUTH_SIGN_IN_METHODS,
+  type OnboardingConfigChoice,
+  type OnboardingPaymentsCountry,
   orderedAppIds,
   PAYMENT_COUNTRY_OPTIONS,
   PRIMARY_APP_IDS,
+  type ProjectOnboardingState,
   REQUIRED_APP_IDS,
   SIGN_IN_METHODS,
   type SignInMethod,
@@ -63,28 +71,47 @@ const PROJECT_ONBOARDING_STATUSES = projectOnboardingStatusValues;
 export function ProjectOnboardingWizard(props: {
   project: AdminOwnedProject,
   status: ProjectOnboardingStatus,
+  onboardingState: ProjectOnboardingState | null,
   mode: string | null,
   setMode: (mode: string | null) => void,
   setStatus: (status: ProjectOnboardingStatus) => Promise<void>,
+  setOnboardingState: (state: ProjectOnboardingState) => Promise<void>,
+  clearOnboardingState: () => Promise<void>,
   onComplete: () => void,
 }) {
   const router = useRouter();
-  const { project, status, setMode, setStatus, onComplete } = props;
+  const { project, status, onboardingState, setMode, setStatus, setOnboardingState, clearOnboardingState, onComplete } = props;
+  const isLocalEmulator = getPublicEnvVar("NEXT_PUBLIC_STACK_IS_LOCAL_EMULATOR") === "true";
   const completeConfig = project.useConfig();
   const updateConfig = useUpdateConfig();
   const setProjectOnboardingStatus = setStatus;
   const finishProjectOnboarding = onComplete;
+  const deriveCurrentOnboardingState = useCallback((onboardingStatus: ProjectOnboardingStatus): ProjectOnboardingState => {
+    const defaultState = createProjectOnboardingState({
+      selectedConfigChoice: "create-new",
+      selectedApps: deriveInitialApps(completeConfig, onboardingStatus),
+      selectedSignInMethods: deriveInitialSignInMethods(project, onboardingStatus),
+      selectedEmailThemeId: completeConfig.emails.selectedThemeId,
+      selectedPaymentsCountry: "US",
+      localEmulator: isLocalEmulator,
+    });
+    if (onboardingState == null) {
+      return defaultState;
+    }
+    return normalizeProjectOnboardingState(onboardingState, { localEmulator: isLocalEmulator });
+  }, [completeConfig, isLocalEmulator, onboardingState, project]);
+  const initialOnboardingState = deriveCurrentOnboardingState(status);
   const [saving, setSaving] = useState(false);
-  const [selectedApps, setSelectedApps] = useState<Set<AppId>>(() => deriveInitialApps(completeConfig, status));
-  const [signInMethods, setSignInMethods] = useState<Set<SignInMethod>>(() => deriveInitialSignInMethods(project, status));
+  const [selectedApps, setSelectedApps] = useState<Set<AppId>>(() => new Set(initialOnboardingState.selected_apps));
+  const [signInMethods, setSignInMethods] = useState<Set<SignInMethod>>(() => new Set(initialOnboardingState.selected_sign_in_methods));
   const [trustedDomain, setTrustedDomain] = useState("");
   const [domainHandlerPath, setDomainHandlerPath] = useState("/handler");
   const [managedSubdomain, setManagedSubdomain] = useState("");
   const [managedSenderLocalPart, setManagedSenderLocalPart] = useState("");
   const [managedDomainSetupStatus, setManagedDomainSetupStatus] = useState<string | null>(null);
-  const [selectedEmailThemeId, setSelectedEmailThemeId] = useState(completeConfig.emails.selectedThemeId);
-  const [selectedPaymentsCountry, setSelectedPaymentsCountry] = useState("US");
-  const [selectedConfigChoice, setSelectedConfigChoice] = useState<"create-new" | "link-existing">("create-new");
+  const [selectedEmailThemeId, setSelectedEmailThemeId] = useState<string | null>(initialOnboardingState.selected_email_theme_id);
+  const [selectedPaymentsCountry, setSelectedPaymentsCountry] = useState<OnboardingPaymentsCountry>(initialOnboardingState.selected_payments_country);
+  const [selectedConfigChoice, setSelectedConfigChoice] = useState<OnboardingConfigChoice>(initialOnboardingState.selected_config_choice);
   const [authSetupMobileTab, setAuthSetupMobileTab] = useState<"methods" | "preview">("methods");
   const [domainSetupAutoAdvanceError, setDomainSetupAutoAdvanceError] = useState<string | null>(null);
   const [domainSetupAutoAdvancing, setDomainSetupAutoAdvancing] = useState(false);
@@ -107,8 +134,9 @@ export function ProjectOnboardingWizard(props: {
     }
     previousProjectId.current = project.id;
 
-    setSelectedApps(deriveInitialApps(completeConfig, status));
-    setSignInMethods(deriveInitialSignInMethods(project, status));
+    const onboardingState = deriveCurrentOnboardingState(status);
+    setSelectedApps(new Set(onboardingState.selected_apps));
+    setSignInMethods(new Set(onboardingState.selected_sign_in_methods));
 
     const trustedDomains = Object.values(completeConfig.domains.trustedDomains)
       .filter((entry) => entry.baseUrl != null)
@@ -129,17 +157,18 @@ export function ProjectOnboardingWizard(props: {
     const serverConfig = completeConfig.emails.server;
     setManagedSubdomain(serverConfig.managedSubdomain ?? "");
     setManagedSenderLocalPart(serverConfig.managedSenderLocalPart ?? "");
-    setSelectedEmailThemeId(completeConfig.emails.selectedThemeId);
+    setSelectedEmailThemeId(onboardingState.selected_email_theme_id);
     setManagedDomainSetupStatus(null);
-    setSelectedConfigChoice("create-new");
+    setSelectedConfigChoice(onboardingState.selected_config_choice);
+    setSelectedPaymentsCountry(onboardingState.selected_payments_country);
     setAuthSetupMobileTab("methods");
     setDomainSetupAutoAdvanceError(null);
     setDomainSetupAutoAdvancing(false);
     paymentsAutoCompletingRef.current = false;
-  }, [completeConfig, project, project.id, status]);
+  }, [completeConfig, deriveCurrentOnboardingState, project, project.id, status]);
 
   const emailThemes = project.app.useEmailThemes();
-  const isLinkExistingMode = props.mode === "link-existing";
+  const isLinkExistingMode = !isLocalEmulator && props.mode === "link-existing";
   const paymentsAppEnabledInConfig = completeConfig.apps.installed.payments?.enabled === true;
   const includePayments = (
     status === "payments_setup"
@@ -233,12 +262,118 @@ export function ProjectOnboardingWizard(props: {
     });
   };
 
+  const buildOnboardingState = useCallback((): ProjectOnboardingState => {
+    return createProjectOnboardingState({
+      selectedConfigChoice,
+      selectedApps,
+      selectedSignInMethods: signInMethods,
+      selectedEmailThemeId: selectedEmailThemeId ?? completeConfig.emails.selectedThemeId,
+      selectedPaymentsCountry,
+      localEmulator: isLocalEmulator,
+    });
+  }, [completeConfig.emails.selectedThemeId, isLocalEmulator, selectedApps, selectedConfigChoice, selectedEmailThemeId, selectedPaymentsCountry, signInMethods]);
+
+  const persistOnboardingState = useCallback(async () => {
+    await setOnboardingState(buildOnboardingState());
+  }, [buildOnboardingState, setOnboardingState]);
+
+  const buildBranchConfigUpdate = useCallback(() => {
+    const emailThemeId = selectedEmailThemeId ?? completeConfig.emails.selectedThemeId;
+    const configUpdate: EnvironmentConfigOverrideOverride = {
+      "auth.password.allowSignIn": signInMethods.has("credential"),
+      "auth.otp.allowSignIn": signInMethods.has("magicLink"),
+      "auth.passkey.allowSignIn": signInMethods.has("passkey"),
+      "emails.selectedThemeId": emailThemeId,
+    };
+    for (const appId of ALL_APP_IDS) {
+      configUpdate[`apps.installed.${appId}.enabled`] = selectedApps.has(appId);
+    }
+    if (isLocalEmulator) {
+      configUpdate["auth.oauth.providers.google"] = signInMethods.has("google") ? {
+        type: "google",
+        allowSignIn: true,
+        allowConnectedAccounts: true,
+      } : null;
+      configUpdate["auth.oauth.providers.github"] = signInMethods.has("github") ? {
+        type: "github",
+        allowSignIn: true,
+        allowConnectedAccounts: true,
+      } : null;
+      configUpdate["auth.oauth.providers.microsoft"] = signInMethods.has("microsoft") ? {
+        type: "microsoft",
+        allowSignIn: true,
+        allowConnectedAccounts: true,
+      } : null;
+    }
+    return configUpdate;
+  }, [completeConfig.emails.selectedThemeId, isLocalEmulator, selectedApps, selectedEmailThemeId, signInMethods]);
+
+  const buildEnvironmentOAuthConfigUpdate = useCallback(() => {
+    return {
+      "auth.oauth.providers.google": signInMethods.has("google") ? {
+        type: "google",
+        isShared: true,
+        allowSignIn: true,
+        allowConnectedAccounts: true,
+      } : null,
+      "auth.oauth.providers.github": signInMethods.has("github") ? {
+        type: "github",
+        isShared: true,
+        allowSignIn: true,
+        allowConnectedAccounts: true,
+      } : null,
+      "auth.oauth.providers.microsoft": signInMethods.has("microsoft") ? {
+        type: "microsoft",
+        isShared: true,
+        allowSignIn: true,
+        allowConnectedAccounts: true,
+      } : null,
+    };
+  }, [signInMethods]);
+
   const finalizeOnboarding = useCallback(async () => {
     await runWithSaving(async () => {
+      if (!isLinkExistingMode) {
+        await persistOnboardingState();
+
+        const branchConfigUpdated = await updateConfig({
+          adminApp: props.project.app,
+          configUpdate: buildBranchConfigUpdate(),
+          pushable: true,
+        });
+        if (!branchConfigUpdated) {
+          return;
+        }
+
+        if (!isLocalEmulator) {
+          const providersUpdated = await updateConfig({
+            adminApp: props.project.app,
+            configUpdate: buildEnvironmentOAuthConfigUpdate(),
+            pushable: false,
+          });
+          if (!providersUpdated) {
+            return;
+          }
+        }
+      }
+
       await setProjectOnboardingStatus("completed");
+      await clearOnboardingState();
       finishProjectOnboarding();
     });
-  }, [finishProjectOnboarding, runWithSaving, setProjectOnboardingStatus]);
+  }, [
+    buildBranchConfigUpdate,
+    buildEnvironmentOAuthConfigUpdate,
+    finishProjectOnboarding,
+    isLinkExistingMode,
+    isLocalEmulator,
+    persistOnboardingState,
+    props.project.app,
+    clearOnboardingState,
+    runWithSaving,
+    setProjectOnboardingStatus,
+    updateConfig,
+  ]);
 
   useEffect(() => {
     if (status !== "payments_setup" || stripeAccountInfo?.details_submitted !== true || paymentsAutoCompletingRef.current) {
@@ -248,13 +383,14 @@ export function ProjectOnboardingWizard(props: {
     paymentsAutoCompletingRef.current = true;
     runAsynchronouslyWithAlert(async () => {
       try {
+        await persistOnboardingState();
         await setStatus("welcome");
       } catch (error) {
         paymentsAutoCompletingRef.current = false;
         throw error;
       }
     });
-  }, [setStatus, status, stripeAccountInfo?.details_submitted]);
+  }, [persistOnboardingState, setStatus, status, stripeAccountInfo?.details_submitted]);
 
   if (props.status === "welcome") {
     return (
@@ -267,7 +403,7 @@ export function ProjectOnboardingWizard(props: {
     );
   }
 
-  if (props.status === "config_choice" && props.mode === "link-existing") {
+  if (props.status === "config_choice" && props.mode === "link-existing" && !isLocalEmulator) {
     return (
       <LinkExistingOnboarding
         project={props.project}
@@ -294,13 +430,13 @@ export function ProjectOnboardingWizard(props: {
 
   if (props.status === "config_choice") {
     const createNewSelected = selectedConfigChoice === "create-new";
-    const linkExistingSelected = selectedConfigChoice === "link-existing";
+    const linkExistingSelected = !isLocalEmulator && selectedConfigChoice === "link-existing";
 
     return (
       <OnboardingPage
         stepKey="config-choice"
         title="Choose how you want to start"
-        subtitle="Start fresh or link an existing config."
+        subtitle={isLocalEmulator ? "Start with a new configuration from this local stack.config.ts file." : "Start fresh or link an existing config."}
         steps={timelineSteps}
         currentStep="config_choice"
         onStepClick={handleTimelineStepClick}
@@ -310,7 +446,8 @@ export function ProjectOnboardingWizard(props: {
             className="w-full rounded-full"
             loading={saving}
             onClick={() => runAsynchronouslyWithAlert(() => runWithSaving(async () => {
-              if (selectedConfigChoice === "create-new") {
+              await persistOnboardingState();
+              if (isLocalEmulator || selectedConfigChoice === "create-new") {
                 await props.setStatus("apps_selection");
               } else {
                 props.setMode("link-existing");
@@ -321,7 +458,7 @@ export function ProjectOnboardingWizard(props: {
           </DesignButton>
         }
       >
-        <div className="grid gap-4 sm:grid-cols-2">
+        <div className={cn("grid gap-4", isLocalEmulator ? "sm:grid-cols-1" : "sm:grid-cols-2")}>
           <button
             type="button"
             disabled={saving}
@@ -350,33 +487,35 @@ export function ProjectOnboardingWizard(props: {
             </div>
           </button>
 
-          <button
-            type="button"
-            disabled={saving}
-            onClick={() => setSelectedConfigChoice("link-existing")}
-            className={cn(
-              "relative flex flex-col items-center gap-6 rounded-2xl p-10 text-center transition-[box-shadow,background-color] duration-150 hover:transition-none",
-              linkExistingSelected
-                ? "bg-white ring-2 ring-blue-500/50 shadow-md dark:bg-blue-500/[0.08] dark:ring-blue-500/50 dark:shadow-none"
-                : "bg-white/50 ring-1 ring-black/[0.06] hover:ring-black/[0.10] dark:bg-background/60 dark:backdrop-blur-xl dark:ring-white/[0.06] dark:hover:ring-white/[0.10]",
-            )}
-          >
-            {linkExistingSelected && (
-              <div className="absolute right-3 top-3 flex h-5 w-5 items-center justify-center rounded-full bg-emerald-600 text-white">
-                <CheckCircleIcon className="h-4 w-4" weight="fill" />
+          {!isLocalEmulator && (
+            <button
+              type="button"
+              disabled={saving}
+              onClick={() => setSelectedConfigChoice("link-existing")}
+              className={cn(
+                "relative flex flex-col items-center gap-6 rounded-2xl p-10 text-center transition-[box-shadow,background-color] duration-150 hover:transition-none",
+                linkExistingSelected
+                  ? "bg-white ring-2 ring-blue-500/50 shadow-md dark:bg-blue-500/[0.08] dark:ring-blue-500/50 dark:shadow-none"
+                  : "bg-white/50 ring-1 ring-black/[0.06] hover:ring-black/[0.10] dark:bg-background/60 dark:backdrop-blur-xl dark:ring-white/[0.06] dark:hover:ring-white/[0.10]",
+              )}
+            >
+              {linkExistingSelected && (
+                <div className="absolute right-3 top-3 flex h-5 w-5 items-center justify-center rounded-full bg-emerald-600 text-white">
+                  <CheckCircleIcon className="h-4 w-4" weight="fill" />
+                </div>
+              )}
+              <div className={cn(
+                "rounded-xl p-4",
+                linkExistingSelected ? "bg-blue-500/15 text-blue-500" : "bg-foreground/[0.06] text-muted-foreground",
+              )}>
+                <LinkBreakIcon className="h-7 w-7" />
               </div>
-            )}
-            <div className={cn(
-              "rounded-xl p-4",
-              linkExistingSelected ? "bg-blue-500/15 text-blue-500" : "bg-foreground/[0.06] text-muted-foreground",
-            )}>
-              <LinkBreakIcon className="h-7 w-7" />
-            </div>
-            <div className="space-y-1.5">
-              <Typography className="text-base font-semibold">Link Existing Config</Typography>
-              <Typography variant="secondary" className="text-sm leading-relaxed">If you already have a Stack Auth project locally or on GitHub, link it here.</Typography>
-            </div>
-          </button>
+              <div className="space-y-1.5">
+                <Typography className="text-base font-semibold">Link Existing Config</Typography>
+                <Typography variant="secondary" className="text-sm leading-relaxed">If you already have a Stack Auth project locally or on GitHub, link it here.</Typography>
+              </div>
+            </button>
+          )}
         </div>
       </OnboardingPage>
     );
@@ -405,21 +544,7 @@ export function ProjectOnboardingWizard(props: {
             className="w-full rounded-full"
             loading={saving}
             onClick={() => runAsynchronouslyWithAlert(() => runWithSaving(async () => {
-              const appConfigUpdateEntries = new Map(
-                ALL_APP_IDS.map((appId) => [
-                  `apps.installed.${appId}.enabled`,
-                  selectedApps.has(appId),
-                ])
-              );
-
-              const configUpdated = await updateConfig({
-                adminApp: props.project.app,
-                configUpdate: Object.fromEntries(appConfigUpdateEntries),
-                pushable: true,
-              });
-              if (!configUpdated) {
-                return;
-              }
+              await persistOnboardingState();
               await props.setStatus("auth_setup");
             }))}
           >
@@ -504,6 +629,10 @@ export function ProjectOnboardingWizard(props: {
   }
 
   if (props.status === "auth_setup") {
+    const availableSignInMethods = isLocalEmulator
+      ? SIGN_IN_METHODS.filter((method) => !OAUTH_SIGN_IN_METHODS.some((oauthMethod) => oauthMethod === method.id))
+      : SIGN_IN_METHODS;
+
     return (
       <OnboardingPage
         stepKey="auth-setup"
@@ -522,50 +651,7 @@ export function ProjectOnboardingWizard(props: {
               if (signInMethods.size === 0) {
                 throw new Error("Select at least one sign-in method before continuing.");
               }
-
-              const authMethodsUpdated = await updateConfig({
-                adminApp: props.project.app,
-                configUpdate: {
-                  "auth.password.allowSignIn": signInMethods.has("credential"),
-                  "auth.otp.allowSignIn": signInMethods.has("magicLink"),
-                  "auth.passkey.allowSignIn": signInMethods.has("passkey"),
-                },
-                pushable: true,
-              });
-
-              if (!authMethodsUpdated) {
-                return;
-              }
-
-              const providersUpdated = await updateConfig({
-                adminApp: props.project.app,
-                configUpdate: {
-                  "auth.oauth.providers.google": signInMethods.has("google") ? {
-                    type: "google",
-                    isShared: true,
-                    allowSignIn: true,
-                    allowConnectedAccounts: true,
-                  } : null,
-                  "auth.oauth.providers.github": signInMethods.has("github") ? {
-                    type: "github",
-                    isShared: true,
-                    allowSignIn: true,
-                    allowConnectedAccounts: true,
-                  } : null,
-                  "auth.oauth.providers.microsoft": signInMethods.has("microsoft") ? {
-                    type: "microsoft",
-                    isShared: true,
-                    allowSignIn: true,
-                    allowConnectedAccounts: true,
-                  } : null,
-                },
-                pushable: false,
-              });
-
-              if (!providersUpdated) {
-                return;
-              }
-
+              await persistOnboardingState();
               await props.setStatus("email_theme_setup");
             }))}
           >
@@ -603,14 +689,14 @@ export function ProjectOnboardingWizard(props: {
                   Sign-in methods
                 </Typography>
                 <div className="overflow-hidden rounded-xl bg-white/90 ring-1 ring-black/[0.06] dark:bg-foreground/[0.04] dark:ring-white/[0.06]">
-                  {SIGN_IN_METHODS.map((method, index) => {
+                  {availableSignInMethods.map((method, index) => {
                     const checked = signInMethods.has(method.id);
                     return (
                       <label
                         key={method.id}
                         className={cn(
                           "flex cursor-pointer items-center justify-between gap-3 px-3 py-2.5 md:gap-4 md:px-4 md:py-3",
-                          index !== SIGN_IN_METHODS.length - 1 && "border-b border-black/[0.06] dark:border-white/[0.06]",
+                          index !== availableSignInMethods.length - 1 && "border-b border-black/[0.06] dark:border-white/[0.06]",
                         )}
                       >
                         <span className="text-sm">{method.label}</span>
@@ -675,18 +761,7 @@ export function ProjectOnboardingWizard(props: {
             className="w-full rounded-full"
             loading={saving}
             onClick={() => runAsynchronouslyWithAlert(() => runWithSaving(async () => {
-              if (selectedEmailThemeId !== completeConfig.emails.selectedThemeId) {
-                const configUpdated = await updateConfig({
-                  adminApp: props.project.app,
-                  configUpdate: {
-                    "emails.selectedThemeId": selectedEmailThemeId,
-                  },
-                  pushable: true,
-                });
-                if (!configUpdated) {
-                  return;
-                }
-              }
+              await persistOnboardingState();
 
               if (includePayments) {
                 await props.setStatus("payments_setup");
@@ -780,6 +855,7 @@ export function ProjectOnboardingWizard(props: {
             className="rounded-full px-6"
             loading={saving}
             onClick={() => runAsynchronouslyWithAlert(() => runWithSaving(async () => {
+              await persistOnboardingState();
               await props.setStatus("welcome");
             }))}
 
@@ -835,7 +911,12 @@ export function ProjectOnboardingWizard(props: {
                 <Typography className="text-xs font-medium text-muted-foreground">Country of residence</Typography>
                 <DesignSelectorDropdown
                   value={selectedPaymentsCountry}
-                  onValueChange={setSelectedPaymentsCountry}
+                  onValueChange={(value) => {
+                    if (value !== "US" && value !== "OTHER") {
+                      throw new Error(`Invalid payments country: ${value}`);
+                    }
+                    setSelectedPaymentsCountry(value);
+                  }}
                   options={PAYMENT_COUNTRY_OPTIONS.map((country) => ({ value: country.value, label: country.label }))}
                   size="md"
                 />
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts
index 6b8ac03f14..0920188f52 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts
@@ -7,6 +7,8 @@ import { stringCompare } from "@stackframe/stack-shared/dist/utils/strings";
 const PROJECT_ONBOARDING_STATUSES = projectOnboardingStatusValues;
 
 export type SignInMethod = "credential" | "magicLink" | "passkey" | "google" | "github" | "microsoft";
+export type OnboardingConfigChoice = "create-new" | "link-existing";
+export type OnboardingPaymentsCountry = "US" | "OTHER";
 
 export const SIGN_IN_METHODS: Array<{ id: SignInMethod, label: string }> = [
   { id: "credential", label: "Email & password" },
@@ -20,6 +22,15 @@ export const SIGN_IN_METHODS: Array<{ id: SignInMethod, label: string }> = [
 export const REQUIRED_APP_IDS: AppId[] = ["authentication", "emails"];
 export const PRIMARY_APP_IDS: AppId[] = ["authentication", "emails", "payments", "analytics"];
 export const ALL_APP_IDS = Object.keys(ALL_APPS) as AppId[];
+export const OAUTH_SIGN_IN_METHODS: SignInMethod[] = ["google", "github", "microsoft"];
+
+export type ProjectOnboardingState = {
+  selected_config_choice: OnboardingConfigChoice,
+  selected_apps: AppId[],
+  selected_sign_in_methods: SignInMethod[],
+  selected_email_theme_id: string | null,
+  selected_payments_country: OnboardingPaymentsCountry,
+};
 
 export type StackAppInternals = {
   sendRequest: (path: string, requestOptions: RequestInit, requestType?: "client" | "server" | "admin") => Promise<Response>,
@@ -36,6 +47,76 @@ export const PAYMENT_COUNTRY_OPTIONS = [
   { value: "OTHER", label: "Other" },
 ] as const;
 
+export function isProjectOnboardingState(value: unknown): value is ProjectOnboardingState {
+  if (value == null || typeof value !== "object" || Array.isArray(value)) {
+    return false;
+  }
+  const selectedConfigChoice = Reflect.get(value, "selected_config_choice");
+  if (selectedConfigChoice !== "create-new" && selectedConfigChoice !== "link-existing") {
+    return false;
+  }
+  const selectedApps = Reflect.get(value, "selected_apps");
+  if (!Array.isArray(selectedApps) || !selectedApps.every((entry) => ALL_APP_IDS.some((appId) => appId === entry))) {
+    return false;
+  }
+  const selectedSignInMethods = Reflect.get(value, "selected_sign_in_methods");
+  if (
+    !Array.isArray(selectedSignInMethods)
+    || !selectedSignInMethods.every((entry) => SIGN_IN_METHODS.some((method) => method.id === entry))
+  ) {
+    return false;
+  }
+  const selectedEmailThemeId = Reflect.get(value, "selected_email_theme_id");
+  if (selectedEmailThemeId !== null && typeof selectedEmailThemeId !== "string") {
+    return false;
+  }
+  const selectedPaymentsCountry = Reflect.get(value, "selected_payments_country");
+  if (selectedPaymentsCountry !== "US" && selectedPaymentsCountry !== "OTHER") {
+    return false;
+  }
+  return true;
+}
+
+export function normalizeProjectOnboardingState(
+  value: ProjectOnboardingState,
+  options?: { localEmulator: boolean },
+): ProjectOnboardingState {
+  const selectedApps = ALL_APP_IDS.filter((appId) => value.selected_apps.some((selectedAppId) => selectedAppId === appId));
+  const selectedSignInMethods = SIGN_IN_METHODS
+    .map((method) => method.id)
+    .filter((methodId) => value.selected_sign_in_methods.some((selectedMethodId) => selectedMethodId === methodId));
+  const localEmulator = options?.localEmulator === true;
+  const normalizedSignInMethods = localEmulator
+    ? selectedSignInMethods.filter((methodId) => !OAUTH_SIGN_IN_METHODS.some((oauthMethod) => oauthMethod === methodId))
+    : selectedSignInMethods;
+  return {
+    selected_config_choice: localEmulator ? "create-new" : value.selected_config_choice,
+    selected_apps: selectedApps,
+    selected_sign_in_methods: normalizedSignInMethods,
+    selected_email_theme_id: value.selected_email_theme_id,
+    selected_payments_country: value.selected_payments_country,
+  };
+}
+
+export function createProjectOnboardingState(options: {
+  selectedConfigChoice: OnboardingConfigChoice,
+  selectedApps: Set<AppId>,
+  selectedSignInMethods: Set<SignInMethod>,
+  selectedEmailThemeId: string | null,
+  selectedPaymentsCountry: OnboardingPaymentsCountry,
+  localEmulator: boolean,
+}): ProjectOnboardingState {
+  return normalizeProjectOnboardingState({
+    selected_config_choice: options.selectedConfigChoice,
+    selected_apps: ALL_APP_IDS.filter((appId) => options.selectedApps.has(appId)),
+    selected_sign_in_methods: SIGN_IN_METHODS
+      .map((method) => method.id)
+      .filter((methodId) => options.selectedSignInMethods.has(methodId)),
+    selected_email_theme_id: options.selectedEmailThemeId,
+    selected_payments_country: options.selectedPaymentsCountry,
+  }, { localEmulator: options.localEmulator });
+}
+
 export function isStackAppInternals(value: unknown): value is StackAppInternals {
   return (
     value != null
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx
index fe8427917f..65814bb9f3 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx
@@ -172,11 +172,26 @@ export default function PageClient() {
       ) {
         throw new Error("Local emulator endpoint returned an invalid response.");
       }
+      const onboardingStatus = "onboarding_status" in responseBody
+        ? responseBody.onboarding_status
+        : "completed";
+      if (!isProjectOnboardingStatus(onboardingStatus)) {
+        throw new Error("Local emulator endpoint returned an invalid onboarding status.");
+      }
 
       setOpenConfigFileDialog(false);
       setAbsoluteConfigFilePath("");
+      setProjectStatuses((previous) => {
+        const next = new Map(previous);
+        next.set(responseBody.project_id, onboardingStatus);
+        return next;
+      });
       await appInternals.refreshOwnedProjects();
-      router.push(`/projects/${encodeURIComponent(responseBody.project_id)}`);
+      if (onboardingStatus === "completed") {
+        router.push(`/projects/${encodeURIComponent(responseBody.project_id)}`);
+      } else {
+        router.push(`/new-project?project_id=${encodeURIComponent(responseBody.project_id)}`);
+      }
       await wait(2000);
     } finally {
       setOpeningConfigFile(false);
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts
index 225ab7bb4b..c4cea8669b 100644
--- a/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts
+++ b/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts
@@ -83,17 +83,70 @@ describe("local emulator project endpoint", () => {
 
     expect(response.status).toBe(200);
     expect(JSON.parse(response.body.branch_config_override_string)).toEqual({});
+    expect(response.body.onboarding_status).toBe("config_choice");
+    expect(response.body.onboarding_outstanding).toBe(true);
 
     const fileContent = await fs.readFile(filePath, "utf-8");
     expect(fileContent).toMatchInlineSnapshot(`
       deindent\`
         import type { StackConfig } from "@stackframe/js";
         
-        export const config: StackConfig = {};
+        export const config: StackConfig = "show-onboarding";
       \` + "\\n"
     `);
   });
 
+  it.runIf(isLocalEmulator)("enables onboarding iff config is show-onboarding", async ({ expect }) => {
+    const filePath = `/tmp/${randomUUID()}/stack.config.ts`;
+    await fs.mkdir(path.dirname(filePath), { recursive: true });
+    await fs.writeFile(
+      filePath,
+      `import type { StackConfig } from "@stackframe/js";\n\nexport const config: StackConfig = "show-onboarding";\n`,
+      "utf-8",
+    );
+
+    const onboardingResponse = await niceBackendFetch(LOCAL_EMULATOR_PROJECT_ENDPOINT, {
+      accessType: "admin",
+      method: "POST",
+      body: {
+        absolute_file_path: filePath,
+      },
+    });
+    expect(onboardingResponse.status).toBe(200);
+    expect(onboardingResponse.body.onboarding_status).toBe("config_choice");
+    expect(onboardingResponse.body.onboarding_outstanding).toBe(true);
+
+    await fs.writeFile(filePath, `export const config = {};\n`, "utf-8");
+    const completedResponse = await niceBackendFetch(LOCAL_EMULATOR_PROJECT_ENDPOINT, {
+      accessType: "admin",
+      method: "POST",
+      body: {
+        absolute_file_path: filePath,
+      },
+    });
+    expect(completedResponse.status).toBe(200);
+    expect(completedResponse.body.project_id).toBe(onboardingResponse.body.project_id);
+    expect(completedResponse.body.onboarding_status).toBe("completed");
+    expect(completedResponse.body.onboarding_outstanding).toBe(false);
+
+    await fs.writeFile(
+      filePath,
+      `import type { StackConfig } from "@stackframe/js";\n\nexport const config: StackConfig = "show-onboarding";\n`,
+      "utf-8",
+    );
+    const onboardingAgainResponse = await niceBackendFetch(LOCAL_EMULATOR_PROJECT_ENDPOINT, {
+      accessType: "admin",
+      method: "POST",
+      body: {
+        absolute_file_path: filePath,
+      },
+    });
+    expect(onboardingAgainResponse.status).toBe(200);
+    expect(onboardingAgainResponse.body.project_id).toBe(onboardingResponse.body.project_id);
+    expect(onboardingAgainResponse.body.onboarding_status).toBe("config_choice");
+    expect(onboardingAgainResponse.body.onboarding_outstanding).toBe(true);
+  });
+
   it.runIf(isLocalEmulator)("creates path-based projects, reuses mappings, and returns valid credentials", async ({ expect }) => {
     const pathA = await createTempConfigFile();
     const pathB = await createTempConfigFile();
@@ -110,6 +163,8 @@ describe("local emulator project endpoint", () => {
     expect(responseA1.body.secret_server_key).toMatch(/^ssk_/);
     expect(responseA1.body.super_secret_admin_key).toMatch(/^sak_/);
     expect(JSON.parse(responseA1.body.branch_config_override_string)).toEqual({});
+    expect(responseA1.body.onboarding_status).toBe("completed");
+    expect(responseA1.body.onboarding_outstanding).toBe(false);
 
     const responseA2 = await niceBackendFetch(LOCAL_EMULATOR_PROJECT_ENDPOINT, {
       accessType: "admin",
@@ -133,6 +188,8 @@ describe("local emulator project endpoint", () => {
     expect(responseB.status).toBe(200);
     expect(responseB.body.project_id).not.toBe(responseA1.body.project_id);
     expect(JSON.parse(responseB.body.branch_config_override_string)).toEqual({});
+    expect(responseB.body.onboarding_status).toBe("completed");
+    expect(responseB.body.onboarding_outstanding).toBe(false);
 
     backendContext.set({
       projectKeys: {
diff --git a/packages/stack-cli/src/commands/config-file.ts b/packages/stack-cli/src/commands/config-file.ts
index 06db12f4ba..132c36e7a6 100644
--- a/packages/stack-cli/src/commands/config-file.ts
+++ b/packages/stack-cli/src/commands/config-file.ts
@@ -7,6 +7,8 @@ import { CliError } from "../lib/errors.js";
 import type { EnvironmentConfigOverrideOverride } from "@stackframe/stack-shared/dist/config/schema";
 import { detectImportPackageFromDir, renderConfigFileContent } from "@stackframe/stack-shared/dist/config-rendering";
 
+const SHOW_ONBOARDING_STACK_CONFIG_VALUE = "show-onboarding";
+
 function isConfigOverride(value: unknown): value is EnvironmentConfigOverrideOverride {
   if (value === null || typeof value !== "object" || Array.isArray(value)) {
     return false;
@@ -15,6 +17,13 @@ function isConfigOverride(value: unknown): value is EnvironmentConfigOverrideOve
   return prototype === Object.prototype || prototype === null;
 }
 
+function parseConfigOverride(value: unknown): EnvironmentConfigOverrideOverride | null {
+  if (value === SHOW_ONBOARDING_STACK_CONFIG_VALUE) {
+    return {};
+  }
+  return isConfigOverride(value) ? value : null;
+}
+
 type BranchConfigSourceApi =
   | { type: "pushed-from-github", owner: string, repo: string, branch: string, commit_hash: string, config_file_path: string }
   | { type: "pushed-from-unknown" }
@@ -167,10 +176,10 @@ export function registerConfigCommand(program: Command) {
       const jiti = createJiti(import.meta.url);
       const configModule: { config?: unknown } = await jiti.import(filePath);
 
-      const config = configModule.config;
-      if (!isConfigOverride(config)) {
+      const config = parseConfigOverride(configModule.config);
+      if (config == null) {
         const examplePkg = detectImportPackageFromDir(path.dirname(filePath)) ?? "@stackframe/js";
-        throw new CliError(`Config file must export a plain \`config\` object. Example: import type { StackConfig } from "${examplePkg}"; export const config: StackConfig = { ... };`);
+        throw new CliError(`Config file must export a plain \`config\` object or "show-onboarding". Example: import type { StackConfig } from "${examplePkg}"; export const config: StackConfig = { ... };`);
       }
 
       const source = buildConfigPushSource(opts.configFile);
diff --git a/packages/stack-cli/src/commands/emulator.ts b/packages/stack-cli/src/commands/emulator.ts
index d52463b15b..22eee11baf 100644
--- a/packages/stack-cli/src/commands/emulator.ts
+++ b/packages/stack-cli/src/commands/emulator.ts
@@ -53,6 +53,8 @@ type EmulatorCredentials = {
   project_id: string,
   publishable_client_key: string,
   secret_server_key: string,
+  onboarding_status: string,
+  onboarding_outstanding: boolean,
 };
 
 async function fetchEmulatorCredentials(pck: string, backendPort: number, configFile: string): Promise<EmulatorCredentials> {
@@ -74,14 +76,72 @@ async function fetchEmulatorCredentials(pck: string, backendPort: number, config
     project_id: string,
     publishable_client_key: string,
     secret_server_key: string,
+    onboarding_status: string,
+    onboarding_outstanding: boolean,
   };
+  if (typeof data.project_id !== "string" || typeof data.publishable_client_key !== "string" || typeof data.secret_server_key !== "string") {
+    throw new CliError("Local emulator project endpoint returned an invalid credentials response.");
+  }
+  const onboardingStatus = typeof data.onboarding_status === "string" ? data.onboarding_status : "completed";
+  const onboardingOutstanding = typeof data.onboarding_outstanding === "boolean"
+    ? data.onboarding_outstanding
+    : onboardingStatus !== "completed";
   return {
     project_id: data.project_id,
     publishable_client_key: data.publishable_client_key,
     secret_server_key: data.secret_server_key,
+    onboarding_status: onboardingStatus,
+    onboarding_outstanding: onboardingOutstanding,
   };
 }
 
+function dashboardHostForPortPrefix(portPrefix: string): string {
+  if (portPrefix === "91") return "a.localhost";
+  if (portPrefix === "92") return "b.localhost";
+  if (portPrefix === "93") return "c.localhost";
+  return "localhost";
+}
+
+function localEmulatorDashboardBaseUrl(): string {
+  const explicit = process.env.STACK_LOCAL_EMULATOR_DASHBOARD_URL;
+  if (explicit && explicit.trim().length > 0) {
+    return explicit.replace(/\/$/, "");
+  }
+  const portPrefix = process.env.NEXT_PUBLIC_STACK_PORT_PREFIX ?? "81";
+  const host = dashboardHostForPortPrefix(portPrefix);
+  return `http://${host}:${portPrefix}01`;
+}
+
+function openUrlInBrowser(url: string): boolean {
+  try {
+    if (process.platform === "darwin") {
+      execFileSync("open", [url], { stdio: "ignore" });
+      return true;
+    }
+    if (process.platform === "win32") {
+      execFileSync("cmd", ["/c", "start", "", url], { stdio: "ignore" });
+      return true;
+    }
+    execFileSync("xdg-open", [url], { stdio: "ignore" });
+    return true;
+  } catch {
+    return false;
+  }
+}
+
+function maybeOpenOnboardingPage(credentials: EmulatorCredentials): void {
+  if (!credentials.onboarding_outstanding) {
+    return;
+  }
+  const url = `${localEmulatorDashboardBaseUrl()}/new-project?project_id=${encodeURIComponent(credentials.project_id)}`;
+  const opened = openUrlInBrowser(url);
+  if (opened) {
+    console.log(`Onboarding is still pending for project ${credentials.project_id}. Opened: ${url}`);
+  } else {
+    console.warn(`Onboarding is still pending for project ${credentials.project_id}. Open this URL manually: ${url}`);
+  }
+}
+
 function gh(args: string[]): string {
   try {
     return execFileSync("gh", args, { encoding: "utf-8", stdio: ["pipe", "pipe", "pipe"] }).trim();
@@ -245,7 +305,12 @@ export function registerEmulatorCommand(program: Command) {
       if (resolvedConfigFile) {
         const pck = await readInternalPck();
         const creds = await fetchEmulatorCredentials(pck, emulatorBackendPort(), resolvedConfigFile);
-        console.log(JSON.stringify(creds, null, 2));
+        maybeOpenOnboardingPage(creds);
+        console.log(JSON.stringify({
+          project_id: creds.project_id,
+          publishable_client_key: creds.publishable_client_key,
+          secret_server_key: creds.secret_server_key,
+        }, null, 2));
       }
     });
 
@@ -278,6 +343,7 @@ export function registerEmulatorCommand(program: Command) {
         const pck = await readInternalPck();
         const backendPort = emulatorBackendPort();
         const creds = await fetchEmulatorCredentials(pck, backendPort, resolvedConfigFile);
+        maybeOpenOnboardingPage(creds);
         const apiUrl = `http://127.0.0.1:${backendPort}`;
         childEnv.STACK_PROJECT_ID = creds.project_id;
         childEnv.NEXT_PUBLIC_STACK_PROJECT_ID = creds.project_id;
diff --git a/packages/stack-shared/src/config-authoring.test.ts b/packages/stack-shared/src/config-authoring.test.ts
index 552015c302..d3833ebbc8 100644
--- a/packages/stack-shared/src/config-authoring.test.ts
+++ b/packages/stack-shared/src/config-authoring.test.ts
@@ -12,11 +12,14 @@ const validConfig = defineStackConfig({
     },
   },
 });
+const showOnboardingConfig = defineStackConfig("show-onboarding");
 
 typeAssertExtends<typeof validConfig, StackConfig>()();
+typeAssertExtends<typeof showOnboardingConfig, StackConfig>()();
 
 it("returns its input unchanged", () => {
   expect(defineStackConfig(validConfig)).toBe(validConfig);
+  expect(defineStackConfig(showOnboardingConfig)).toBe(showOnboardingConfig);
 });
 
 defineStackConfig({
diff --git a/packages/stack-shared/src/config-authoring.ts b/packages/stack-shared/src/config-authoring.ts
index 5924b37559..2f97fe6a5b 100644
--- a/packages/stack-shared/src/config-authoring.ts
+++ b/packages/stack-shared/src/config-authoring.ts
@@ -1,6 +1,8 @@
 import type { BranchConfigNormalizedOverride } from "./config/schema";
 
-export type StackConfig = BranchConfigNormalizedOverride;
+type StackConfigObject = BranchConfigNormalizedOverride;
+export const showOnboardingStackConfigValue = "show-onboarding";
+export type StackConfig = StackConfigObject | typeof showOnboardingStackConfigValue;
 
 type StrictConfigShape<Actual, Expected> =
   Expected extends readonly unknown[]
@@ -15,7 +17,10 @@ type StrictConfigShape<Actual, Expected> =
         : Actual
       : Actual;
 
-type StrictStackConfig<T extends StackConfig> = T & StrictConfigShape<T, StackConfig>;
+type StrictStackConfig<T extends StackConfig> =
+  T extends StackConfigObject
+    ? T & StrictConfigShape<T, StackConfigObject>
+    : T;
 
 export function defineStackConfig<const T extends StackConfig>(config: StrictStackConfig<T>): T {
   return config;
diff --git a/packages/stack-shared/src/interface/crud/projects.ts b/packages/stack-shared/src/interface/crud/projects.ts
index 02bb1b68c2..d90d15546c 100644
--- a/packages/stack-shared/src/interface/crud/projects.ts
+++ b/packages/stack-shared/src/interface/crud/projects.ts
@@ -1,4 +1,5 @@
 import { CrudTypeOf, createCrud } from "../../crud";
+import { ALL_APPS } from "../../apps/apps-config";
 import * as schemaFields from "../../schema-fields";
 import { yupArray, yupObject, yupString } from "../../schema-fields";
 
@@ -31,6 +32,18 @@ const enabledOAuthProviderSchema = yupObject({
   id: schemaFields.oauthIdSchema.defined(),
 });
 
+const onboardingConfigChoiceValues = ["create-new", "link-existing"] as const;
+const onboardingSignInMethodValues = ["credential", "magicLink", "passkey", "google", "github", "microsoft"] as const;
+const onboardingPaymentsCountryValues = ["US", "OTHER"] as const;
+
+const projectOnboardingStateSchema = yupObject({
+  selected_config_choice: yupString().oneOf(onboardingConfigChoiceValues).defined(),
+  selected_apps: yupArray(yupString().oneOf(Object.keys(ALL_APPS)).defined()).defined(),
+  selected_sign_in_methods: yupArray(yupString().oneOf(onboardingSignInMethodValues).defined()).defined(),
+  selected_email_theme_id: schemaFields.emailThemeSchema.nullable().defined(),
+  selected_payments_country: yupString().oneOf(onboardingPaymentsCountryValues).defined(),
+});
+
 export const emailConfigSchema = yupObject({
   type: schemaFields.emailTypeSchema.defined(),
   host: schemaFields.yupDefinedAndNonEmptyWhen(schemaFields.emailHostSchema, {
@@ -74,6 +87,7 @@ export const projectsCrudAdminReadSchema = yupObject({
   is_production_mode: schemaFields.projectIsProductionModeSchema.defined(),
   owner_team_id: schemaFields.yupString().nullable().defined(),
   onboarding_status: schemaFields.projectOnboardingStatusSchema.defined(),
+  onboarding_state: projectOnboardingStateSchema.nullable().optional(),
   /** @deprecated */
   config: yupObject({
     allow_localhost: schemaFields.projectAllowLocalhostSchema.defined(),
@@ -126,6 +140,7 @@ export const projectsCrudAdminUpdateSchema = yupObject({
   logo_full_dark_mode_url: schemaFields.projectLogoFullDarkModeUrlSchema.nullable().optional(),
   is_production_mode: schemaFields.projectIsProductionModeSchema.optional(),
   onboarding_status: schemaFields.projectOnboardingStatusSchema.optional(),
+  onboarding_state: projectOnboardingStateSchema.nullable().optional(),
   /** @deprecated */
   config: yupObject({
     sign_up_enabled: schemaFields.projectSignUpEnabledSchema.optional(),

From bd36bc9605109bd9ee1e10ddf0f477f0c2f16519 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Mon, 20 Apr 2026 18:12:44 -0700
Subject: [PATCH 02/13] Deprecate getAuthHeaders() in favor of
 getAuthorizationHeader()

---
 .claude/CLAUDE-KNOWLEDGE.md                   |   3 +
 apps/e2e/tests/js/auth-like.test.ts           | 123 +++++++++++++++++-
 docs-mintlify/sdk/types/user.mdx              |  51 +++++++-
 docs/content/docs/sdk/types/user.mdx          |  62 +++++++--
 docs/src/components/mdx/sdk-components.tsx    |   2 +-
 examples/demo/src/app/tokens-demo/page.tsx    |  33 +++--
 .../apps/implementations/client-app-impl.ts   |  91 ++++++++++++-
 packages/template/src/lib/stack-app/common.ts |  34 +++--
 sdks/spec/src/_utilities.spec.md              |  20 ++-
 sdks/spec/src/apps/client-app.spec.md         |  21 +++
 .../spec/src/types/users/current-user.spec.md |  14 ++
 11 files changed, 407 insertions(+), 47 deletions(-)

diff --git a/.claude/CLAUDE-KNOWLEDGE.md b/.claude/CLAUDE-KNOWLEDGE.md
index 5ae2db3457..f0c53de282 100644
--- a/.claude/CLAUDE-KNOWLEDGE.md
+++ b/.claude/CLAUDE-KNOWLEDGE.md
@@ -358,3 +358,6 @@ A: API v1 requests are routed through the `v2beta1` migration. The migration wra
 
 ### Q: What's the reliable way to run targeted tests across backend, dashboard, stack-shared, and e2e at once?
 A: Run from the monorepo root with explicit file paths: `pnpm test run "<path1>" "<path2>" ...`. This works even when individual packages do not define a local `test` script. Also avoid passing an extra `run` argument to package-level `test` scripts that already execute `vitest run`.
+
+### Q: What's the new Authorization header format for Stack token forwarding?
+A: Use `getAuthorizationHeader()`, which returns `Bearer stackauth_<base64(getAuthJson())>`. The payload encodes both `accessToken` and `refreshToken`, and request-like token stores should parse this format first, with legacy `x-stack-auth` remaining as a backward-compatible fallback.
diff --git a/apps/e2e/tests/js/auth-like.test.ts b/apps/e2e/tests/js/auth-like.test.ts
index 95d278209d..f32505c99c 100644
--- a/apps/e2e/tests/js/auth-like.test.ts
+++ b/apps/e2e/tests/js/auth-like.test.ts
@@ -13,6 +13,45 @@ const signIn = async (clientApp: any) => {
   });
 };
 
+const STACK_AUTHORIZATION_VALUE_PREFIX = "stackauth_";
+
+function parseAuthorizationHeaderValue(value: string): { accessToken: string | null, refreshToken: string | null } {
+  const bearerMatch = value.match(/^Bearer\s+(.+)$/i);
+  if (bearerMatch == null) {
+    throw new Error(`Invalid authorization header format: ${value}`);
+  }
+
+  const credential = bearerMatch[1];
+  if (!credential.startsWith(STACK_AUTHORIZATION_VALUE_PREFIX)) {
+    throw new Error(`Invalid stackauth authorization credential: ${credential}`);
+  }
+
+  const encodedAuthJson = credential.slice(STACK_AUTHORIZATION_VALUE_PREFIX.length);
+  if (encodedAuthJson.length === 0) {
+    throw new Error("Missing encoded auth payload.");
+  }
+
+  const decodedAuthJson = Buffer.from(encodedAuthJson, "base64").toString("utf8");
+  const parsed: unknown = JSON.parse(decodedAuthJson);
+  if (parsed == null || typeof parsed !== "object" || Array.isArray(parsed)) {
+    throw new Error("Decoded authorization payload must be an object.");
+  }
+
+  const accessToken = Reflect.get(parsed, "accessToken");
+  const refreshToken = Reflect.get(parsed, "refreshToken");
+  if (accessToken != null && typeof accessToken !== "string") {
+    throw new Error("Decoded authorization payload contains invalid accessToken.");
+  }
+  if (refreshToken != null && typeof refreshToken !== "string") {
+    throw new Error("Decoded authorization payload contains invalid refreshToken.");
+  }
+
+  return {
+    accessToken: accessToken ?? null,
+    refreshToken: refreshToken ?? null,
+  };
+}
+
 // ============================================
 // version tests
 // ============================================
@@ -230,6 +269,29 @@ it("getAuthJson should return tokens that work for authentication", async ({ exp
   expect(serverUser!.primaryEmail).toBe("test@test.com");
 });
 
+it("getAuthorizationHeader should return a Bearer token that works for authentication", async ({ expect }) => {
+  const { clientApp, serverApp } = await createApp({});
+  await signIn(clientApp);
+
+  const authorizationHeader = await clientApp.getAuthorizationHeader();
+  expect(authorizationHeader).toBeDefined();
+  expect(authorizationHeader).not.toBeNull();
+  expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
+  const parsedAuthorizationHeader = parseAuthorizationHeaderValue(authorizationHeader!);
+  const authJson = await clientApp.getAuthJson();
+  expect(parsedAuthorizationHeader).toEqual(authJson);
+
+  const requestLike = {
+    headers: new Headers({
+      authorization: authorizationHeader!,
+    }),
+  };
+  const serverUser = await serverApp.getUser({ tokenStore: requestLike });
+
+  expect(serverUser).not.toBeNull();
+  expect(serverUser!.primaryEmail).toBe("test@test.com");
+});
+
 it("getAuthHeaders should return headers that work for authentication", async ({ expect }) => {
   const { clientApp, serverApp } = await createApp({});
   await signIn(clientApp);
@@ -277,7 +339,7 @@ it("tokens from user should match and both work for authentication", async ({ ex
 });
 
 // ============================================
-// Legacy getAuthJson / getAuthHeaders tests (deprecated but still need to work)
+// Legacy getAuthHeaders tests (deprecated but still need to work)
 // ============================================
 
 it("clientApp.getAuthJson should return auth tokens", async ({ expect }) => {
@@ -301,6 +363,35 @@ it("clientApp.getAuthJson should return null tokens when not signed in", async (
   expect(authJson.refreshToken).toBeNull();
 });
 
+it("clientApp.getAuthorizationHeader should return Bearer header value", async ({ expect }) => {
+  const { clientApp } = await createApp({});
+  await signIn(clientApp);
+
+  const authorizationHeader = await clientApp.getAuthorizationHeader();
+  expect(authorizationHeader).toBeDefined();
+  expect(authorizationHeader).not.toBeNull();
+  expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
+  expect(parseAuthorizationHeaderValue(authorizationHeader!)).toEqual(await clientApp.getAuthJson());
+});
+
+it("clientApp.getAuthorizationHeader should return null when not signed in", async ({ expect }) => {
+  const { clientApp } = await createApp({});
+
+  const authorizationHeader = await clientApp.getAuthorizationHeader();
+  expect(authorizationHeader).toBeNull();
+});
+
+it("clientApp.getAuthorizationHeader should work with tokenStore option", async ({ expect }) => {
+  const { clientApp } = await createApp({});
+  await signIn(clientApp);
+
+  const authorizationHeader = await clientApp.getAuthorizationHeader({ tokenStore: "memory" });
+  expect(authorizationHeader).toBeDefined();
+  expect(authorizationHeader).not.toBeNull();
+  expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
+  expect(parseAuthorizationHeaderValue(authorizationHeader!)).toEqual(await clientApp.getAuthJson({ tokenStore: "memory" }));
+});
+
 it("clientApp.getAuthHeaders should return x-stack-auth header", async ({ expect }) => {
   const { clientApp } = await createApp({});
   await signIn(clientApp);
@@ -374,6 +465,11 @@ it("clientApp auth methods should match user auth methods", async ({ expect }) =
   const appAuthHeaders = await clientApp.getAuthHeaders();
   const userAuthHeaders = await user.getAuthHeaders();
   expect(appAuthHeaders["x-stack-auth"]).toBe(userAuthHeaders["x-stack-auth"]);
+
+  // Compare getAuthorizationHeader results
+  const appAuthorizationHeader = await clientApp.getAuthorizationHeader();
+  const userAuthorizationHeader = await user.getAuthorizationHeader();
+  expect(appAuthorizationHeader).toBe(userAuthorizationHeader);
 });
 
 // ============================================
@@ -480,6 +576,31 @@ it("getUser should return null for request-like tokenStore with no auth cookies"
   expect(serverUser).toBeNull();
 });
 
+it("getUser should work with Authorization header in request-like tokenStore", async ({ expect }) => {
+  const { serverApp, clientApp } = await createApp({});
+  await signIn(clientApp);
+
+  const authorizationHeader = await clientApp.getAuthorizationHeader();
+  if (authorizationHeader == null) {
+    throw new Error("Expected authorization header for signed-in user.");
+  }
+  expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
+  expect(parseAuthorizationHeaderValue(authorizationHeader)).toEqual(await clientApp.getAuthJson());
+
+  const requestLike = {
+    headers: new Headers({
+      authorization: authorizationHeader,
+    }),
+  };
+
+  const serverUser = await serverApp.getUser({ tokenStore: requestLike });
+  const clientUser = await clientApp.getUser({ or: "throw" });
+
+  expect(serverUser).not.toBeNull();
+  expect(serverUser!.primaryEmail).toBe("test@test.com");
+  expect(serverUser!.id).toBe(clientUser.id);
+});
+
 it("getUser should work with x-stack-auth header in request-like tokenStore", async ({ expect }) => {
   const { serverApp, clientApp } = await createApp({});
   await signIn(clientApp);
diff --git a/docs-mintlify/sdk/types/user.mdx b/docs-mintlify/sdk/types/user.mdx
index 390020bf04..3388ea7cc1 100644
--- a/docs-mintlify/sdk/types/user.mdx
+++ b/docs-mintlify/sdk/types/user.mdx
@@ -81,6 +81,8 @@ Use `useUser()` to get `CurrentUser` (client). Use `stackServerApp.getUser()` to
   delete(): Promise<void>; //$stack-link-to:#currentuserdelete
   toClientJson(): CurrentUserCrud["Client"]["Read"]; //$stack-link-to:#currentusertoclientjson
 
+  getAuthorizationHeader(): Promise<string | null>; //$stack-link-to:#currentusergetauthorizationheader
+  useAuthorizationHeader(): string | null; //$stack-link-to:#currentuseruseauthorizationheader
   getAuthHeaders(): Promise<Record<string, string>>; //$stack-link-to:#currentusergetauthheaders
   useAuthHeaders(): Record<string, string>; //$stack-link-to:#currentuseruseauthheaders
   getAccessToken(): Promise<string | null>; //$stack-link-to:#currentusergetaccesstoken
@@ -667,10 +669,53 @@ Use `useUser()` to get `CurrentUser` (client). Use `stackServerApp.getUser()` to
 
 ## Authentication
 
+<CurrentUserSection type="currentUser" property="getAuthorizationHeader" defaultOpen={false}>
+  <MethodLayout>
+    <MethodContent>
+      Returns the HTTP `Authorization` header value in `Bearer stackauth_&lt;base64(getAuthJson())&gt;` format for authenticated requests.
+      Returns `null` if the user is not signed in.
+      If you are not using HTTP, use `getAuthJson()` instead.
+
+      <MethodReturns type="Promise<string | null>" />
+    </MethodContent>
+
+    <MethodAside>
+      <AsideSection title="Signature">
+        ```typescript
+        declare function getAuthorizationHeader(): Promise<string | null>;
+        ```
+      </AsideSection>
+    </MethodAside>
+
+  </MethodLayout>
+</CurrentUserSection>
+
+<CurrentUserSection type="currentUser" property="useAuthorizationHeader" defaultOpen={false}>
+  <MethodLayout>
+    <MethodContent>
+      React hook that returns the HTTP `Authorization` header value in `Bearer stackauth_&lt;base64(getAuthJson())&gt;` format.
+      Returns `null` if the user is not signed in.
+
+      <MethodReturns type='string | null' />
+    </MethodContent>
+
+    <MethodAside>
+      <AsideSection title="Signature">
+        ```typescript
+        declare function useAuthorizationHeader(): string | null;
+        ```
+      </AsideSection>
+    </MethodAside>
+
+  </MethodLayout>
+</CurrentUserSection>
+
 <CurrentUserSection type="currentUser" property="getAuthHeaders" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
-      Returns headers for cross-origin authenticated requests.
+      **Deprecated:** Use `getAuthorizationHeader()` instead.
+
+      Returns legacy `x-stack-auth` headers for cross-origin authenticated requests.
 
       <MethodReturns type="Promise<Record<string, string>>" />
     </MethodContent>
@@ -689,7 +734,9 @@ Use `useUser()` to get `CurrentUser` (client). Use `stackServerApp.getUser()` to
 <CurrentUserSection type="currentUser" property="useAuthHeaders" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
-      React hook that returns authentication headers for cross-origin requests.
+      **Deprecated:** Use `useAuthorizationHeader()` instead.
+
+      React hook that returns legacy `x-stack-auth` headers for cross-origin requests.
 
       <MethodReturns type='Record<string, string>' />
     </MethodContent>
diff --git a/docs/content/docs/sdk/types/user.mdx b/docs/content/docs/sdk/types/user.mdx
index 7c9c6d4da8..f9b3e1c712 100644
--- a/docs/content/docs/sdk/types/user.mdx
+++ b/docs/content/docs/sdk/types/user.mdx
@@ -32,6 +32,9 @@ code={`type CurrentUser = {
 
     update(data): Promise<void>; //$stack-link-to:#currentuserupdate
     updatePassword(data): Promise<void>; //$stack-link-to:#currentuserupdatepassword
+    getAuthorizationHeader(): Promise<string | null>; //$stack-link-to:#currentusergetauthorizationheader
+    // NEXT_LINE_PLATFORM react-like
+    ⤷ useAuthorizationHeader(): string | null; //$stack-link-to:#currentuseruseauthorizationheader
     getAuthHeaders(): Promise<Record<string, string>>; //$stack-link-to:#currentusergetauthheaders
     getAuthJson(): Promise<{ accessToken: string | null }>; //$stack-link-to:#currentusergetauthjson
     signOut([options]): Promise<void>; //$stack-link-to:#currentusersignout
@@ -1316,45 +1319,49 @@ code={`type CurrentUser = {
   </MethodLayout>
 </CollapsibleTypesSection>
 
-<CollapsibleTypesSection type="currentUser" property="getAuthHeaders" defaultOpen={false}>
+<CollapsibleTypesSection type="currentUser" property="getAuthorizationHeader" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
-      Returns headers for sending authenticated HTTP requests to external servers. Most commonly used in cross-origin
-      requests. Similar to `getAuthJson`, but specifically for HTTP requests.
+      Returns the value for the HTTP `Authorization` header for authenticated requests to external servers.
+      Most commonly used in cross-origin requests. Similar to `getAuthJson`, but specifically for HTTP requests.
 
       If you are using `tokenStore: "cookie"`, you don't need this for same-origin requests. However, most
       browsers now disable third-party cookies by default, so we must pass authentication tokens by header instead
       if the client and server are on different origins.
 
-      This function returns a header object that can be used with `fetch` or other HTTP request libraries to send
-      authenticated requests.
+      This function returns the header value in this format:
+      `Bearer stackauth_&lt;base64(getAuthJson())&gt;`, or `null` if the user is not signed in.
+      You can use this with `fetch` or other HTTP request libraries to send authenticated requests.
 
       On the server, you can then pass in the `Request` object to the `tokenStore` option
       of your Stack app. Please note that CORS does not allow most headers by default, so you
-      must include `x-stack-auth` in the [`Access-Control-Allow-Headers` header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers)
+      must include `authorization` in the [`Access-Control-Allow-Headers` header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers)
       of the CORS preflight response.
 
+      If you are not using HTTP (and hence cannot set headers), use `getAuthJson()` instead.
+
       ### Parameters
 
       No parameters.
 
       ### Returns
 
-      `Promise<Record<string, string>>`: An object containing the authentication headers.
+      `Promise<string | null>`: A `Bearer stackauth_...` authorization header value, or `null` if not signed in.
     </MethodContent>
     <MethodAside>
       <AsideSection title="Signature">
 
       ```typescript
-      declare function getAuthHeaders(): Promise<Record<string, string>>;
+      declare function getAuthorizationHeader(): Promise<string | null>;
       ```
       </AsideSection>
       <AsideSection title="Examples">
-      ```typescript Passing auth headers to an external server
+      ```typescript Passing an authorization header to an external server
       // client
+      const authorizationHeader = await user.getAuthorizationHeader();
       const res = await fetch("https://api.example.com", {
         headers: {
-          ...await user.getAuthHeaders()
+          ...(authorizationHeader ? { Authorization: authorizationHeader } : {})
           // you can also add your own headers here
         },
       });
@@ -1370,12 +1377,45 @@ code={`type CurrentUser = {
   </MethodLayout>
 </CollapsibleTypesSection>
 
+<CollapsibleTypesSection type="currentUser" property="getAuthHeaders" defaultOpen={false}>
+  <MethodLayout>
+    <MethodContent>
+      **Deprecated:** Use `getAuthorizationHeader()` instead.
+
+      Returns legacy headers for cross-origin authenticated requests. This is kept for backwards compatibility with
+      existing `x-stack-auth` integrations.
+
+      ### Parameters
+
+      No parameters.
+
+      ### Returns
+
+      `Promise<Record<string, string>>`: An object containing the legacy authentication headers.
+    </MethodContent>
+    <MethodAside>
+      <AsideSection title="Signature">
+
+      ```typescript
+      declare function getAuthHeaders(): Promise<Record<string, string>>;
+      ```
+      </AsideSection>
+      <AsideSection title="Examples">
+      ```typescript Legacy x-stack-auth integration
+      const headers = await user.getAuthHeaders();
+      const res = await fetch("https://api.example.com", { headers });
+      ```
+      </AsideSection>
+    </MethodAside>
+  </MethodLayout>
+</CollapsibleTypesSection>
+
 <CollapsibleTypesSection type="currentUser" property="getAuthJson" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
       Creates a JSON-serializable object containing the information to authenticate a user on an external server.
 
-      While `getAuthHeaders` is the recommended way to send authentication tokens over HTTP, your app may use
+      While `getAuthorizationHeader` is the recommended way to send authentication tokens over HTTP, your app may use
       a different protocol, for example WebSockets or gRPC. This function returns a token object that can be JSON-serialized and sent to the server in any way you like.
 
       On the server, you can pass in this token object into the `tokenStore` option to fetch user details.
diff --git a/docs/src/components/mdx/sdk-components.tsx b/docs/src/components/mdx/sdk-components.tsx
index 30be8a8a7f..497efd52cf 100644
--- a/docs/src/components/mdx/sdk-components.tsx
+++ b/docs/src/components/mdx/sdk-components.tsx
@@ -183,7 +183,7 @@ export function Markdown({ src }: { src: string }) {
               Does not persist changes to the tokens.
             </ParamField>
             <ParamField path="Request" type="object">
-              Reads the initial value for the session tokens from headers of the request object. For more information, see the documentation for [`currentUser.getAuthHeaders()`](../types/user.mdx#getauthheaders).
+              Reads the initial value for the session tokens from headers of the request object. For more information, see the documentation for [`currentUser.getAuthorizationHeader()`](../types/user.mdx#getauthorizationheader).
 
               Does not persist changes to the tokens.
             </ParamField>
diff --git a/examples/demo/src/app/tokens-demo/page.tsx b/examples/demo/src/app/tokens-demo/page.tsx
index ebf994cb56..99b4eb2f71 100644
--- a/examples/demo/src/app/tokens-demo/page.tsx
+++ b/examples/demo/src/app/tokens-demo/page.tsx
@@ -114,6 +114,7 @@ function HookBasedTokens() {
   // Using the hook variants
   const accessToken = (user as any).useAccessToken?.() ?? null;
   const refreshToken = (user as any).useRefreshToken?.() ?? null;
+  const authorizationHeader = (user as any).useAuthorizationHeader?.() ?? null;
   const authHeaders = (user as any).useAuthHeaders?.() ?? null;
   const authJson = (user as any).useAuthJson?.() ?? null;
   const sessionTokens = user.currentSession.useTokens();
@@ -121,6 +122,7 @@ function HookBasedTokens() {
   // App-level hooks
   const appAccessToken = (app as any).useAccessToken?.() ?? null;
   const appRefreshToken = (app as any).useRefreshToken?.() ?? null;
+  const appAuthorizationHeader = (app as any).useAuthorizationHeader?.() ?? null;
   const appAuthHeaders = (app as any).useAuthHeaders?.() ?? null;
   const appAuthJson = (app as any).useAuthJson?.() ?? null;
 
@@ -136,8 +138,9 @@ function HookBasedTokens() {
 
         <TokenDisplay label="user.useAccessToken()" value={accessToken} showDecoded />
         <TokenDisplay label="user.useRefreshToken()" value={refreshToken} />
-        <JsonDisplay label="user.useAuthHeaders()" value={authHeaders} />
-        <JsonDisplay label="user.useAuthJson() [deprecated]" value={authJson} accessTokenKey="accessToken" />
+        <TokenDisplay label="user.useAuthorizationHeader()" value={authorizationHeader} />
+        <JsonDisplay label="user.useAuthHeaders() [deprecated]" value={authHeaders} />
+        <JsonDisplay label="user.useAuthJson()" value={authJson} accessTokenKey="accessToken" />
         <JsonDisplay label="user.currentSession.useTokens()" value={sessionTokens} accessTokenKey="accessToken" />
       </Card>
 
@@ -151,8 +154,9 @@ function HookBasedTokens() {
 
         <TokenDisplay label="app.useAccessToken()" value={appAccessToken} showDecoded />
         <TokenDisplay label="app.useRefreshToken()" value={appRefreshToken} />
-        <JsonDisplay label="app.useAuthHeaders()" value={appAuthHeaders} />
-        <JsonDisplay label="app.useAuthJson() [deprecated]" value={appAuthJson} accessTokenKey="accessToken" />
+        <TokenDisplay label="app.useAuthorizationHeader()" value={appAuthorizationHeader} />
+        <JsonDisplay label="app.useAuthHeaders() [deprecated]" value={appAuthHeaders} />
+        <JsonDisplay label="app.useAuthJson()" value={appAuthJson} accessTokenKey="accessToken" />
       </Card>
     </div>
   );
@@ -166,11 +170,13 @@ function AsyncBasedTokens() {
   const [asyncResults, setAsyncResults] = useState<{
     userAccessToken?: string | null,
     userRefreshToken?: string | null,
+    userAuthorizationHeader?: string | null,
     userAuthHeaders?: { "x-stack-auth": string } | null,
     userAuthJson?: { accessToken: string | null, refreshToken: string | null } | null,
     sessionTokens?: { accessToken: string | null, refreshToken: string | null } | null,
     appAccessToken?: string | null,
     appRefreshToken?: string | null,
+    appAuthorizationHeader?: string | null,
     appAuthHeaders?: { "x-stack-auth": string } | null,
     appAuthJson?: { accessToken: string | null, refreshToken: string | null } | null,
   } | null>(null);
@@ -183,6 +189,7 @@ function AsyncBasedTokens() {
       if (user) {
         results.userAccessToken = await (user as any).getAccessToken?.();
         results.userRefreshToken = await (user as any).getRefreshToken?.();
+        results.userAuthorizationHeader = await (user as any).getAuthorizationHeader?.();
         results.userAuthHeaders = await user.getAuthHeaders();
         results.userAuthJson = await user.getAuthJson();
         results.sessionTokens = await user.currentSession.getTokens();
@@ -190,6 +197,7 @@ function AsyncBasedTokens() {
 
       results.appAccessToken = await (app as any).getAccessToken?.();
       results.appRefreshToken = await (app as any).getRefreshToken?.();
+      results.appAuthorizationHeader = await (app as any).getAuthorizationHeader?.();
       results.appAuthHeaders = await app.getAuthHeaders();
       results.appAuthJson = await app.getAuthJson();
 
@@ -227,8 +235,9 @@ function AsyncBasedTokens() {
           <>
             <TokenDisplay label="await user.getAccessToken()" value={asyncResults?.userAccessToken} isLoading={isLoading && !asyncResults} showDecoded />
             <TokenDisplay label="await user.getRefreshToken()" value={asyncResults?.userRefreshToken} isLoading={isLoading && !asyncResults} />
-            <JsonDisplay label="await user.getAuthHeaders()" value={asyncResults?.userAuthHeaders} isLoading={isLoading && !asyncResults} />
-            <JsonDisplay label="await user.getAuthJson() [deprecated]" value={asyncResults?.userAuthJson} isLoading={isLoading && !asyncResults} accessTokenKey="accessToken" />
+            <TokenDisplay label="await user.getAuthorizationHeader()" value={asyncResults?.userAuthorizationHeader} isLoading={isLoading && !asyncResults} />
+            <JsonDisplay label="await user.getAuthHeaders() [deprecated]" value={asyncResults?.userAuthHeaders} isLoading={isLoading && !asyncResults} />
+            <JsonDisplay label="await user.getAuthJson()" value={asyncResults?.userAuthJson} isLoading={isLoading && !asyncResults} accessTokenKey="accessToken" />
             <JsonDisplay label="await user.currentSession.getTokens()" value={asyncResults?.sessionTokens} isLoading={isLoading && !asyncResults} accessTokenKey="accessToken" />
           </>
         )}
@@ -244,8 +253,9 @@ function AsyncBasedTokens() {
 
         <TokenDisplay label="await app.getAccessToken()" value={asyncResults?.appAccessToken} isLoading={isLoading && !asyncResults} showDecoded />
         <TokenDisplay label="await app.getRefreshToken()" value={asyncResults?.appRefreshToken} isLoading={isLoading && !asyncResults} />
-        <JsonDisplay label="await app.getAuthHeaders()" value={asyncResults?.appAuthHeaders} isLoading={isLoading && !asyncResults} />
-        <JsonDisplay label="await app.getAuthJson() [deprecated]" value={asyncResults?.appAuthJson} isLoading={isLoading && !asyncResults} accessTokenKey="accessToken" />
+        <TokenDisplay label="await app.getAuthorizationHeader()" value={asyncResults?.appAuthorizationHeader} isLoading={isLoading && !asyncResults} />
+        <JsonDisplay label="await app.getAuthHeaders() [deprecated]" value={asyncResults?.appAuthHeaders} isLoading={isLoading && !asyncResults} />
+        <JsonDisplay label="await app.getAuthJson()" value={asyncResults?.appAuthJson} isLoading={isLoading && !asyncResults} accessTokenKey="accessToken" />
       </Card>
     </div>
   );
@@ -323,10 +333,13 @@ export default function TokensDemoPage() {
               <strong>useRefreshToken() / getRefreshToken():</strong> Returns the long-lived refresh token used to obtain new access tokens.
             </p>
             <p>
-              <strong>useAuthHeaders() / getAuthHeaders():</strong> Returns headers ready to use with fetch() for cross-origin authenticated requests.
+              <strong>useAuthorizationHeader() / getAuthorizationHeader():</strong> Returns a `Bearer ...` value for the HTTP `Authorization` header.
             </p>
             <p>
-              <strong className="text-yellow-600">useAuthJson() / getAuthJson() [deprecated]:</strong> Returns both tokens as JSON. Use individual token getters instead.
+              <strong className="text-yellow-600">useAuthHeaders() / getAuthHeaders() [deprecated]:</strong> Returns legacy `x-stack-auth` headers. Prefer authorization-header methods.
+            </p>
+            <p>
+              <strong>useAuthJson() / getAuthJson():</strong> Returns both tokens as JSON. This is the recommended format for non-HTTP protocols.
             </p>
             <p>
               <strong>currentSession.useTokens() / getTokens():</strong> Returns both tokens from the current session object.
diff --git a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
index 4422a824c2..1fc78b0aae 100644
--- a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
+++ b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
@@ -19,7 +19,7 @@ import { TeamsCrud } from "@stackframe/stack-shared/dist/interface/crud/teams";
 import { UsersCrud } from "@stackframe/stack-shared/dist/interface/crud/users";
 import type { RestrictedReason } from "@stackframe/stack-shared/dist/schema-fields";
 import { InternalSession } from "@stackframe/stack-shared/dist/sessions";
-import { decodeBase32, encodeBase32 } from "@stackframe/stack-shared/dist/utils/bytes";
+import { decodeBase32, decodeBase64, encodeBase32, encodeBase64 } from "@stackframe/stack-shared/dist/utils/bytes";
 import { scrambleDuringCompileTime } from "@stackframe/stack-shared/dist/utils/compile-time";
 import { isBrowserLike } from "@stackframe/stack-shared/dist/utils/env";
 import { StackAssertionError, captureError, throwErr } from "@stackframe/stack-shared/dist/utils/errors";
@@ -83,6 +83,59 @@ const NextNavigation = scrambleDuringCompileTime(NextNavigationUnscrambled);
 const prefetchedCrossDomainHandoffTtlMs = 55 * 60 * 1000;
 
 const allClientApps = new Map<string, [checkString: string | undefined, app: StackClientApp<any, any>]>();
+const STACK_AUTHORIZATION_VALUE_PREFIX = "stackauth_";
+
+function getAuthorizationHeaderValueFromAuthJson(authJson: { accessToken: string | null, refreshToken: string | null }): string | null {
+  if (authJson.accessToken == null && authJson.refreshToken == null) {
+    return null;
+  }
+
+  const encodedAuthJson = encodeBase64(new TextEncoder().encode(JSON.stringify(authJson)));
+  return `Bearer ${STACK_AUTHORIZATION_VALUE_PREFIX}${encodedAuthJson}`;
+}
+
+function getAuthJsonFromAuthorizationHeaderValue(authorizationHeaderValue: string): { accessToken: string | null, refreshToken: string | null } | null {
+  const match = authorizationHeaderValue.match(/^Bearer\s+(.+)$/i);
+  if (match == null) {
+    return null;
+  }
+
+  const credential = match[1].trim();
+  if (!credential.startsWith(STACK_AUTHORIZATION_VALUE_PREFIX)) {
+    return null;
+  }
+
+  const encodedAuthJson = credential.slice(STACK_AUTHORIZATION_VALUE_PREFIX.length);
+  if (encodedAuthJson.length === 0) {
+    throw new Error("Invalid Authorization header format. Expected `Bearer stackauth_<base64(getAuthJson())>`.");
+  }
+
+  let parsed: unknown;
+  try {
+    const decodedAuthJson = new TextDecoder().decode(decodeBase64(encodedAuthJson));
+    parsed = JSON.parse(decodedAuthJson);
+  } catch (e) {
+    throw new Error(`Invalid stackauth authorization header: ${authorizationHeaderValue}`, { cause: e });
+  }
+
+  if (parsed == null || typeof parsed !== "object" || Array.isArray(parsed)) {
+    throw new Error("Invalid stackauth authorization payload. Expected an object.");
+  }
+
+  const accessToken = Reflect.get(parsed, "accessToken");
+  const refreshToken = Reflect.get(parsed, "refreshToken");
+  if (accessToken != null && typeof accessToken !== "string") {
+    throw new Error("Invalid stackauth authorization payload. `accessToken` must be a string or null.");
+  }
+  if (refreshToken != null && typeof refreshToken !== "string") {
+    throw new Error("Invalid stackauth authorization payload. `refreshToken` must be a string or null.");
+  }
+
+  return {
+    accessToken: accessToken ?? null,
+    refreshToken: refreshToken ?? null,
+  };
+}
 
 type StackClientAppImplConstructorOptionsResolved<HasTokenStore extends boolean, ProjectId extends string> = StackClientAppConstructorOptions<HasTokenStore, ProjectId> & { inheritsFrom?: undefined };
 
@@ -985,8 +1038,22 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
         } else if (typeof tokenStoreInit === "object" && "headers" in tokenStoreInit) {
           if (this._requestTokenStores.has(tokenStoreInit)) return this._requestTokenStores.get(tokenStoreInit)!;
 
-          // x-stack-auth header
-          const stackAuthHeader = tokenStoreInit.headers.get("x-stack-auth");
+          // Authorization header (recommended)
+          const authorizationHeader = tokenStoreInit.headers.get("authorization") ?? tokenStoreInit.headers.get("Authorization");
+          if (authorizationHeader) {
+            const authJson = getAuthJsonFromAuthorizationHeaderValue(authorizationHeader);
+            if (authJson != null) {
+              const tokenStore = new Store<TokenObject>({
+                accessToken: authJson.accessToken,
+                refreshToken: authJson.refreshToken,
+              });
+              this._requestTokenStores.set(tokenStoreInit, tokenStore);
+              return tokenStore;
+            }
+          }
+
+          // x-stack-auth header (legacy)
+          const stackAuthHeader = tokenStoreInit.headers.get("x-stack-auth") ?? tokenStoreInit.headers.get("X-Stack-Auth");
           if (stackAuthHeader) {
             let parsed;
             try {
@@ -1511,6 +1578,14 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
         return this.currentSession.useTokens().refreshToken;
       },
       // END_PLATFORM
+      async getAuthorizationHeader(): Promise<string | null> {
+        return getAuthorizationHeaderValueFromAuthJson(await this.getAuthJson());
+      },
+      // IF_PLATFORM react-like
+      useAuthorizationHeader(): string | null {
+        return getAuthorizationHeaderValueFromAuthJson(this.useAuthJson());
+      },
+      // END_PLATFORM
       async getAuthHeaders(): Promise<{ "x-stack-auth": string }> {
         return {
           "x-stack-auth": JSON.stringify(await this.getAuthJson()),
@@ -3297,6 +3372,16 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
   }
   // END_PLATFORM
 
+  async getAuthorizationHeader(options?: { tokenStore?: TokenStoreInit }): Promise<string | null> {
+    return getAuthorizationHeaderValueFromAuthJson(await this.getAuthJson(options));
+  }
+
+  // IF_PLATFORM react-like
+  useAuthorizationHeader(options?: { tokenStore?: TokenStoreInit }): string | null {
+    return getAuthorizationHeaderValueFromAuthJson(this.useAuthJson(options));
+  }
+  // END_PLATFORM
+
   async getAuthHeaders(options?: { tokenStore?: TokenStoreInit }): Promise<{ "x-stack-auth": string }> {
     return {
       "x-stack-auth": JSON.stringify(await this.getAuthJson(options)),
diff --git a/packages/template/src/lib/stack-app/common.ts b/packages/template/src/lib/stack-app/common.ts
index bce4c509a9..5a3964fb50 100644
--- a/packages/template/src/lib/stack-app/common.ts
+++ b/packages/template/src/lib/stack-app/common.ts
@@ -125,31 +125,32 @@ export type AuthLike<ExtraOptions = {}> = {
   useRefreshToken(options?: {} & ExtraOptions): string | null, // THIS_LINE_PLATFORM react-like
 
   /**
-   * Returns headers for sending authenticated HTTP requests to external servers. Most commonly used in cross-origin
-   * requests. Similar to `getAuthJson`, but specifically for HTTP requests.
+   * Returns the value for the HTTP `Authorization` header for authenticated requests to external servers.
+   * Most commonly used in cross-origin requests. Similar to `getAuthJson`, but specifically for HTTP requests.
    *
    * If you are using `tokenStore: "cookie"`, you don't need this for same-origin requests. However, most
    * browsers now disable third-party cookies by default, so we must pass authentication tokens by header instead
    * if the client and server are on different origins.
    *
-   * This function returns a header object that can be used with `fetch` or other HTTP request libraries to send
-   * authenticated requests.
+   * This function returns the header value in this format:
+   * `Bearer stackauth_<base64(getAuthJson())>`, or `null` if the user is not signed in.
+   * You can use this with `fetch` or other HTTP request libraries to send authenticated requests.
    *
    * On the server, you can then pass in the `Request` object to the `tokenStore` option
    * of your Stack app. Please note that CORS does not allow most headers by default, so you
-   * must include `x-stack-auth` in the [`Access-Control-Allow-Headers` header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers)
+   * must include `authorization` in the [`Access-Control-Allow-Headers` header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers)
    * of the CORS preflight response.
    *
-   * If you are not using HTTP (and hence cannot set headers), you will need to use the `getAccessToken()` and
-   * `getRefreshToken()` functions instead.
+   * If you are not using HTTP (and hence cannot set headers), use `getAuthJson()` instead.
    *
    * Example:
    *
    * ```ts
    * // client
+   * const authorizationHeader = await stackApp.getAuthorizationHeader();
    * const res = await fetch("https://api.example.com", {
    *   headers: {
-   *     ...await stackApp.getAuthHeaders()
+   *     ...(authorizationHeader ? { Authorization: authorizationHeader } : {})
    *     // you can also add your own headers here
    *   },
    * });
@@ -161,17 +162,25 @@ export type AuthLike<ExtraOptions = {}> = {
    * }
    * ```
    */
+  getAuthorizationHeader(options?: {} & ExtraOptions): Promise<string | null>,
+  useAuthorizationHeader(options?: {} & ExtraOptions): string | null, // THIS_LINE_PLATFORM react-like
+
+  /**
+   * @deprecated Use `getAuthorizationHeader()` instead.
+   *
+   * Returns the legacy `x-stack-auth` headers for authenticated HTTP requests. This remains for backwards
+   * compatibility with existing integrations.
+   */
   getAuthHeaders(options?: {} & ExtraOptions): Promise<{ "x-stack-auth": string }>,
+  /** @deprecated Use `useAuthorizationHeader()` instead. */
   useAuthHeaders(options?: {} & ExtraOptions): { "x-stack-auth": string }, // THIS_LINE_PLATFORM react-like
 
   /**
-   * @deprecated Use `getAccessToken()` and `getRefreshToken()` instead.
-   *
    * Creates a JSON-serializable object containing the information to authenticate a user on an external server.
-   * Similar to `getAuthHeaders`, but returns an object that can be sent over any protocol instead of just
+   * Similar to `getAuthorizationHeader`, but returns an object that can be sent over any protocol instead of just
    * HTTP headers.
    *
-   * While `getAuthHeaders` is the recommended way to send authentication tokens over HTTP, your app may use
+   * While `getAuthorizationHeader` is the recommended way to send authentication tokens over HTTP, your app may use
    * a different protocol, for example WebSockets or gRPC. This function returns a token object that can be JSON-serialized and sent to the server in any way you like.
    *
    * On the server, you can pass in this token object into the `tokenStore` option to fetch user details.
@@ -194,7 +203,6 @@ export type AuthLike<ExtraOptions = {}> = {
    * ```
    */
   getAuthJson(options?: {} & ExtraOptions): Promise<{ accessToken: string | null, refreshToken: string | null }>,
-  /** @deprecated Use `useAccessToken()` and `useRefreshToken()` instead. */
   useAuthJson(options?: {} & ExtraOptions): { accessToken: string | null, refreshToken: string | null }, // THIS_LINE_PLATFORM react-like
 };
 
diff --git a/sdks/spec/src/_utilities.spec.md b/sdks/spec/src/_utilities.spec.md
index ae18aeae18..e2fc436bb8 100644
--- a/sdks/spec/src/_utilities.spec.md
+++ b/sdks/spec/src/_utilities.spec.md
@@ -255,10 +255,12 @@ RequestLike object:
 
   This exists as a simplified way to support common backend frameworks in a more accessible way than the `{ accessToken: string, refreshToken: string }` one.
   
-  Extract tokens from the x-stack-auth header:
-  1. Get header value: headers.get("x-stack-auth")
-  2. Parse as JSON: { accessToken: string, refreshToken: string }
-  3. Use those tokens for authentication
+  Extract tokens from request headers:
+  1. Preferred: `Authorization` header in this format:
+     `Bearer stackauth_<base64({ "accessToken": "...", "refreshToken": "..." })>`
+  2. Legacy fallback: `x-stack-auth` JSON header
+     (`{ "accessToken": string, "refreshToken": string }`)
+  3. If neither auth header exists, read from cookies
 
 null:
   No token storage. When the constructor's tokenStore is null, the tokenStore
@@ -294,12 +296,18 @@ This does NOT apply to explicit token stores (`{ accessToken, refreshToken }`),
 custom stores, or null stores - those are always created fresh per use.
 
 
-### x-stack-auth Header Format
+### Authorization Header Format
 
 For cross-origin requests or server-side handling, use this header:
+  Authorization: Bearer stackauth_<base64({ "accessToken": "<token>", "refreshToken": "<token>" })>
+
+Use getAuthorizationHeader() to generate this header value.
+
+### Legacy x-stack-auth Header Format
+
+For backwards compatibility, request-like token stores also accept:
   x-stack-auth: { "accessToken": "<token>", "refreshToken": "<token>" }
 
-JSON-encoded object with both tokens.
 Use getAuthHeaders() to generate this header value.
 
 ## MFA Handling Pattern
diff --git a/sdks/spec/src/apps/client-app.spec.md b/sdks/spec/src/apps/client-app.spec.md
index 0c5c5d0ab0..42668afbaa 100644
--- a/sdks/spec/src/apps/client-app.spec.md
+++ b/sdks/spec/src/apps/client-app.spec.md
@@ -448,8 +448,29 @@ Panics:
   This is a programmer error - the code should be fixed to provide a tokenStore.
 
 
+## getAuthorizationHeader(options?)
+
+Arguments:
+  options.tokenStore: TokenStoreInit? - override token storage for this call
+
+Returns: string | null
+
+Get current tokens and return the Authorization header value:
+  Bearer stackauth_<base64({ "accessToken": "...", "refreshToken": "..." })>
+
+Returns null if not authenticated.
+
+For cross-origin authenticated requests where cookies can't be sent.
+
+Panics:
+  If constructor tokenStore was null and no tokenStore override is provided.
+  This is a programmer error - the code should be fixed to provide a tokenStore.
+
+
 ## getAuthHeaders(options?)
 
+@deprecated Use getAuthorizationHeader(options?).
+
 Arguments:
   options.tokenStore: TokenStoreInit? - override token storage for this call
 
diff --git a/sdks/spec/src/types/users/current-user.spec.md b/sdks/spec/src/types/users/current-user.spec.md
index c6ec04bfb3..2092b44d8e 100644
--- a/sdks/spec/src/types/users/current-user.spec.md
+++ b/sdks/spec/src/types/users/current-user.spec.md
@@ -467,8 +467,22 @@ Returns null if not authenticated.
 Does not error.
 
 
+### getAuthorizationHeader()
+
+Returns: string | null
+
+Returns the HTTP Authorization header value in this format:
+  Bearer stackauth_<base64({ "accessToken": "...", "refreshToken": "..." })>
+
+Returns null if not authenticated.
+
+Does not error.
+
+
 ### getAuthHeaders()
 
+@deprecated Use getAuthorizationHeader().
+
 Returns: { "x-stack-auth": string }
 
 Returns headers for cross-origin authenticated requests.

From f7f6032880b1a79e2c761f8ea1a6c20f190ad6c0 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Mon, 20 Apr 2026 18:19:25 -0700
Subject: [PATCH 03/13] TokenStoreInit now supports { headers: Record<string,
 string | null> }

---
 .claude/CLAUDE-KNOWLEDGE.md                   |  3 +++
 apps/e2e/tests/js/auth-like.test.ts           | 24 +++++++++++++++++++
 .../apps/implementations/client-app-impl.ts   | 20 +++++++++++++---
 packages/template/src/lib/stack-app/common.ts |  8 ++++---
 sdks/spec/src/_utilities.spec.md              |  6 ++++-
 5 files changed, 54 insertions(+), 7 deletions(-)

diff --git a/.claude/CLAUDE-KNOWLEDGE.md b/.claude/CLAUDE-KNOWLEDGE.md
index f0c53de282..11f6d3397d 100644
--- a/.claude/CLAUDE-KNOWLEDGE.md
+++ b/.claude/CLAUDE-KNOWLEDGE.md
@@ -361,3 +361,6 @@ A: Run from the monorepo root with explicit file paths: `pnpm test run "<path1>"
 
 ### Q: What's the new Authorization header format for Stack token forwarding?
 A: Use `getAuthorizationHeader()`, which returns `Bearer stackauth_<base64(getAuthJson())>`. The payload encodes both `accessToken` and `refreshToken`, and request-like token stores should parse this format first, with legacy `x-stack-auth` remaining as a backward-compatible fallback.
+
+### Q: What RequestLike header shapes are supported by tokenStore overrides?
+A: `RequestLike` accepts both `{ headers: { get(name): string | null } }` and `{ headers: Record<string, string | null> }`. Header lookup is case-insensitive for record-style headers, and supports `authorization`, `x-stack-auth`, and `cookie`.
diff --git a/apps/e2e/tests/js/auth-like.test.ts b/apps/e2e/tests/js/auth-like.test.ts
index f32505c99c..ce6cd5f45d 100644
--- a/apps/e2e/tests/js/auth-like.test.ts
+++ b/apps/e2e/tests/js/auth-like.test.ts
@@ -601,6 +601,30 @@ it("getUser should work with Authorization header in request-like tokenStore", a
   expect(serverUser!.id).toBe(clientUser.id);
 });
 
+it("getUser should work with record-style headers in request-like tokenStore", async ({ expect }) => {
+  const { serverApp, clientApp } = await createApp({});
+  await signIn(clientApp);
+
+  const authorizationHeader = await clientApp.getAuthorizationHeader();
+  if (authorizationHeader == null) {
+    throw new Error("Expected authorization header for signed-in user.");
+  }
+
+  const requestLike = {
+    headers: {
+      Authorization: authorizationHeader,
+      Cookie: null,
+    },
+  };
+
+  const serverUser = await serverApp.getUser({ tokenStore: requestLike });
+  const clientUser = await clientApp.getUser({ or: "throw" });
+
+  expect(serverUser).not.toBeNull();
+  expect(serverUser!.primaryEmail).toBe("test@test.com");
+  expect(serverUser!.id).toBe(clientUser.id);
+});
+
 it("getUser should work with x-stack-auth header in request-like tokenStore", async ({ expect }) => {
   const { serverApp, clientApp } = await createApp({});
   await signIn(clientApp);
diff --git a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
index 1fc78b0aae..1807b83380 100644
--- a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
+++ b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
@@ -137,6 +137,20 @@ function getAuthJsonFromAuthorizationHeaderValue(authorizationHeaderValue: strin
   };
 }
 
+function getHeaderValueFromRequestLikeHeaders(headers: RequestLike["headers"], name: string): string | null {
+  if ("get" in headers && typeof headers.get === "function") {
+    return headers.get(name);
+  }
+
+  const lowerCaseName = name.toLowerCase();
+  for (const [headerName, headerValue] of Object.entries(headers)) {
+    if (headerName.toLowerCase() === lowerCaseName) {
+      return headerValue;
+    }
+  }
+  return null;
+}
+
 type StackClientAppImplConstructorOptionsResolved<HasTokenStore extends boolean, ProjectId extends string> = StackClientAppConstructorOptions<HasTokenStore, ProjectId> & { inheritsFrom?: undefined };
 
 export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, ProjectId extends string = string> implements StackClientApp<HasTokenStore, ProjectId> {
@@ -1039,7 +1053,7 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
           if (this._requestTokenStores.has(tokenStoreInit)) return this._requestTokenStores.get(tokenStoreInit)!;
 
           // Authorization header (recommended)
-          const authorizationHeader = tokenStoreInit.headers.get("authorization") ?? tokenStoreInit.headers.get("Authorization");
+          const authorizationHeader = getHeaderValueFromRequestLikeHeaders(tokenStoreInit.headers, "authorization");
           if (authorizationHeader) {
             const authJson = getAuthJsonFromAuthorizationHeaderValue(authorizationHeader);
             if (authJson != null) {
@@ -1053,7 +1067,7 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
           }
 
           // x-stack-auth header (legacy)
-          const stackAuthHeader = tokenStoreInit.headers.get("x-stack-auth") ?? tokenStoreInit.headers.get("X-Stack-Auth");
+          const stackAuthHeader = getHeaderValueFromRequestLikeHeaders(tokenStoreInit.headers, "x-stack-auth");
           if (stackAuthHeader) {
             let parsed;
             try {
@@ -1070,7 +1084,7 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
           }
 
           // read from cookies
-          const cookieHeader = tokenStoreInit.headers.get("cookie");
+          const cookieHeader = getHeaderValueFromRequestLikeHeaders(tokenStoreInit.headers, "cookie");
           const parsed = cookie.parseCookie(cookieHeader || "");
           const res = new Store<TokenObject>(this._getTokensFromCookies(parsed));
           this._requestTokenStores.set(tokenStoreInit, res);
diff --git a/packages/template/src/lib/stack-app/common.ts b/packages/template/src/lib/stack-app/common.ts
index 5a3964fb50..293f654ec3 100644
--- a/packages/template/src/lib/stack-app/common.ts
+++ b/packages/template/src/lib/stack-app/common.ts
@@ -78,9 +78,11 @@ export type GetCurrentPartialUserOptions<HasTokenStore> =
   } : {});
 
 export type RequestLike = {
-  headers: {
-    get: (name: string) => string | null,
-  },
+  headers:
+    | {
+      get: (name: string) => string | null,
+    }
+    | Record<string, string | null>,
 };
 
 export type TokenStoreInit<HasTokenStore extends boolean = boolean> =
diff --git a/sdks/spec/src/_utilities.spec.md b/sdks/spec/src/_utilities.spec.md
index e2fc436bb8..077708ee5e 100644
--- a/sdks/spec/src/_utilities.spec.md
+++ b/sdks/spec/src/_utilities.spec.md
@@ -251,7 +251,11 @@ To refresh an access token from a refresh token, use an OAuth2 token grant:
   For custom token management scenarios.
 
 RequestLike object:
-  An object that conforms to whatever the requests look like in common backend frameworks. For example, in JavaScript, these often have the shape `{ headers: { get(name: string): string | null } }`, but in other languages this may drastically differ (and may not even be an interface and instead rather just be an abstract class, or not exist at all).
+  An object that conforms to whatever the requests look like in common backend frameworks.
+  In JavaScript, common shapes include:
+  - `{ headers: { get(name: string): string | null } }`
+  - `{ headers: Record<string, string | null> }`
+  In other languages this may drastically differ (and may not even be an interface and instead rather just be an abstract class, or not exist at all).
 
   This exists as a simplified way to support common backend frameworks in a more accessible way than the `{ accessToken: string, refreshToken: string }` one.
   

From ea8e1a4d63efaa9746618c6d2f34ce5fcc503a9f Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Mon, 20 Apr 2026 18:44:30 -0700
Subject: [PATCH 04/13] Add `pnpm run cli`

---
 package.json | 1 +
 1 file changed, 1 insertion(+)

diff --git a/package.json b/package.json
index 7828d0154a..258a3b8110 100644
--- a/package.json
+++ b/package.json
@@ -12,6 +12,7 @@
     "typecheck": "pnpm pre && turbo typecheck --",
     "build:dev": "pnpm pre && NODE_ENV=development pnpm run build",
     "build": "pnpm pre && turbo build",
+    "cli": "pnpm pre && pnpm run --filter=@stackframe/stack-cli build && node packages/stack-cli/dist/index.js",
     "build:backend": "pnpm pre && turbo run build --filter=@stackframe/backend...",
     "build:dashboard": "pnpm pre && turbo run build --filter=@stackframe/dashboard...",
     "build:demo": "pnpm pre && turbo run build --filter=demo-app...",

From 61f3db1772cf0d8ed0efe7bfb67d234a1e65c035 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Tue, 21 Apr 2026 10:05:41 -0400
Subject: [PATCH 05/13] Fix local emulator bugs & include prompt in docs

---
 .claude/CLAUDE-KNOWLEDGE.md                   |  18 +
 .../src/app/api/latest/setup-prompt/route.ts  |  33 +
 apps/backend/src/lib/local-emulator.test.ts   |  19 +
 apps/backend/src/lib/local-emulator.ts        |   3 +-
 apps/backend/src/lib/projects.tsx             |   2 -
 .../project-onboarding-wizard.tsx             |  97 ++-
 .../internal/local-emulator-project.test.ts   |  41 +
 .../endpoints/api/v1/setup-prompt.test.ts     |  11 +
 .../guides/getting-started/setup.mdx          | 777 ++----------------
 docs-mintlify/snippets/home-prompt-island.jsx |  64 +-
 packages/stack-cli/src/commands/emulator.ts   |  22 +-
 packages/stack-shared/src/ai/prompts.ts       | 276 +++++++
 .../client-app-impl.oauth-prefetch.test.ts    |  32 +
 .../apps/implementations/client-app-impl.ts   |   1 -
 14 files changed, 636 insertions(+), 760 deletions(-)
 create mode 100644 apps/backend/src/app/api/latest/setup-prompt/route.ts
 create mode 100644 apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts
 create mode 100644 packages/stack-shared/src/ai/prompts.ts
 create mode 100644 packages/template/src/lib/stack-app/apps/implementations/client-app-impl.oauth-prefetch.test.ts

diff --git a/.claude/CLAUDE-KNOWLEDGE.md b/.claude/CLAUDE-KNOWLEDGE.md
index 11f6d3397d..491f42027e 100644
--- a/.claude/CLAUDE-KNOWLEDGE.md
+++ b/.claude/CLAUDE-KNOWLEDGE.md
@@ -364,3 +364,21 @@ A: Use `getAuthorizationHeader()`, which returns `Bearer stackauth_<base64(getAu
 
 ### Q: What RequestLike header shapes are supported by tokenStore overrides?
 A: `RequestLike` accepts both `{ headers: { get(name): string | null } }` and `{ headers: Record<string, string | null> }`. Header lookup is case-insensitive for record-style headers, and supports `authorization`, `x-stack-auth`, and `cookie`.
+
+### Q: Which env var should emulator onboarding URLs use for dashboard port?
+A: Use `EMULATOR_DASHBOARD_PORT` (default `26700`) or explicit `STACK_LOCAL_EMULATOR_DASHBOARD_URL`. Do not derive emulator URLs from `NEXT_PUBLIC_STACK_PORT_PREFIX`, because that points to the host dev environment ports (e.g. `92xx`) rather than the emulator host-forwarded ports.
+
+### Q: Why does `PATCH /api/v1/internal/projects/current` fail in local emulator when updating only `onboarding_state`?
+A: `createOrUpdateProjectWithLegacyConfig` always called `overrideEnvironmentConfigOverride`, even when there were zero config override keys to apply. In local emulator mode, environment config overrides are intentionally blocked, so this threw `Environment configuration overrides cannot be changed in the local emulator` and returned 500. The fix is to skip `overrideEnvironmentConfigOverride` unless `configOverrideOverride` has at least one key.
+
+### Q: Why might local emulator UI changes in `apps/dashboard` not appear immediately at `localhost:26700`?
+A: The QEMU local emulator serves the dashboard from the Docker image bundled inside the VM, not from the host repo's live source tree. Source edits in `apps/dashboard` are reflected in lint/typecheck/tests immediately, but you need an updated emulator image/runtime to see the visual change on `26700`.
+
+### Q: Why can local emulator onboarding break with `ParseError` on non-`.ts` config files (e.g. `test-config.untracked`)?
+A: The emulator writes TypeScript-style config source (`import type ...` and `config: StackConfig`) and later evaluates it with Jiti. If the filename has a non-TS extension, Jiti may parse it as plain JS and fail. Fix by evaluating unknown extensions as TypeScript (use a `.ts` eval filename fallback) and add regression coverage for non-`.ts` config paths.
+
+### Q: How should docs fetch the canonical AI setup prompt text?
+A: Expose an unauthenticated backend endpoint at `/api/v1/setup-prompt` that returns `getSdkSetupPrompt("ai-prompt", { tanstackQuery: false })` as plain text and sets `Cache-Control: public, max-age=60`. Mintlify docs should fetch `https://api.stack-auth.com/api/v1/setup-prompt` directly when docs and API are on different origins.
+
+### Q: Can Mintlify snippets import other snippets?
+A: No. Keep snippet logic inline within each snippet file; avoid snippet-to-snippet imports. For setup prompt fetching, point directly to `https://api.stack-auth.com/api/v1/setup-prompt` when docs run on a different origin/port than the API.
diff --git a/apps/backend/src/app/api/latest/setup-prompt/route.ts b/apps/backend/src/app/api/latest/setup-prompt/route.ts
new file mode 100644
index 0000000000..15c0abf626
--- /dev/null
+++ b/apps/backend/src/app/api/latest/setup-prompt/route.ts
@@ -0,0 +1,33 @@
+import { createSmartRouteHandler } from "@/route-handlers/smart-route-handler";
+import { getSdkSetupPrompt } from "@stackframe/stack-shared/dist/ai/prompts";
+import { yupNumber, yupObject, yupString, yupTuple } from "@stackframe/stack-shared/dist/schema-fields";
+
+export const GET = createSmartRouteHandler({
+  metadata: {
+    hidden: true,
+    summary: "SDK setup prompt",
+    description: "Returns the AI setup prompt used by Stack docs.",
+    tags: [],
+  },
+  request: yupObject({
+    method: yupString().oneOf(["GET"]).defined(),
+  }),
+  response: yupObject({
+    statusCode: yupNumber().oneOf([200]).defined(),
+    bodyType: yupString().oneOf(["text"]).defined(),
+    body: yupString().defined(),
+    headers: yupObject({
+      "Cache-Control": yupTuple([yupString().defined()]).defined(),
+    }).defined(),
+  }),
+  handler: async () => {
+    return {
+      statusCode: 200,
+      bodyType: "text",
+      body: getSdkSetupPrompt("ai-prompt", { tanstackQuery: false }),
+      headers: {
+        "Cache-Control": ["public, max-age=60"] as const,
+      },
+    };
+  },
+});
diff --git a/apps/backend/src/lib/local-emulator.test.ts b/apps/backend/src/lib/local-emulator.test.ts
index efd23a1423..cbb3fffdfd 100644
--- a/apps/backend/src/lib/local-emulator.test.ts
+++ b/apps/backend/src/lib/local-emulator.test.ts
@@ -107,6 +107,25 @@ describe("local emulator config", () => {
     );
   });
 
+  it("supports non-ts config filenames by evaluating them as TypeScript", async () => {
+    const hostMountRoot = await fs.mkdtemp(path.join(os.tmpdir(), "stack-host-mount-"));
+    const absoluteFilePath = "/Users/foo/project/test-config.untracked";
+    const mountedParentPath = path.join(hostMountRoot, "/Users/foo/project");
+    const mountedFilePath = path.join(hostMountRoot, absoluteFilePath);
+    await fs.mkdir(mountedParentPath, { recursive: true });
+
+    vi.stubEnv(LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV, hostMountRoot);
+
+    await writeConfigToFile(absoluteFilePath, { auth: { allowLocalhost: true } });
+
+    await expect(readConfigFromFile(absoluteFilePath)).resolves.toEqual({
+      auth: {
+        allowLocalhost: true,
+      },
+    });
+    await expect(fs.readFile(mountedFilePath, "utf-8")).resolves.toContain(`import type { StackConfig }`);
+  });
+
   it("fails loudly when the QEMU host mount root is configured but unavailable", async () => {
     const hostMountRoot = await fs.mkdtemp(path.join(os.tmpdir(), "stack-host-mount-"));
     vi.stubEnv(LOCAL_EMULATOR_HOST_MOUNT_ROOT_ENV, hostMountRoot);
diff --git a/apps/backend/src/lib/local-emulator.ts b/apps/backend/src/lib/local-emulator.ts
index 2f2e5f7011..098ecc07e5 100644
--- a/apps/backend/src/lib/local-emulator.ts
+++ b/apps/backend/src/lib/local-emulator.ts
@@ -80,8 +80,9 @@ async function readConfigValueFromFile(filePath: string): Promise<LocalEmulatorC
     return {};
   }
 
+  const evalFilename = /\.[cm]?tsx?$/.test(filePath) ? filePath : `${filePath}.ts`;
   const jiti = createJiti(import.meta.url, { cache: false });
-  const mod = jiti.evalModule(content, { filename: filePath }) as Record<string, unknown>;
+  const mod = jiti.evalModule(content, { filename: evalFilename }) as Record<string, unknown>;
   const config = mod.config;
   if (config === LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE) {
     return config;
diff --git a/apps/backend/src/lib/projects.tsx b/apps/backend/src/lib/projects.tsx
index d839314b9b..ef5a4a93de 100644
--- a/apps/backend/src/lib/projects.tsx
+++ b/apps/backend/src/lib/projects.tsx
@@ -319,8 +319,6 @@ export async function createOrUpdateProjectWithLegacyConfig(
     branchId: branchId,
     environmentConfigOverrideOverride: configOverrideOverride,
   });
-
-
   const result = await getProject(projectId);
   if (!result) {
     throw new StackAssertionError("Project not found after creation/update", { projectId });
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx
index c3b5a882ed..ef9e09c1f2 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.tsx
@@ -429,14 +429,49 @@ export function ProjectOnboardingWizard(props: {
   }
 
   if (props.status === "config_choice") {
+    if (isLocalEmulator) {
+      return (
+        <OnboardingPage
+          stepKey="config-choice"
+          title="Welcome to Stack Auth!"
+          subtitle="You are running Stack Auth locally in the emulator."
+          steps={timelineSteps}
+          currentStep="config_choice"
+          onStepClick={handleTimelineStepClick}
+          disabled={saving}
+          primaryAction={
+            <DesignButton
+              className="w-full rounded-full"
+              loading={saving}
+              onClick={() => runAsynchronouslyWithAlert(() => runWithSaving(async () => {
+                await persistOnboardingState();
+                await props.setStatus("apps_selection");
+              }))}
+            >
+              Continue
+            </DesignButton>
+          }
+        >
+          <div className="mx-auto max-w-xl rounded-2xl bg-white/70 p-6 text-center ring-1 ring-black/[0.06] dark:bg-background/60 dark:ring-white/[0.06]">
+            <Typography className="text-base leading-relaxed">
+              This local project is ready for onboarding.
+            </Typography>
+            <Typography variant="secondary" className="mt-3 text-sm leading-relaxed">
+              Next, we will guide you through the onboarding flow to set up your Stack Auth configuration.
+            </Typography>
+          </div>
+        </OnboardingPage>
+      );
+    }
+
     const createNewSelected = selectedConfigChoice === "create-new";
-    const linkExistingSelected = !isLocalEmulator && selectedConfigChoice === "link-existing";
+    const linkExistingSelected = selectedConfigChoice === "link-existing";
 
     return (
       <OnboardingPage
         stepKey="config-choice"
         title="Choose how you want to start"
-        subtitle={isLocalEmulator ? "Start with a new configuration from this local stack.config.ts file." : "Start fresh or link an existing config."}
+        subtitle="Start fresh or link an existing config."
         steps={timelineSteps}
         currentStep="config_choice"
         onStepClick={handleTimelineStepClick}
@@ -447,7 +482,7 @@ export function ProjectOnboardingWizard(props: {
             loading={saving}
             onClick={() => runAsynchronouslyWithAlert(() => runWithSaving(async () => {
               await persistOnboardingState();
-              if (isLocalEmulator || selectedConfigChoice === "create-new") {
+              if (selectedConfigChoice === "create-new") {
                 await props.setStatus("apps_selection");
               } else {
                 props.setMode("link-existing");
@@ -458,7 +493,7 @@ export function ProjectOnboardingWizard(props: {
           </DesignButton>
         }
       >
-        <div className={cn("grid gap-4", isLocalEmulator ? "sm:grid-cols-1" : "sm:grid-cols-2")}>
+        <div className="grid gap-4 sm:grid-cols-2">
           <button
             type="button"
             disabled={saving}
@@ -487,35 +522,33 @@ export function ProjectOnboardingWizard(props: {
             </div>
           </button>
 
-          {!isLocalEmulator && (
-            <button
-              type="button"
-              disabled={saving}
-              onClick={() => setSelectedConfigChoice("link-existing")}
-              className={cn(
-                "relative flex flex-col items-center gap-6 rounded-2xl p-10 text-center transition-[box-shadow,background-color] duration-150 hover:transition-none",
-                linkExistingSelected
-                  ? "bg-white ring-2 ring-blue-500/50 shadow-md dark:bg-blue-500/[0.08] dark:ring-blue-500/50 dark:shadow-none"
-                  : "bg-white/50 ring-1 ring-black/[0.06] hover:ring-black/[0.10] dark:bg-background/60 dark:backdrop-blur-xl dark:ring-white/[0.06] dark:hover:ring-white/[0.10]",
-              )}
-            >
-              {linkExistingSelected && (
-                <div className="absolute right-3 top-3 flex h-5 w-5 items-center justify-center rounded-full bg-emerald-600 text-white">
-                  <CheckCircleIcon className="h-4 w-4" weight="fill" />
-                </div>
-              )}
-              <div className={cn(
-                "rounded-xl p-4",
-                linkExistingSelected ? "bg-blue-500/15 text-blue-500" : "bg-foreground/[0.06] text-muted-foreground",
-              )}>
-                <LinkBreakIcon className="h-7 w-7" />
-              </div>
-              <div className="space-y-1.5">
-                <Typography className="text-base font-semibold">Link Existing Config</Typography>
-                <Typography variant="secondary" className="text-sm leading-relaxed">If you already have a Stack Auth project locally or on GitHub, link it here.</Typography>
+          <button
+            type="button"
+            disabled={saving}
+            onClick={() => setSelectedConfigChoice("link-existing")}
+            className={cn(
+              "relative flex flex-col items-center gap-6 rounded-2xl p-10 text-center transition-[box-shadow,background-color] duration-150 hover:transition-none",
+              linkExistingSelected
+                ? "bg-white ring-2 ring-blue-500/50 shadow-md dark:bg-blue-500/[0.08] dark:ring-blue-500/50 dark:shadow-none"
+                : "bg-white/50 ring-1 ring-black/[0.06] hover:ring-black/[0.10] dark:bg-background/60 dark:backdrop-blur-xl dark:ring-white/[0.06] dark:hover:ring-white/[0.10]",
+            )}
+          >
+            {linkExistingSelected && (
+              <div className="absolute right-3 top-3 flex h-5 w-5 items-center justify-center rounded-full bg-emerald-600 text-white">
+                <CheckCircleIcon className="h-4 w-4" weight="fill" />
               </div>
-            </button>
-          )}
+            )}
+            <div className={cn(
+              "rounded-xl p-4",
+              linkExistingSelected ? "bg-blue-500/15 text-blue-500" : "bg-foreground/[0.06] text-muted-foreground",
+            )}>
+              <LinkBreakIcon className="h-7 w-7" />
+            </div>
+            <div className="space-y-1.5">
+              <Typography className="text-base font-semibold">Link Existing Config</Typography>
+              <Typography variant="secondary" className="text-sm leading-relaxed">If you already have a Stack Auth project locally or on GitHub, link it here.</Typography>
+            </div>
+          </button>
         </div>
       </OnboardingPage>
     );
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts
index c4cea8669b..846f3ef51f 100644
--- a/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts
+++ b/apps/e2e/tests/backend/endpoints/api/v1/internal/local-emulator-project.test.ts
@@ -217,4 +217,45 @@ describe("local emulator project endpoint", () => {
     expect(projectBResponse.status).toBe(200);
     expect(projectBResponse.body.owner_team_id).toBe(LOCAL_EMULATOR_OWNER_TEAM_ID);
   });
+
+  it.runIf(isLocalEmulator)("updates onboarding_state on local emulator projects without mutating env config", async ({ expect }) => {
+    const filePath = `/tmp/${randomUUID()}/stack.config.ts`;
+    await fs.mkdir(path.dirname(filePath), { recursive: true });
+    await fs.writeFile(filePath, "", "utf-8");
+
+    const localEmulatorProjectResponse = await niceBackendFetch(LOCAL_EMULATOR_PROJECT_ENDPOINT, {
+      accessType: "admin",
+      method: "POST",
+      body: {
+        absolute_file_path: filePath,
+      },
+    });
+    expect(localEmulatorProjectResponse.status).toBe(200);
+
+    backendContext.set({
+      projectKeys: {
+        projectId: localEmulatorProjectResponse.body.project_id,
+        superSecretAdminKey: localEmulatorProjectResponse.body.super_secret_admin_key,
+      },
+    });
+
+    const onboardingState = {
+      selected_config_choice: "create-new" as const,
+      selected_apps: ["authentication", "payments", "emails", "analytics"] as const,
+      selected_sign_in_methods: [] as const,
+      selected_email_theme_id: randomUUID(),
+      selected_payments_country: "US" as const,
+    };
+
+    const updateCurrentProjectResponse = await niceBackendFetch("/api/v1/internal/projects/current", {
+      accessType: "admin",
+      method: "PATCH",
+      body: {
+        onboarding_state: onboardingState,
+      },
+    });
+
+    expect(updateCurrentProjectResponse.status).toBe(200);
+    expect(updateCurrentProjectResponse.body.onboarding_state).toEqual(onboardingState);
+  });
 });
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts
new file mode 100644
index 0000000000..c352cc0adc
--- /dev/null
+++ b/apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts
@@ -0,0 +1,11 @@
+import { it } from "../../../../helpers";
+import { niceBackendFetch } from "../../../backend-helpers";
+
+it("returns the SDK setup prompt as text with short cache headers", async ({ expect }) => {
+  const response = await niceBackendFetch("/api/v1/setup-prompt");
+
+  expect(response.status).toBe(200);
+  expect(typeof response.body).toBe("string");
+  expect(response.body).toContain("# Setting up Stack Auth");
+  expect(response.headers.get("cache-control")).toBe("public, max-age=60");
+});
diff --git a/docs-mintlify/guides/getting-started/setup.mdx b/docs-mintlify/guides/getting-started/setup.mdx
index 642f9d2b6b..782c80ea90 100644
--- a/docs-mintlify/guides/getting-started/setup.mdx
+++ b/docs-mintlify/guides/getting-started/setup.mdx
@@ -4,711 +4,84 @@ description: Install and configure Stack Auth for your project
 sidebarTitle: Setup
 ---
 
-# Setup
-
-## Prerequisites
-
-Before getting started, make sure you have a project set up for your chosen platform:
-
-- **Next.js**: A [Next.js project](https://nextjs.org/docs/getting-started/installation) using the app router (Stack Auth does not support the pages router on Next.js)
-- **React**: A [React project](https://react.dev/learn/creating-a-react-app) (we show examples with Vite)
-- **JavaScript**: A Node.js project with Express
-- **Python**: A Python environment with your chosen framework (Django, FastAPI, or Flask)
-
-We recommend using our **setup wizard** for JavaScript frameworks for a seamless installation experience. For Python, we recommend using the REST API approach.
-
-## Setup Wizard / Manual Installation
-
-### Setup wizard (recommended for JS)
-
-#### Run installation wizard
-
-<Info>
-  The setup wizard is available for JavaScript/TypeScript frameworks. For Python projects, please use the manual installation method.
-</Info>
-
-Run Stack's installation wizard with the following command:
-
-```sh title="Terminal"
-npx @stackframe/stack-cli@latest init
-```
-
-#### Update API keys
-
-Create an account on [the Stack Auth dashboard](https://app.stack-auth.com/projects), create a new project, and copy its environment variables into the appropriate configuration file. If your project requires publishable client keys, create a project key that includes one and copy that as well.
-
-<Tabs>
-  <Tab title="Next.js">
-    ```bash title=".env.local"
-    NEXT_PUBLIC_STACK_PROJECT_ID=<your-project-id>
-    NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
-    STACK_SECRET_SERVER_KEY=<your-secret-server-key>
-    ```
-  </Tab>
-  <Tab title="React">
-    ```typescript title="stack/client.ts"
-    // Update the values in stack/client.ts created by the wizard
-    export const stackClientApp = new StackClientApp({
-      projectId: "your-project-id",
-      publishableClientKey: "your-publishable-client-key",
-      tokenStore: "cookie",
-    });
-    ```
-  </Tab>
-  <Tab title="Vanilla JavaScript">
-    ```bash title=".env"
-    STACK_PROJECT_ID=<your-project-id>
-    STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
-    STACK_SECRET_SERVER_KEY=<your-secret-server-key>
-    ```
-  </Tab>
-</Tabs>
-
-#### Done!
-
-That's it! The wizard should have created or updated the following files in your project:
-
-<Tabs>
-  <Tab title="Next.js">
-    - `app/handler/[...stack]/page.tsx`: Default pages for sign-in, sign-out, account settings, and more
-    - `app/layout.tsx`: Updated to wrap the entire body with `StackProvider` and `StackTheme`
-    - `app/loading.tsx`: Suspense boundary for Stack's async hooks
-    - `stack/server.ts`: Contains the `stackServerApp` for server-side usage
-    - `stack/client.ts`: Contains the `stackClientApp` for client-side usage
-  </Tab>
-  <Tab title="React">
-    - `stack/client.ts`: Contains the `stackClientApp` configuration
-    - Your app should be wrapped with `StackProvider` and `StackTheme`
-  </Tab>
-  <Tab title="Node.js/Express">
-    - `stack/server.ts`: Contains the `stackServerApp` configuration
-  </Tab>
-</Tabs>
-
-### Manual installation
-
-<Note>
-  The setup wizard also supports existing, complicated projects. Cases where manual installation is necessary are rare for JavaScript frameworks.
-</Note>
-
-<Steps>
-  <Step title="Install package">
-    First, install the appropriate Stack package:
-
-    <Tabs>
-      <Tab title="Next.js">
-        ```bash title="Terminal"
-        npm install @stackframe/stack
-        ```
-      </Tab>
-      <Tab title="React">
-        ```bash title="Terminal"
-        npm install @stackframe/react
-        ```
-      </Tab>
-      <Tab title="Express">
-        ```bash title="Terminal"
-        npm install @stackframe/js
-        ```
-      </Tab>
-      <Tab title="Node.js">
-        ```bash title="Terminal"
-        npm install @stackframe/js
-        ```
-      </Tab>
-      <Tab title="Django">
-        ```bash title="Terminal"
-        pip install requests
-        ```
-      </Tab>
-      <Tab title="FastAPI">
-        ```bash title="Terminal"
-        pip install requests
-        ```
-      </Tab>
-      <Tab title="Flask">
-        ```bash title="Terminal"
-        pip install requests
-        ```
-      </Tab>
-    </Tabs>
-  </Step>
-
-  <Step title="Create API keys">
-    [Register a new account on Stack](https://app.stack-auth.com/handler/sign-up), create a project in the dashboard, and copy the project ID. If your project requires publishable client keys, also create a project key from the left sidebar and copy the publishable client key. For server-side setups, also copy the secret server key.
-  </Step>
-
-  <Step title="Configure environment variables">
-    Set up your environment variables or configuration:
-
-    <Tabs>
-      <Tab title="Next.js">
-        ```bash title=".env.local"
-        NEXT_PUBLIC_STACK_PROJECT_ID=<your-project-id>
-        NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
-        STACK_SECRET_SERVER_KEY=<your-secret-server-key>
-        ```
-      </Tab>
-      <Tab title="React">
-        ```bash title=".env"
-        # Store these in environment variables or directly in the client file during development
-        VITE_STACK_PROJECT_ID=<your-project-id>
-        VITE_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
-        ```
-      </Tab>
-      <Tab title="Express">
-        ```bash title=".env"
-        STACK_PROJECT_ID=<your-project-id>
-        STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
-        STACK_SECRET_SERVER_KEY=<your-secret-server-key>
-        ```
-      </Tab>
-      <Tab title="Node.js">
-        ```bash title=".env"
-        STACK_PROJECT_ID=<your-project-id>
-        STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
-        STACK_SECRET_SERVER_KEY=<your-secret-server-key>
-        ```
-      </Tab>
-      <Tab title="Django">
-        ```python title="settings.py"
-        import os
-
-        stack_project_id = os.getenv("STACK_PROJECT_ID")
-        stack_publishable_client_key = os.getenv("STACK_PUBLISHABLE_CLIENT_KEY")
-        stack_secret_server_key = os.getenv("STACK_SECRET_SERVER_KEY")
-        ```
-      </Tab>
-      <Tab title="FastAPI">
-        ```python title="main.py"
-        import os
-
-        stack_project_id = os.getenv("STACK_PROJECT_ID")
-        stack_publishable_client_key = os.getenv("STACK_PUBLISHABLE_CLIENT_KEY")
-        stack_secret_server_key = os.getenv("STACK_SECRET_SERVER_KEY")
-        ```
-      </Tab>
-      <Tab title="Flask">
-        ```python title="app.py"
-        import os
-
-        stack_project_id = os.getenv("STACK_PROJECT_ID")
-        stack_publishable_client_key = os.getenv("STACK_PUBLISHABLE_CLIENT_KEY")
-        stack_secret_server_key = os.getenv("STACK_SECRET_SERVER_KEY")
-        ```
-      </Tab>
-    </Tabs>
-  </Step>
-
-  <Step title="Create Stack configuration">
-    Create the Stack app configuration:
-
-    <Tabs>
-      <Tab title="Next.js (server)">
-        ```typescript title="stack/server.ts"
-        import "server-only";
-        import { StackServerApp } from "@stackframe/stack";
-
-        export const stackServerApp = new StackServerApp({
-          tokenStore: "nextjs-cookie", // storing auth tokens in cookies
-        });
-        ```
-      </Tab>
-      <Tab title="Next.js (client)">
-        ```typescript title="stack/client.ts"
-        import { StackClientApp } from "@stackframe/stack";
-
-        export const stackClientApp = new StackClientApp({
-          // Environment variables are automatically read
-        });
-        ```
-      </Tab>
-      <Tab title="React">
-        ```typescript title="stack/client.ts"
-        import { StackClientApp } from "@stackframe/react";
-        // If you use a router, uncomment the appropriate import and the redirectMethod below
-        // import { useNavigate } from "react-router-dom"; // React Router
-        // import { useNavigate } from "@tanstack/react-router"; // TanStack Router
-
-        export const stackClientApp = new StackClientApp({
-          projectId: process.env.VITE_STACK_PROJECT_ID || "your-project-id",
-          publishableClientKey: process.env.VITE_STACK_PUBLISHABLE_CLIENT_KEY || "your-publishable-client-key",
-          tokenStore: "cookie",
-          // redirectMethod: { useNavigate }, // Set this for non-Next.js frameworks
-        });
-        ```
-      </Tab>
-      <Tab title="Express">
-        ```typescript title="stack/server.ts"
-        import { StackServerApp } from "@stackframe/js";
-
-        export const stackServerApp = new StackServerApp({
-          projectId: process.env.STACK_PROJECT_ID,
-          publishableClientKey: process.env.STACK_PUBLISHABLE_CLIENT_KEY,
-          secretServerKey: process.env.STACK_SECRET_SERVER_KEY,
-          tokenStore: "memory",
-        });
-        ```
-      </Tab>
-      <Tab title="Node.js (server)">
-        ```javascript title="stack/server.js"
-        import { StackServerApp } from "@stackframe/js";
-
-        export const stackServerApp = new StackServerApp({
-          projectId: process.env.STACK_PROJECT_ID,
-          publishableClientKey: process.env.STACK_PUBLISHABLE_CLIENT_KEY,
-          secretServerKey: process.env.STACK_SECRET_SERVER_KEY,
-          tokenStore: "memory",
-        });
-        ```
-      </Tab>
-      <Tab title="Node.js (client)">
-        ```javascript title="stack/client.js"
-        import { StackClientApp } from "@stackframe/js";
-
-        export const stackClientApp = new StackClientApp({
-          projectId: process.env.STACK_PROJECT_ID,
-          publishableClientKey: process.env.STACK_PUBLISHABLE_CLIENT_KEY,
-          tokenStore: "cookie",
-        });
-        ```
-      </Tab>
-      <Tab title="Django">
-        ```python title="views.py"
-        import requests
-
-        def stack_auth_request(method, endpoint, **kwargs):
-            res = requests.request(
-                method,
-                f'https://api.stack-auth.com/{endpoint}',
-                headers={
-                    'x-stack-access-type': 'server',  # or 'client' if you're only accessing the client API
-                    'x-stack-project-id': stack_project_id,
-                    'x-stack-publishable-client-key': stack_publishable_client_key,
-                    'x-stack-secret-server-key': stack_secret_server_key,  # not necessary if access type is 'client'
-                    **kwargs.pop('headers', {}),
-                },
-                **kwargs,
-            )
-            if res.status_code >= 400:
-                raise Exception(f"Stack Auth API request failed with {res.status_code}: {res.text}")
-            return res.json()
-        ```
-      </Tab>
-      <Tab title="FastAPI">
-        ```python title="main.py"
-        import requests
-
-        def stack_auth_request(method, endpoint, **kwargs):
-            res = requests.request(
-                method,
-                f'https://api.stack-auth.com/{endpoint}',
-                headers={
-                    'x-stack-access-type': 'server',  # or 'client' if you're only accessing the client API
-                    'x-stack-project-id': stack_project_id,
-                    'x-stack-publishable-client-key': stack_publishable_client_key,
-                    'x-stack-secret-server-key': stack_secret_server_key,  # not necessary if access type is 'client'
-                    **kwargs.pop('headers', {}),
-                },
-                **kwargs,
-            )
-            if res.status_code >= 400:
-                raise Exception(f"Stack Auth API request failed with {res.status_code}: {res.text}")
-            return res.json()
-        ```
-      </Tab>
-      <Tab title="Flask">
-        ```python title="app.py"
-        import requests
-
-        def stack_auth_request(method, endpoint, **kwargs):
-            res = requests.request(
-                method,
-                f'https://api.stack-auth.com/{endpoint}',
-                headers={
-                    'x-stack-access-type': 'server',  # or 'client' if you're only accessing the client API
-                    'x-stack-project-id': stack_project_id,
-                    'x-stack-publishable-client-key': stack_publishable_client_key,
-                    'x-stack-secret-server-key': stack_secret_server_key,  # not necessary if access type is 'client'
-                    **kwargs.pop('headers', {}),
-                },
-                **kwargs,
-            )
-            if res.status_code >= 400:
-                raise Exception(f"Stack Auth API request failed with {res.status_code}: {res.text}")
-            return res.json()
-        ```
-      </Tab>
-    </Tabs>
-  </Step>
-
-  <Step title="Set up authentication handlers (Frontend frameworks only)">
-    For JavaScript frameworks, create the authentication handler:
-
-    <Tabs>
-      <Tab title="Next.js">
-        ```typescript title="app/handler/[...stack]/page.tsx"
-        import { StackHandler } from "@stackframe/stack";
-        import { stackServerApp } from "@/stack/server";
-
-        export default function Handler(props: unknown) {
-          return <StackHandler fullPage app={stackServerApp} routeProps={props} />;
-        }
-        ```
-      </Tab>
-      <Tab title="React">
-        ```typescript title="App.tsx"
-        import { StackHandler, StackProvider, StackTheme } from "@stackframe/react";
-        import { Suspense } from "react";
-        import { BrowserRouter, Route, Routes, useLocation } from "react-router-dom";
-        import { stackClientApp } from "./stack/client";
-
-        function HandlerRoutes() {
-          const location = useLocation();
-          return (
-            <StackHandler app={stackClientApp} location={location.pathname} fullPage />
-          );
-        }
-
-        export default function App() {
-          return (
-            <Suspense fallback={null}>
-              <BrowserRouter>
-                <StackProvider app={stackClientApp}>
-                  <StackTheme>
-                    <Routes>
-                      <Route path="/handler/*" element={<HandlerRoutes />} />
-                      <Route path="/" element={<div>hello world</div>} />
-                    </Routes>
-                  </StackTheme>
-                </StackProvider>
-              </BrowserRouter>
-            </Suspense>
-          );
-        }
-        ```
-      </Tab>
-      <Tab title="Express">
-        ```typescript title="Note"
-        // Express doesn't use built-in handlers
-        // Use the REST API or integrate with your frontend
-        ```
-      </Tab>
-      <Tab title="Node.js">
-        ```javascript title="Note"
-        // Node.js doesn't use built-in handlers
-        // Use the REST API or integrate with your frontend
-        ```
-      </Tab>
-    </Tabs>
-  </Step>
-
-  <Step title="Add providers (Next.js and React only)">
-    For Next.js and React, wrap your app with Stack providers:
-
-    <Tabs>
-      <Tab title="Next.js">
-        ```typescript title="app/layout.tsx"
-        import React from "react";
-        import { StackProvider, StackTheme } from "@stackframe/stack";
-        import { stackServerApp } from "@/stack/server";
-
-        export default function RootLayout({ children }: { children: React.ReactNode }) {
-          return (
-            <html lang="en">
-              <body>
-                <StackProvider app={stackServerApp}>
-                  <StackTheme>
-                    {children}
-                  </StackTheme>
-                </StackProvider>
-              </body>
-            </html>
-          );
-        }
-        ```
-      </Tab>
-      <Tab title="React">
-        ```typescript title="Note"
-        // Already shown in the App.tsx example above
-        // Make sure to wrap your app with StackProvider and StackTheme
-        ```
-      </Tab>
-    </Tabs>
-  </Step>
-
-  <Step title="Add loading boundary (Next.js only)">
-    For Next.js, add a Suspense boundary:
-
-    ```typescript title="app/loading.tsx"
-    export default function Loading() {
-      // You can use any loading indicator here
-      return <>Loading...</>;
+export const SetupPromptBlock = () => {
+  const setupPromptEndpoint = "https://api.stack-auth.com/api/v1/setup-prompt";
+  const setupPromptLoadErrorMessage = "Failed to load the setup prompt. Please try again.";
+
+  const [prompt, setPrompt] = useState("");
+  const [isLoading, setIsLoading] = useState(true);
+  const [loadError, setLoadError] = useState(null);
+
+  const loadPrompt = async () => {
+    setLoadError(null);
+    const response = await fetch(setupPromptEndpoint, {
+      method: "GET",
+      headers: {
+        Accept: "text/plain",
+      },
+    }).then(
+      (value) => value,
+      () => {
+        throw new Error(setupPromptLoadErrorMessage);
+      },
+    );
+    if (!response.ok) {
+      throw new Error(setupPromptLoadErrorMessage);
     }
-    ```
-  </Step>
-
-  <Step title="Add suspense boundary (React only)">
-    For React, add a suspense boundary:
 
-    ```typescript title="App.tsx"
-    import { Suspense } from "react";
-    import { StackProvider } from "@stackframe/react";
-    import { stackClientApp } from "./stack/client";
-
-    export default function App() {
-      return (
-        // Wrap your StackProvider with Suspense for async hooks to work
-        <Suspense fallback={<div>Loading...</div>}>
-          <StackProvider app={stackClientApp}>
-            {/* Your app content */}
-          </StackProvider>
-        </Suspense>
-      );
+    const text = await response.text();
+    if (text.trim().length === 0) {
+      throw new Error(setupPromptLoadErrorMessage);
     }
-    ```
-  </Step>
-</Steps>
-
-## Post-setup
-
-That's it! Stack is now configured in your project.
-
-### Testing your setup
-
-<Tabs>
-  <Tab title="Next.js">
-    ```bash title="Terminal"
-    # Start your Next.js app
-    npm run dev
-
-    # Navigate to the sign-up page
-    # http://localhost:3000/handler/sign-up
-    ```
-  </Tab>
-  <Tab title="React">
-    ```bash title="Terminal"
-    # Start your React app
-    npm run dev
-
-    # Navigate to the sign-up page
-    # http://localhost:5173/handler/sign-up
-    ```
-  </Tab>
-  <Tab title="Express">
-    ```bash title="Terminal"
-    # Start your Express server
-    npm start
-
-    # Use the REST API or integrate with your frontend
-    # Check the REST API documentation for endpoints
-    ```
-  </Tab>
-  <Tab title="Node.js">
-    ```bash title="Terminal"
-    # Start your Node.js app
-    node index.js
-
-    # Use the REST API or integrate with your frontend
-    # Check the REST API documentation for endpoints
-    ```
-  </Tab>
-  <Tab title="Django">
-    ```python title="Terminal"
-    # Test the Stack Auth API connection
-    print(stack_auth_request('GET', '/api/v1/projects/current'))
-
-    # Start your Django server
-    python manage.py runserver
-    ```
-  </Tab>
-  <Tab title="FastAPI">
-    ```python title="Terminal"
-    # Test the Stack Auth API connection
-    print(stack_auth_request('GET', '/api/v1/projects/current'))
-
-    # Start your FastAPI server
-    uvicorn main:app --reload
-    ```
-  </Tab>
-  <Tab title="Flask">
-    ```python title="Terminal"
-    # Test the Stack Auth API connection
-    print(stack_auth_request('GET', '/api/v1/projects/current'))
-
-    # Start your Flask server
-    flask run
-    ```
-  </Tab>
-</Tabs>
-
-### What you'll see
-
-For JavaScript frameworks with built-in UI components, you'll see the Stack Auth sign-up page:
-
-<Frame>
-  <img src="/images/sign-in.png" alt="Stack sign-in page" />
-</Frame>
-
-After signing up/in, you will be redirected back to the home page. You can also check out the account settings page.
-
-<Frame>
-  <img src="/images/account-settings.png" alt="Stack account settings page" />
-</Frame>
-
-For Python and backend-only JavaScript setups, you'll interact with Stack Auth through the REST API.
-
-## Example usage
-
-Here are some basic usage examples for each platform:
 
-<Tabs>
-  <Tab title="Server Component">
-    ```typescript title="Server Component"
-    import { stackServerApp } from "@/stack/server";
+    setPrompt(text);
+    setIsLoading(false);
+    return text;
+  };
 
-    // In a Server Component or API route
-    const user = await stackServerApp.getUser();
-    if (user) {
-      console.log("User is signed in:", user.displayName);
-    } else {
-      console.log("User is not signed in");
+  const onMount = (node) => {
+    if (node == null || node.dataset.setupPromptInitialized === "true") {
+      return;
     }
-    ```
-  </Tab>
-  <Tab title="Client Component">
-    ```typescript title="Client Component"
-    'use client';
-    import { useUser } from "@stackframe/stack";
-
-    export default function MyComponent() {
-      const user = useUser();
-
-      if (user) {
-        return <div>Hello, {user.displayName}!</div>;
-      } else {
-        return <div>Please sign in</div>;
-      }
-    }
-    ```
-  </Tab>
-  <Tab title="React">
-    ```typescript title="Component"
-    import { useUser } from "@stackframe/react";
-
-    export default function MyComponent() {
-      const user = useUser();
-
-      if (user) {
-        return <div>Hello, {user.displayName}!</div>;
-      } else {
-        return <div>Please sign in</div>;
-      }
-    }
-    ```
-  </Tab>
-  <Tab title="Express">
-    ```typescript title="server.ts"
-    import { stackServerApp } from "./stack/server.js";
-
-    app.get('/profile', async (req, res) => {
-      try {
-        // Get access token from request headers
-        const accessToken = req.headers['x-stack-access-token'];
-        const user = await stackServerApp.getUser({ accessToken });
-
-        if (user) {
-          res.json({ message: `Hello, ${user.displayName}!` });
-        } else {
-          res.status(401).json({ error: 'Not authenticated' });
-        }
-      } catch (error) {
-        res.status(500).json({ error: 'Server error' });
-      }
-    });
-    ```
-  </Tab>
-  <Tab title="Node.js">
-    ```javascript title="index.js"
-    import { stackServerApp } from "./stack/server.js";
-
-    async function checkUser(accessToken) {
-      try {
-        const user = await stackServerApp.getUser({ accessToken });
-
-        if (user) {
-          console.log(`Hello, ${user.displayName}!`);
-        } else {
-          console.log('User not authenticated');
-        }
-      } catch (error) {
-        console.error('Error:', error);
-      }
-    }
-    ```
-  </Tab>
-  <Tab title="Django">
-    ```python title="views.py"
-    # In your views.py
-    def profile_view(request):
-        # Get access token from request headers
-        access_token = request.headers.get('X-Stack-Access-Token')
-
-        try:
-            user_data = stack_auth_request('GET', '/api/v1/users/me', headers={
-                'x-stack-access-token': access_token,
-            })
-            return JsonResponse({'message': f"Hello, {user_data['displayName']}!"})
-        except Exception as e:
-            return JsonResponse({'error': 'Not authenticated'}, status=401)
-    ```
-  </Tab>
-  <Tab title="FastAPI">
-    ```python title="main.py"
-    from fastapi import FastAPI, Header, HTTPException
-
-    app = FastAPI()
-
-    @app.get("/profile")
-    async def get_profile(x_stack_access_token: str = Header(None)):
-        if not x_stack_access_token:
-            raise HTTPException(status_code=401, detail="Access token required")
-
-        try:
-            user_data = stack_auth_request('GET', '/api/v1/users/me', headers={
-                'x-stack-access-token': x_stack_access_token,
-            })
-            return {"message": f"Hello, {user_data['displayName']}!"}
-        except Exception as e:
-            raise HTTPException(status_code=401, detail="Not authenticated")
-    ```
-  </Tab>
-  <Tab title="Flask">
-    ```python title="app.py"
-    from flask import Flask, request, jsonify
-
-    app = Flask(__name__)
-
-    @app.route('/profile')
-    def profile():
-        access_token = request.headers.get('X-Stack-Access-Token')
-
-        if not access_token:
-            return jsonify({'error': 'Access token required'}), 401
-
-        try:
-            user_data = stack_auth_request('GET', '/api/v1/users/me', headers={
-                'x-stack-access-token': access_token,
-            })
-            return jsonify({'message': f"Hello, {user_data['displayName']}!"})
-        except Exception as e:
-            return jsonify({'error': 'Not authenticated'}), 401
-    ```
-  </Tab>
-</Tabs>
-
-## Next steps
-
-Next up, we will show you how to [retrieve and update user information](/guides/getting-started/user-fundamentals), and how to [protect a page](/guides/getting-started/user-fundamentals#protecting-a-page) from unauthorized access.
-
-For Python developers, check out the [REST API documentation](/api/overview) to learn more about the available endpoints and how to use them in your Python application.
+    node.dataset.setupPromptInitialized = "true";
+    loadPrompt().then(
+      () => undefined,
+      (error) => {
+        setLoadError(error instanceof Error ? error.message : setupPromptLoadErrorMessage);
+        setIsLoading(false);
+      },
+    );
+  };
+
+  const onCopy = async (event) => {
+    const promptToCopy = isLoading ? await loadPrompt() : prompt;
+    await navigator.clipboard.writeText(promptToCopy);
+    const button = event.currentTarget;
+    button.textContent = "Copied";
+    window.setTimeout(() => {
+      button.textContent = "Copy prompt";
+    }, 1300);
+  };
+
+  return (
+    <div ref={onMount} className="not-prose relative mt-6">
+      <textarea
+        readOnly
+        value={loadError ? loadError : prompt}
+        className="h-[32rem] w-full resize-none overflow-auto rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 outline-none backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"
+      />
+      <button
+        type="button"
+        onClick={onCopy}
+        className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
+        disabled={isLoading || loadError !== null}
+      >
+        {isLoading ? "Loading..." : "Copy prompt"}
+      </button>
+    </div>
+  );
+};
+
+Use this prompt in your coding agent to set up Stack Auth in your project.
+
+<SetupPromptBlock />
diff --git a/docs-mintlify/snippets/home-prompt-island.jsx b/docs-mintlify/snippets/home-prompt-island.jsx
index 943b460a76..07526845e4 100644
--- a/docs-mintlify/snippets/home-prompt-island.jsx
+++ b/docs-mintlify/snippets/home-prompt-island.jsx
@@ -1,17 +1,56 @@
 export const HomePromptIsland = () => {
-  const agentSetupPromptPlaceholder = `You are my coding agent.
+  const setupPromptEndpoint = "https://api.stack-auth.com/api/v1/setup-prompt";
+  const setupPromptLoadErrorMessage = "Failed to load the setup prompt. Please try again.";
 
-Set up Stack Auth in this project.
-- Install and configure Stack Auth
-- Create initial authentication routes
-- Add sign-in and sign-up UI
-- Verify local development setup
+  const [prompt, setPrompt] = useState("");
+  const [isLoading, setIsLoading] = useState(true);
+  const [loadError, setLoadError] = useState(null);
 
-Return the exact files changed and next steps.`;
+  const loadPrompt = async () => {
+    setLoadError(null);
+    const response = await fetch(setupPromptEndpoint, {
+      method: "GET",
+      headers: {
+        Accept: "text/plain",
+      },
+    }).then(
+      (value) => value,
+      () => {
+        throw new Error(setupPromptLoadErrorMessage);
+      },
+    );
+    if (!response.ok) {
+      throw new Error(setupPromptLoadErrorMessage);
+    }
+
+    const text = await response.text();
+    if (text.trim().length === 0) {
+      throw new Error(setupPromptLoadErrorMessage);
+    }
+
+    setPrompt(text);
+    setIsLoading(false);
+    return text;
+  };
+
+  const onMount = (node) => {
+    if (node == null || node.dataset.setupPromptInitialized === "true") {
+      return;
+    }
+    node.dataset.setupPromptInitialized = "true";
+    loadPrompt().then(
+      () => undefined,
+      (error) => {
+        setLoadError(error instanceof Error ? error.message : setupPromptLoadErrorMessage);
+        setIsLoading(false);
+      },
+    );
+  };
 
   const onCopy = async (event) => {
+    const promptToCopy = isLoading ? await loadPrompt() : prompt;
+    await navigator.clipboard.writeText(promptToCopy);
     const button = event.currentTarget;
-    await navigator.clipboard.writeText(agentSetupPromptPlaceholder);
     button.textContent = "Copied";
     window.setTimeout(() => {
       button.textContent = "Copy prompt";
@@ -31,18 +70,19 @@ Return the exact files changed and next steps.`;
         Set up Stack Auth by copying the prompt below into your favorite coding agent.
       </p>
 
-      <div className="relative mt-6">
+      <div ref={onMount} className="relative mt-6">
         <textarea
           readOnly
-          value={agentSetupPromptPlaceholder}
+          value={loadError ? loadError : prompt}
           className="h-28 w-full resize-none overflow-hidden rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 outline-none backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"
         />
         <button
           type="button"
           onClick={onCopy}
           className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
+          disabled={isLoading || loadError !== null}
         >
-          Copy prompt
+          {isLoading ? "Loading..." : "Copy prompt"}
         </button>
         <div className="pointer-events-none absolute inset-x-2 bottom-2 h-8 rounded-b-xl bg-gradient-to-t from-[#f4f7ff] to-transparent dark:from-[#0f1a2e]" />
       </div>
@@ -58,7 +98,7 @@ Return the exact files changed and next steps.`;
           href="/guides/getting-started/setup"
           className="inline-flex items-center justify-center rounded-xl border border-[#9fb5e4] bg-white/60 px-5 py-3 text-sm font-semibold text-[#1f3764] no-underline transition-colors duration-150 hover:transition-none hover:bg-white/85 dark:border-[#3d5a91] dark:bg-transparent dark:text-[#d7e7ff] dark:hover:bg-white/10"
         >
-          Manual installation instructions
+          Open full prompt
         </a>
       </div>
     </div>
diff --git a/packages/stack-cli/src/commands/emulator.ts b/packages/stack-cli/src/commands/emulator.ts
index 22eee11baf..0bf78f1b0b 100644
--- a/packages/stack-cli/src/commands/emulator.ts
+++ b/packages/stack-cli/src/commands/emulator.ts
@@ -7,6 +7,7 @@ import { fileURLToPath } from "url";
 import { CliError } from "../lib/errors.js";
 
 const DEFAULT_EMULATOR_BACKEND_PORT = 26701;
+const DEFAULT_EMULATOR_DASHBOARD_PORT = 26700;
 
 function emulatorBackendPort(): number {
   const raw = process.env.EMULATOR_BACKEND_PORT;
@@ -18,6 +19,16 @@ function emulatorBackendPort(): number {
   return parsed;
 }
 
+function emulatorDashboardPort(): number {
+  const raw = process.env.EMULATOR_DASHBOARD_PORT;
+  if (!raw) return DEFAULT_EMULATOR_DASHBOARD_PORT;
+  const parsed = Number(raw);
+  if (!Number.isInteger(parsed) || parsed <= 0) {
+    throw new CliError(`Invalid EMULATOR_DASHBOARD_PORT: ${raw}`);
+  }
+  return parsed;
+}
+
 function emulatorHome(): string {
   return process.env.STACK_EMULATOR_HOME ?? join(homedir(), ".stack", "emulator");
 }
@@ -95,21 +106,12 @@ async function fetchEmulatorCredentials(pck: string, backendPort: number, config
   };
 }
 
-function dashboardHostForPortPrefix(portPrefix: string): string {
-  if (portPrefix === "91") return "a.localhost";
-  if (portPrefix === "92") return "b.localhost";
-  if (portPrefix === "93") return "c.localhost";
-  return "localhost";
-}
-
 function localEmulatorDashboardBaseUrl(): string {
   const explicit = process.env.STACK_LOCAL_EMULATOR_DASHBOARD_URL;
   if (explicit && explicit.trim().length > 0) {
     return explicit.replace(/\/$/, "");
   }
-  const portPrefix = process.env.NEXT_PUBLIC_STACK_PORT_PREFIX ?? "81";
-  const host = dashboardHostForPortPrefix(portPrefix);
-  return `http://${host}:${portPrefix}01`;
+  return `http://localhost:${emulatorDashboardPort()}`;
 }
 
 function openUrlInBrowser(url: string): boolean {
diff --git a/packages/stack-shared/src/ai/prompts.ts b/packages/stack-shared/src/ai/prompts.ts
new file mode 100644
index 0000000000..089e1d66d3
--- /dev/null
+++ b/packages/stack-shared/src/ai/prompts.ts
@@ -0,0 +1,276 @@
+import { StackAssertionError } from "../utils/errors";
+import { deindent } from "../utils/strings";
+
+export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "python" | "js" | "tanstack-start" | "nodejs", extraOptions: { tanstackQuery: boolean }) {
+  if (mainType !== "ai-prompt") throw new StackAssertionError(`Not yet implemented`);
+  return deindent`
+    # Setting up Stack Auth
+
+    This prompt explains how to set up Stack Auth in your project.
+
+    To use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.
+
+    ## SDK Setup Instructions
+
+    Follow these instructions in order to set up and get started with the Stack Auth SDK in various languages. Not all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.
+
+    The frameworks and languages with explicit SDK support are:
+
+    - Next.js
+    - React
+    - Other JS & TS (both frontend and backend)
+
+    ### Install dependencies
+
+    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.
+
+    #### JavaScript & TypeScript
+
+    For JS & TS, the following packages are available:
+
+    - Next.js: \`@stackframe/stack\`
+    - React: \`@stackframe/react\`
+    - Other & vanilla JS: \`@stackframe/js\`
+
+    To install the correct JavaScript Stack Auth SDK into your project, run the following command:
+
+    \`\`\`sh
+    npm i <the-sdk-from-above>
+    # or: pnpm i <the-sdk-from-above>
+    # or: yarn add <the-sdk-from-above>
+    # or: bun add <the-sdk-from-above>
+    \`\`\`
+
+    ### Initializing the Stack App
+
+    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+
+    For the frontend, you can use the \`StackClientApp\`:
+
+    \`\`\`ts src/stack/client.ts
+    import { StackClientApp } from "@stackframe/js";  // use the correct package that you installed in the first step
+
+    export const stackClientApp = new StackClientApp({
+      tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
+    });
+    \`\`\`
+
+    For the backend, you can create a \`StackServerApp\` object:
+
+    \`\`\`ts src/stack/server.ts
+    import { StackServerApp } from "@stackframe/js";  // use the correct package that you installed in the first step
+
+    export const stackServerApp = new StackServerApp({
+      tokenStore: null,
+    });
+    \`\`\`
+
+    For frameworks that are both front- and backend, like Next.js: You can create a \`StackServerApp\` from a \`StackClientApp\` object:
+
+    \`\`\`ts src/stack/server.ts
+    import { StackServerApp } from "@stackframe/stack";  // use the correct package that you installed in the first step
+    import { stackClientApp } from "./client";
+
+    export const stackServerApp = new StackServerApp({
+      inheritsFrom: stackClientApp,
+    });
+    \`\`\`
+
+    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a \`StackClientApp\` object.
+
+    ### Setting up the project
+
+    It's now time to create a development setup for Stack Auth.
+
+    You can either run Stack Auth locally, or connect to a project hosted in the cloud. If you're unsure, running Stack Auth locally is a good start unless you know you're in an environment where this is not supported.
+
+    If you already use Stack Auth for your product, we recommend you re-use the same project.
+
+    #### Running Stack Auth locally
+
+    This is the recommended way for most users. It also lets you configure Stack Auth locally with a \`stack.config.ts\` file. First, create the config file in the root directory of the workspace (or anywhere else):
+
+    \`\`\`ts stack.config.ts
+    import type { StackConfig } from "@stackframe/js";  // use the correct package that you installed in the first step
+
+    // show-onboarding: When the local emulator starts, show the onboarding flow for this project
+    export const config: StackConfig = "show-onboarding";
+    \`\`\`
+
+    To run Stack Auth locally, you need to start the emulator and set the environment variables. The \`emulator run\` CLI command does both of these, so you can simply wrap your existing \`dev\` script:
+
+    \`\`\`json package.json
+    {
+      // ...
+      "scripts": {
+        // ...
+        "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+      }
+    }
+    \`\`\`
+
+    #### Connecting a cloud project
+
+    <Note>
+      If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.
+    </Note>
+
+    If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+
+    This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+
+    ##### Frontend
+
+    Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the \`/projects/\` part. Copy-paste it into your \`.env.local\` file (or wherever your environment variables are stored):
+
+    \`\`\`.env .env.local
+    STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+    \`\`\`
+
+    Alternatively, you can also just set the project ID in the \`stack/client.ts\` file:
+
+    \`\`\`ts src/stack/client.ts
+    export const stackClientApp = new StackClientApp({
+      // ...
+      projectId: "your-project-id",
+    });
+    \`\`\`
+
+
+    ##### Backend (or both frontend and backend)
+
+    First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+
+    Then, copy-paste them into your \`.env.local\` file (or wherever your environment variables are stored):
+
+    \`\`\`.env .env.local
+    STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+    STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+    \`\`\`
+
+    They'll automatically be picked up by the \`StackServerApp\` constructor.
+
+
+    ### React: Creating a \`<StackProvider />\` and \`<StackTheme />\`
+
+    For React specifically, we provide \`StackProvider\` and \`StackTheme\` components that should wrap your entire app at the root level. These components make sure that the built-in React components work correctly.
+
+    For example, if you have an \`App.tsx\` file, this may look like this:
+
+    \`\`\`tsx src/App.tsx
+    import { StackProvider, StackTheme } from "@stackframe/react";  // use the correct package that you installed in the first step
+    import { stackClientApp } from "@/stack/client";
+
+    export default function App() {
+      return (
+        <StackProvider app={stackClientApp}>
+          <StackTheme>
+            {/* your app content */}
+          </StackTheme>
+        </StackProvider>
+      );
+    }
+    \`\`\`
+
+    For Next.js specifically: You can do this in the \`layout.tsx\` file in the \`app\` directory:
+
+    \`\`\`tsx src/app/layout.tsx
+    import { Suspense } from "react";
+    import { StackProvider, StackTheme } from "@stackframe/stack";  // use the correct package that you installed in the first step
+    import { stackServerApp } from "@/stack/server";
+
+    export default function RootLayout({ children }: { children: React.ReactNode }) {
+      return (
+        <StackProvider app={stackServerApp}>
+          <StackTheme>
+            {children}
+          </StackTheme>
+        </StackProvider>
+      );
+    }
+    \`\`\`
+
+    For React specifically: You can do this in the \`App.tsx\` file:
+
+
+    ### React: Add Suspense boundary
+
+    For React specifically, Stack Auth provides additional \`useXyz\` equivalents for \`getXyz\`/\`listXyz\` functions. For example, \`useUser\` is like \`getUser\`, but as a synchronous React hook that suspends.
+
+    To support the suspension, you need to add a Suspense boundary around your app. The easiest way to do this is to just wrap your entire app in a \`Suspense\` component:
+
+    \`\`\`tsx src/app/layout.tsx
+    import { Suspense } from "react";
+    import { StackProvider, StackTheme } from "@stackframe/react";  // use the correct package that you installed in the first step
+    import { stackServerApp } from "@/stack/server";
+
+    export default function RootLayout({ children }: { children: React.ReactNode }) {
+      return (
+        <Suspense fallback={<div>Loading...</div>}>
+          <StackProvider app={stackServerApp}>
+            <StackTheme>
+              {children}
+            </StackTheme>
+          </StackProvider>
+        </Suspense>
+      );
+    }
+    \`\`\`
+
+    If you are using Next.js, you can also just provide a \`loading.tsx\` file in the \`app\` directory for the same effect:
+
+    \`\`\`tsx src/app/loading.tsx
+    export default function Loading() {
+      return <div>Loading...</div>;
+    }
+    \`\`\`
+
+    If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says "Loading...".
+
+
+    ### Backend: Update callers with header & get user
+
+    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth in a header such that you can access the same user object on your backend.
+
+    The most ergonomic way to do this is to pass the result of \`stackClientApp.getAuthorizationHeader()\` as the \`Authorization\` header into your backend endpoints:
+
+    \`\`\`ts
+    // NOTE: This is your frontend's code
+    const response = await fetch("/my-backend-endpoint", {
+      headers: {
+        "Authorization": await stackClientApp.getAuthorizationHeader(),
+      },
+    });
+    // ...
+    \`\`\`
+
+    <Note>
+      Make sure that HTTP caching is disabled with \`Cache-Control: private, no-store\` for authenticated backend endpoints.
+    </Note>
+
+    In most backend frameworks you can then access the user object by passing the request object as a \`tokenStore\` of the functions that access the user object:
+
+    \`\`\`ts
+    // NOTE: This is your backend's code
+    const user = await stackServerApp.getUser({ tokenStore: request });
+    return new Response("Hello, " + user.displayName);
+    \`\`\`
+
+    This will work as long as \`request\` is an object that follows the shape \`{ headers: Record<string, string | null> | { get: (name: string) => string | null } }\`.
+
+    If you cannot use \`getAuthorizationHeader()\`, for example because you are using a protocol other than HTTP, you can use \`getAuthJson()\` instead:
+
+    \`\`\`ts
+    // Frontend:
+    await rpcCall("my-rpc-endpoint", {
+      data: {
+        auth: await stackClientApp.getAuthJson(),
+      },
+    });
+
+    // Backend:
+    const user = await stackServerApp.getUser({ tokenStore: data.auth });
+    return new Response("Hello, " + user.displayName);
+    \`\`\`
+  `;
+}
diff --git a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.oauth-prefetch.test.ts b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.oauth-prefetch.test.ts
new file mode 100644
index 0000000000..599750f7c9
--- /dev/null
+++ b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.oauth-prefetch.test.ts
@@ -0,0 +1,32 @@
+import { describe, expect, it } from "vitest";
+import { StackClientApp } from "../interfaces/client-app";
+
+describe("StackClientApp OAuth prefetch", () => {
+  it("does not prefetch cross-domain handoff params on construction", () => {
+    const prefetchMethodName = "_prefetchCrossDomainHandoffParamsIfNeeded";
+    const originalPrefetch = Reflect.get(StackClientApp.prototype, prefetchMethodName);
+    let prefetchCalls = 0;
+    Reflect.set(StackClientApp.prototype, prefetchMethodName, () => {
+      prefetchCalls += 1;
+    });
+
+    try {
+      new StackClientApp({
+        baseUrl: "http://localhost:12345",
+        projectId: "00000000-0000-4000-8000-000000000000",
+        publishableClientKey: "stack-pk-test",
+        tokenStore: "memory",
+        redirectMethod: "none",
+        noAutomaticPrefetch: true,
+      });
+
+      expect(prefetchCalls).toBe(0);
+    } finally {
+      if (originalPrefetch === undefined) {
+        Reflect.deleteProperty(StackClientApp.prototype, prefetchMethodName);
+      } else {
+        Reflect.set(StackClientApp.prototype, prefetchMethodName, originalPrefetch);
+      }
+    }
+  });
+});
diff --git a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
index 1807b83380..1da91e9db8 100644
--- a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
+++ b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
@@ -607,7 +607,6 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
     this._redirectMethod = resolvedOptions.redirectMethod || "nextjs"; // THIS_LINE_PLATFORM next
     this._urlOptions = resolvedOptions.urls ?? {};
     this._oauthScopesOnSignIn = resolvedOptions.oauthScopesOnSignIn ?? {};
-    this._prefetchCrossDomainHandoffParamsIfNeeded();
     if (isBrowserLike() && (resolvedOptions.tokenStore === "cookie" || resolvedOptions.tokenStore === "nextjs-cookie")) {
       runAsynchronously(this._trustedParentDomainCache.getOrWait([window.location.hostname], "write-only"));
       this._ensureCrossSubdomainCookieExists();

From ff6a3757119bc4e8cfb7799397321f7ec6105e90 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Tue, 5 May 2026 19:09:35 -0700
Subject: [PATCH 06/13] Setup builder

---
 .../src/app/api/latest/setup-prompt/route.ts  |   33 -
 .../endpoints/api/v1/setup-prompt.test.ts     |   11 -
 claude/CLAUDE-KNOWLEDGE.md                    |    9 +
 .../guides/getting-started/setup.mdx          | 1822 ++++++++++++++++-
 docs-mintlify/images/setup-tools/bun.svg      |    1 +
 docs-mintlify/images/setup-tools/cli.svg      |    1 +
 docs-mintlify/images/setup-tools/convex.svg   |    5 +
 .../images/setup-tools/javascript.svg         |    1 +
 docs-mintlify/images/setup-tools/mcp.svg      |    1 +
 docs-mintlify/images/setup-tools/nextjs.svg   |    1 +
 docs-mintlify/images/setup-tools/nodejs.svg   |    1 +
 docs-mintlify/images/setup-tools/react.svg    |    1 +
 docs-mintlify/images/setup-tools/supabase.svg |    1 +
 docs-mintlify/images/setup-tools/tanstack.svg |    1 +
 docs-mintlify/index.mdx                       |   54 +-
 docs-mintlify/snippets/home-prompt-island.jsx |  120 +-
 package.json                                  |   14 +-
 packages/stack-shared/src/ai/prompts.ts       |  664 +++---
 scripts/generate-setup-prompt-docs.ts         |  459 +++++
 19 files changed, 2707 insertions(+), 493 deletions(-)
 delete mode 100644 apps/backend/src/app/api/latest/setup-prompt/route.ts
 delete mode 100644 apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts
 create mode 100644 docs-mintlify/images/setup-tools/bun.svg
 create mode 100644 docs-mintlify/images/setup-tools/cli.svg
 create mode 100644 docs-mintlify/images/setup-tools/convex.svg
 create mode 100644 docs-mintlify/images/setup-tools/javascript.svg
 create mode 100644 docs-mintlify/images/setup-tools/mcp.svg
 create mode 100644 docs-mintlify/images/setup-tools/nextjs.svg
 create mode 100644 docs-mintlify/images/setup-tools/nodejs.svg
 create mode 100644 docs-mintlify/images/setup-tools/react.svg
 create mode 100644 docs-mintlify/images/setup-tools/supabase.svg
 create mode 100644 docs-mintlify/images/setup-tools/tanstack.svg
 create mode 100644 scripts/generate-setup-prompt-docs.ts

diff --git a/apps/backend/src/app/api/latest/setup-prompt/route.ts b/apps/backend/src/app/api/latest/setup-prompt/route.ts
deleted file mode 100644
index 15c0abf626..0000000000
--- a/apps/backend/src/app/api/latest/setup-prompt/route.ts
+++ /dev/null
@@ -1,33 +0,0 @@
-import { createSmartRouteHandler } from "@/route-handlers/smart-route-handler";
-import { getSdkSetupPrompt } from "@stackframe/stack-shared/dist/ai/prompts";
-import { yupNumber, yupObject, yupString, yupTuple } from "@stackframe/stack-shared/dist/schema-fields";
-
-export const GET = createSmartRouteHandler({
-  metadata: {
-    hidden: true,
-    summary: "SDK setup prompt",
-    description: "Returns the AI setup prompt used by Stack docs.",
-    tags: [],
-  },
-  request: yupObject({
-    method: yupString().oneOf(["GET"]).defined(),
-  }),
-  response: yupObject({
-    statusCode: yupNumber().oneOf([200]).defined(),
-    bodyType: yupString().oneOf(["text"]).defined(),
-    body: yupString().defined(),
-    headers: yupObject({
-      "Cache-Control": yupTuple([yupString().defined()]).defined(),
-    }).defined(),
-  }),
-  handler: async () => {
-    return {
-      statusCode: 200,
-      bodyType: "text",
-      body: getSdkSetupPrompt("ai-prompt", { tanstackQuery: false }),
-      headers: {
-        "Cache-Control": ["public, max-age=60"] as const,
-      },
-    };
-  },
-});
diff --git a/apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts b/apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts
deleted file mode 100644
index c352cc0adc..0000000000
--- a/apps/e2e/tests/backend/endpoints/api/v1/setup-prompt.test.ts
+++ /dev/null
@@ -1,11 +0,0 @@
-import { it } from "../../../../helpers";
-import { niceBackendFetch } from "../../../backend-helpers";
-
-it("returns the SDK setup prompt as text with short cache headers", async ({ expect }) => {
-  const response = await niceBackendFetch("/api/v1/setup-prompt");
-
-  expect(response.status).toBe(200);
-  expect(typeof response.body).toBe("string");
-  expect(response.body).toContain("# Setting up Stack Auth");
-  expect(response.headers.get("cache-control")).toBe("public, max-age=60");
-});
diff --git a/claude/CLAUDE-KNOWLEDGE.md b/claude/CLAUDE-KNOWLEDGE.md
index 25d8af346f..b030f8e8fa 100644
--- a/claude/CLAUDE-KNOWLEDGE.md
+++ b/claude/CLAUDE-KNOWLEDGE.md
@@ -386,3 +386,12 @@ A: Use a strict root `postinstall` script that rewrites only Next `>=16` app-pag
 
 Q: Why can Turbo-pruned Docker builds fail with `Cannot find module /app/scripts/postinstall-patch-next-async-debug-info.mjs` during `pnpm install`?
 A: In pruned builder stages, we copy `/app/out/json` and run `pnpm install` before copying `/app/out/full`. The root `package.json` still runs `postinstall: node ./scripts/postinstall-patch-next-async-debug-info.mjs`, but that script is not present yet. Fix by copying `scripts/postinstall-patch-next-async-debug-info.mjs` into the builder stage before `pnpm install` (for all Dockerfiles using the prune pattern).
+
+Q: How is the Mintlify setup prompt generated?
+A: `scripts/generate-setup-prompt-docs.ts` writes both `docs-mintlify/snippets/home-prompt-island.jsx` and `docs-mintlify/guides/getting-started/setup.mdx` from `getSdkSetupPrompt("ai-prompt", { tanstackQuery: false })`. Root `codegen` runs it once, and root dev scripts run `generate-setup-prompt-docs:watch` so edits to `packages/stack-shared/src/ai/prompts.ts` refresh the checked-in generated docs files.
+
+Q: Why should the Mintlify setup prompt page avoid a custom `SetupPromptBlock` component?
+A: Mintlify SSR ignores non-standard React components, so `docs-mintlify/guides/getting-started/setup.mdx` should render the prompt block with inline standard elements. The generated page uses a plain `<textarea defaultValue={generatedSetupPromptText} />` plus a standard `<button>` instead of `<SetupPromptBlock />`.
+
+Q: How should the generated Mintlify setup wizard filter tabs?
+A: Generate all markdown tab panels directly into `docs-mintlify/guides/getting-started/setup.mdx` so Mintlify transforms the markdown at build time, then use inline client handlers to show/hide standard tab buttons and panels based on selected `sdkSetupTools`. For tab buttons with `inline-flex`, set `style.display` explicitly when hiding; the HTML `hidden` attribute alone can be overridden by the display utility class.
diff --git a/docs-mintlify/guides/getting-started/setup.mdx b/docs-mintlify/guides/getting-started/setup.mdx
index 782c80ea90..e305940d62 100644
--- a/docs-mintlify/guides/getting-started/setup.mdx
+++ b/docs-mintlify/guides/getting-started/setup.mdx
@@ -4,84 +4,1766 @@ description: Install and configure Stack Auth for your project
 sidebarTitle: Setup
 ---
 
-export const SetupPromptBlock = () => {
-  const setupPromptEndpoint = "https://api.stack-auth.com/api/v1/setup-prompt";
-  const setupPromptLoadErrorMessage = "Failed to load the setup prompt. Please try again.";
+{/* This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead. */}
 
-  const [prompt, setPrompt] = useState("");
-  const [isLoading, setIsLoading] = useState(true);
-  const [loadError, setLoadError] = useState(null);
+export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    \n\n    \n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"@/stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackServerApp}>\n            <StackTheme>\n              {children}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  \n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
+export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli","mcp"];
+export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"},{"toolId":"mcp","title":"MCP"}];
+export const unifiedAiPromptTabTitle = "Unified AI Prompt";
 
-  const loadPrompt = async () => {
-    setLoadError(null);
-    const response = await fetch(setupPromptEndpoint, {
-      method: "GET",
-      headers: {
-        Accept: "text/plain",
-      },
-    }).then(
-      (value) => value,
-      () => {
-        throw new Error(setupPromptLoadErrorMessage);
-      },
-    );
-    if (!response.ok) {
-      throw new Error(setupPromptLoadErrorMessage);
-    }
+export const copyGeneratedSetupPrompt = async (event) => {
+  const button = event.currentTarget;
+  await navigator.clipboard.writeText(generatedSetupPromptText);
+  button.textContent = "Copied";
+  window.setTimeout(() => {
+    button.textContent = "Copy prompt";
+  }, 1300);
+};
 
-    const text = await response.text();
-    if (text.trim().length === 0) {
-      throw new Error(setupPromptLoadErrorMessage);
-    }
+export const getSelectedSetupToolIdsFromUrl = () => {
+  if (typeof window === "undefined") {
+    return [];
+  }
+  const selectedToolIds = new Set(setupToolIds);
+  return (new URLSearchParams(window.location.search).get("tools") ?? "")
+    .split(",")
+    .map((toolId) => toolId.trim())
+    .filter((toolId) => selectedToolIds.has(toolId));
+};
+
+export const writeSelectedSetupToolIdsToUrl = (selectedToolIds) => {
+  if (typeof window === "undefined") {
+    return;
+  }
+  const url = new URL(window.location.href);
+  const orderedSelectedToolIds = setupToolIds.filter((toolId) => selectedToolIds.has(toolId));
+  if (orderedSelectedToolIds.length === 0) {
+    url.searchParams.delete("tools");
+  } else {
+    url.searchParams.set("tools", orderedSelectedToolIds.join(","));
+  }
+  window.history.replaceState(null, "", url.pathname + url.search + url.hash);
+};
+
+export const updateSetupBuilder = (root, syncUrl = true) => {
+  const selectedToolIds = new Set(
+    Array.from(root.querySelectorAll("[data-setup-tool-card='true'][aria-pressed='true']"))
+      .map((card) => card.getAttribute("data-tool-id"))
+      .filter((toolId) => toolId != null)
+  );
+  if (syncUrl) {
+    writeSelectedSetupToolIdsToUrl(selectedToolIds);
+  }
+  const visibleTabTitles = new Set(setupTabMetadata
+    .filter((tab) => selectedToolIds.has(tab.toolId))
+    .map((tab) => tab.title)
+  );
+  if (visibleTabTitles.size > 0) {
+    visibleTabTitles.add(unifiedAiPromptTabTitle);
+  }
+  const tabsRoot = root.querySelector("[data-setup-tabs-root='true']");
 
-    setPrompt(text);
-    setIsLoading(false);
-    return text;
-  };
+  const emptyState = root.querySelector("[data-setup-tabs-empty='true']");
+  if (emptyState != null) {
+    emptyState.hidden = visibleTabTitles.size > 0;
+    emptyState.style.display = visibleTabTitles.size > 0 ? "none" : "";
+  }
+  if (tabsRoot == null) {
+    return;
+  }
 
-  const onMount = (node) => {
-    if (node == null || node.dataset.setupPromptInitialized === "true") {
-      return;
+  tabsRoot.hidden = visibleTabTitles.size === 0;
+  tabsRoot.style.display = visibleTabTitles.size === 0 ? "none" : "";
+  const tabButtons = Array.from(tabsRoot.querySelectorAll("[role='tab']"));
+  let firstVisibleTabButton = null;
+  let selectedVisibleTabButton = null;
+  for (const tabButton of tabButtons) {
+    const title = tabButton.textContent?.trim() ?? "";
+    const shouldShow = visibleTabTitles.has(title);
+    tabButton.hidden = !shouldShow;
+    tabButton.style.display = shouldShow ? "" : "none";
+    if (shouldShow && firstVisibleTabButton == null) {
+      firstVisibleTabButton = tabButton;
     }
-    node.dataset.setupPromptInitialized = "true";
-    loadPrompt().then(
-      () => undefined,
-      (error) => {
-        setLoadError(error instanceof Error ? error.message : setupPromptLoadErrorMessage);
-        setIsLoading(false);
-      },
-    );
-  };
+    if (shouldShow && tabButton.getAttribute("aria-selected") === "true") {
+      selectedVisibleTabButton = tabButton;
+    }
+  }
+  if (visibleTabTitles.size > 0 && selectedVisibleTabButton == null) {
+    firstVisibleTabButton?.click();
+  }
+};
 
-  const onCopy = async (event) => {
-    const promptToCopy = isLoading ? await loadPrompt() : prompt;
-    await navigator.clipboard.writeText(promptToCopy);
-    const button = event.currentTarget;
-    button.textContent = "Copied";
-    window.setTimeout(() => {
-      button.textContent = "Copy prompt";
-    }, 1300);
-  };
+export const initializeSetupBuilder = (node) => {
+  if (node == null || node.dataset.setupBuilderInitialized === "true") {
+    return;
+  }
+  node.dataset.setupBuilderInitialized = "true";
+  const selectedToolIds = new Set(getSelectedSetupToolIdsFromUrl());
+  for (const toolCard of node.querySelectorAll("[data-setup-tool-card='true']")) {
+    toolCard.setAttribute("aria-pressed", selectedToolIds.has(toolCard.getAttribute("data-tool-id")) ? "true" : "false");
+  }
+  updateSetupBuilder(node, false);
+};
 
-  return (
-    <div ref={onMount} className="not-prose relative mt-6">
-      <textarea
-        readOnly
-        value={loadError ? loadError : prompt}
-        className="h-[32rem] w-full resize-none overflow-auto rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 outline-none backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"
-      />
-      <button
-        type="button"
-        onClick={onCopy}
-        className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
-        disabled={isLoading || loadError !== null}
-      >
-        {isLoading ? "Loading..." : "Copy prompt"}
-      </button>
-    </div>
-  );
+export const onSetupToolClick = (event) => {
+  const button = event.currentTarget;
+  const root = button.closest("[data-setup-builder='true']");
+  if (root == null) {
+    return;
+  }
+  button.setAttribute("aria-pressed", button.getAttribute("aria-pressed") === "true" ? "false" : "true");
+  updateSetupBuilder(root);
 };
 
-Use this prompt in your coding agent to set up Stack Auth in your project.
+<Note>
+  <p className="font-semibold">Setting up with AI? Use this single prompt:</p>
+  <div className="not-prose relative mt-3">
+    <pre className="max-h-40 overflow-auto whitespace-pre-wrap rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"><code>{generatedSetupPromptText}</code></pre>
+    <button
+      type="button"
+      onClick={copyGeneratedSetupPrompt}
+      className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
+    >
+      Copy prompt
+    </button>
+  </div>
+</Note>
 
-<SetupPromptBlock />
+<div ref={initializeSetupBuilder} data-setup-builder="true" className="mt-10">
+  <div>
+    <h2 className="text-3xl font-bold tracking-tight text-slate-900 dark:text-white">Choose your tech stack</h2>
+    <p className="mt-2 text-sm font-medium text-slate-500 dark:text-slate-400">Choose all that apply.</p>
+  </div>
+
+  <div className="not-prose mt-5 space-y-4 rounded-2xl border border-[#d6e4ff] bg-gradient-to-b from-[#f7faff] to-[#eaf2ff] p-3 shadow-[inset_0_1px_0_rgba(255,255,255,0.9),0_10px_30px_-24px_rgba(47,79,140,0.35)] dark:border-[#1f2d45] dark:from-[#11203a] dark:to-[#070f1f] dark:shadow-[inset_0_1px_0_rgba(112,152,224,0.18),0_16px_34px_-24px_rgba(2,8,20,0.85)] sm:p-4">
+    <section className="grid gap-3 sm:grid-cols-[6rem_1fr] sm:items-start">
+      <h3 className="pt-1 text-sm font-semibold text-[#2e446f] dark:text-[#d8e7ff]">Frontend</h3>
+      <div className="grid grid-cols-3 gap-x-2 gap-y-3 sm:grid-cols-4 sm:gap-x-3 sm:gap-y-3 lg:grid-cols-6">
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="nextjs"
+          data-tool-label="Next.js"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Next.js"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <span
+              aria-hidden="true"
+              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+              style={{
+                WebkitMask: "url(/images/setup-tools/nextjs.svg) center / contain no-repeat",
+                mask: "url(/images/setup-tools/nextjs.svg) center / contain no-repeat",
+              }}
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Next.js"
+          >
+            Next.js
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="react"
+          data-tool-label="React"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="React"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/react.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="React"
+          >
+            React
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="js"
+          data-tool-label="Other JS/TS"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Other JS/TS"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/javascript.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Other JS/TS"
+          >
+            Other JS/TS
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="tanstack-start"
+          data-tool-label="Tanstack Start"
+          data-tool-has-tabs="true"
+          data-tool-extra-features="tanstack-query"
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Tanstack Start"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <span
+              aria-hidden="true"
+              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+              style={{
+                WebkitMask: "url(/images/setup-tools/tanstack.svg) center / contain no-repeat",
+                mask: "url(/images/setup-tools/tanstack.svg) center / contain no-repeat",
+              }}
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Tanstack Start"
+          >
+            Tanstack Start
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="tanstack-query"
+          data-tool-label="Tanstack Query"
+          data-tool-has-tabs="false"
+          data-tool-extra-features="tanstack-query"
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Tanstack Query"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <span
+              aria-hidden="true"
+              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+              style={{
+                WebkitMask: "url(/images/setup-tools/tanstack.svg) center / contain no-repeat",
+                mask: "url(/images/setup-tools/tanstack.svg) center / contain no-repeat",
+              }}
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Tanstack Query"
+          >
+            Tanstack Query
+          </span>
+        </button>
+      </div>
+    </section>
+    <section className="grid gap-3 sm:grid-cols-[6rem_1fr] sm:items-start">
+      <h3 className="pt-1 text-sm font-semibold text-[#2e446f] dark:text-[#d8e7ff]">Backend</h3>
+      <div className="grid grid-cols-3 gap-x-2 gap-y-3 sm:grid-cols-4 sm:gap-x-3 sm:gap-y-3 lg:grid-cols-6">
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="nextjs"
+          data-tool-label="Next.js"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Next.js"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <span
+              aria-hidden="true"
+              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+              style={{
+                WebkitMask: "url(/images/setup-tools/nextjs.svg) center / contain no-repeat",
+                mask: "url(/images/setup-tools/nextjs.svg) center / contain no-repeat",
+              }}
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Next.js"
+          >
+            Next.js
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="nodejs"
+          data-tool-label="Node.js"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Node.js"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/nodejs.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Node.js"
+          >
+            Node.js
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="bun"
+          data-tool-label="Bun"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Bun"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/bun.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Bun"
+          >
+            Bun
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="convex"
+          data-tool-label="Convex"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Convex"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/convex.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Convex"
+          >
+            Convex
+          </span>
+        </button>
+      </div>
+    </section>
+    <section className="grid gap-3 sm:grid-cols-[6rem_1fr] sm:items-start">
+      <h3 className="pt-1 text-sm font-semibold text-[#2e446f] dark:text-[#d8e7ff]">Database</h3>
+      <div className="grid grid-cols-3 gap-x-2 gap-y-3 sm:grid-cols-4 sm:gap-x-3 sm:gap-y-3 lg:grid-cols-6">
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="convex"
+          data-tool-label="Convex"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Convex"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/convex.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Convex"
+          >
+            Convex
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="supabase"
+          data-tool-label="Supabase"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="Supabase"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <img
+              src="/images/setup-tools/supabase.svg"
+              alt=""
+              aria-hidden="true"
+              className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="Supabase"
+          >
+            Supabase
+          </span>
+        </button>
+      </div>
+    </section>
+    <section className="grid gap-3 sm:grid-cols-[6rem_1fr] sm:items-start">
+      <h3 className="pt-1 text-sm font-semibold text-[#2e446f] dark:text-[#d8e7ff]">Other</h3>
+      <div className="grid grid-cols-3 gap-x-2 gap-y-3 sm:grid-cols-4 sm:gap-x-3 sm:gap-y-3 lg:grid-cols-6">
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="cli"
+          data-tool-label="CLI"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="CLI"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <span
+              aria-hidden="true"
+              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+              style={{
+                WebkitMask: "url(/images/setup-tools/cli.svg) center / contain no-repeat",
+                mask: "url(/images/setup-tools/cli.svg) center / contain no-repeat",
+              }}
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="CLI"
+          >
+            CLI
+          </span>
+        </button>
+        <button
+          type="button"
+          aria-pressed="false"
+          data-setup-tool-card="true"
+          data-tool-id="mcp"
+          data-tool-label="MCP"
+          data-tool-has-tabs="true"
+          data-tool-extra-features=""
+          onClick={onSetupToolClick}
+          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+          title="MCP"
+        >
+          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+            <span
+              aria-hidden="true"
+              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+              style={{
+                WebkitMask: "url(/images/setup-tools/mcp.svg) center / contain no-repeat",
+                mask: "url(/images/setup-tools/mcp.svg) center / contain no-repeat",
+              }}
+            />
+            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+          </div>
+          <span
+            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+            title="MCP"
+          >
+            MCP
+          </span>
+        </button>
+      </div>
+    </section>
+  </div>
+
+  <div className="mt-8">
+    <p data-setup-tabs-empty="true" className="not-prose rounded-2xl border border-[#c5d7f6] bg-white/65 p-5 text-sm text-[#4a5f89] dark:border-[#2c4c7d] dark:bg-[#0c1627]/45 dark:text-[#8fa4cc]">
+      Select a tool to show setup instructions.
+    </p>
+    <div data-setup-tabs-root="true" hidden style={{ display: "none" }}>
+      <Tabs>
+        <Tab title="Unified AI Prompt">
+          Setting up with AI? Use this single prompt in your coding agent to set up Stack Auth for your selected stack.
+        
+          <div className="not-prose relative mt-3">
+            <pre className="max-h-40 overflow-auto whitespace-pre-wrap rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"><code>{generatedSetupPromptText}</code></pre>
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        </Tab>
+
+        <Tab title="Next.js">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Next.js SDK Setup Instructions
+          
+          Follow these instructions in order to set up and get started with the Stack Auth SDK for Next.js .
+          
+          
+          
+          
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              First, install the `@stackframe/stack` npm package with your preferred package manager:
+          
+                ```sh
+                npm i @stackframe/stack
+                # or: pnpm i @stackframe/stack
+                # or: yarn add @stackframe/stack
+                # or: bun add @stackframe/stack
+                ```
+            </Step>
+            
+            <Step title="Initializing the Stack App">
+              Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+          
+              In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:
+              
+              ```ts src/stack/client.ts
+              import { StackClientApp } from "@stackframe/stack";
+              
+              export const stackClientApp = new StackClientApp({
+                tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
+              });
+              ```
+          
+              In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:
+              
+              
+              
+              
+              
+              ```ts src/stack/server.ts
+              import { StackServerApp } from "@stackframe/stack";
+              import { stackClientApp } from "./client";
+              
+              export const stackServerApp = new StackServerApp({
+                inheritsFrom: stackClientApp,
+              });
+              ```
+              
+              
+            </Step>
+          
+            <Step title="Setting up the project">
+              It's now time to create a development setup for Stack Auth.
+          
+              You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+          
+              
+          
+              <AccordionGroup>
+                <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+                  First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):
+          
+                  ```ts stack.config.ts
+                  import type { StackConfig } from "@stackframe/stack";
+          
+                  // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+                  export const config: StackConfig = "show-onboarding";
+                  ```
+          
+                  To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:
+          
+                  ```json package.json
+                  {
+                    // ...
+                    "scripts": {
+                      // ...
+                      "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+                    }
+                  }
+                  ```
+                </Accordion>
+          
+                <Accordion title="Option 2: Connecting a cloud project">
+                  
+          
+                  If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+          
+                  This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+          
+                  #### Frontend
+          
+                  Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  ```
+          
+                  Alternatively, you can also just set the project ID in the `stack/client.ts` file:
+          
+                  ```ts src/stack/client.ts
+                  export const stackClientApp = new StackClientApp({
+                    // ...
+                    projectId: "your-project-id",
+                  });
+                  ```
+          
+          
+                  #### Backend (or both frontend and backend)
+          
+                  First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+          
+                  Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+                  ```
+          
+                  They'll automatically be picked up by the `StackServerApp` constructor.
+                </Accordion>
+              </AccordionGroup>
+            </Step>
+          
+            <Step title="Creating a <StackProvider /> and <StackTheme />">
+              In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.
+            
+              
+            
+              You can do this in the `layout.tsx` file in the `app` directory:
+              
+              ```tsx src/app/layout.tsx
+              import { Suspense } from "react";
+              import { StackProvider, StackTheme } from "@stackframe/stack";
+              import { stackServerApp } from "@/stack/server";
+              
+              export default function RootLayout({ children }: { children: React.ReactNode }) {
+                return (
+                  <StackProvider app={stackServerApp}>
+                    <StackTheme>
+                      {children}
+                    </StackTheme>
+                  </StackProvider>
+                );
+              }
+              ```
+            </Step>
+            
+            <Step title="Add Suspense boundary">
+              Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.
+            
+              To support the suspension, you need to add a suspense boundary around your app.
+              
+              
+            
+              In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:
+              
+              ```tsx src/app/loading.tsx
+              export default function Loading() {
+                return <div>Loading...</div>;
+              }
+              ```
+            
+              
+            </Step>
+          
+            <Step title="Update callers with header & get user">
+              You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
+            
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+            
+              ```ts
+              // NOTE: This is your frontend's code
+              const response = await fetch("/my-backend-endpoint", {
+                headers: {
+                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                },
+              });
+              // ...
+              ```
+            
+              In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:
+            
+              ```ts
+              // NOTE: This is your backend's code
+              const user = await stackServerApp.getUser({ tokenStore: request });
+              return new Response("Hello, " + user.displayName, { headers: { "Cache-Control": "private, no-store" } });
+              ```
+            
+              This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.
+            
+              > Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.
+            
+              If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:
+            
+              ```ts
+              // Frontend:
+              await rpcCall("my-rpc-endpoint", {
+                data: {
+                  auth: await stackClientApp.getAuthJson(),
+                },
+              });
+            
+              // Backend:
+              const user = await stackServerApp.getUser({ tokenStore: data.auth });
+              return new RpcResponse("Hello, " + user.displayName);
+              ```
+            </Step>
+          
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="React">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## React SDK Setup Instructions
+          
+          Follow these instructions in order to set up and get started with the Stack Auth SDK for React .
+          
+          
+          
+          
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              First, install the `@stackframe/react` npm package with your preferred package manager:
+          
+                ```sh
+                npm i @stackframe/react
+                # or: pnpm i @stackframe/react
+                # or: yarn add @stackframe/react
+                # or: bun add @stackframe/react
+                ```
+            </Step>
+            
+            <Step title="Initializing the Stack App">
+              Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+          
+              In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:
+              
+              ```ts src/stack/client.ts
+              import { StackClientApp } from "@stackframe/react";
+              
+              export const stackClientApp = new StackClientApp({
+                tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
+              });
+              ```
+          
+              
+            </Step>
+          
+            <Step title="Setting up the project">
+              It's now time to create a development setup for Stack Auth.
+          
+              You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+          
+              
+          
+              <AccordionGroup>
+                <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+                  First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):
+          
+                  ```ts stack.config.ts
+                  import type { StackConfig } from "@stackframe/react";
+          
+                  // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+                  export const config: StackConfig = "show-onboarding";
+                  ```
+          
+                  To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:
+          
+                  ```json package.json
+                  {
+                    // ...
+                    "scripts": {
+                      // ...
+                      "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+                    }
+                  }
+                  ```
+                </Accordion>
+          
+                <Accordion title="Option 2: Connecting a cloud project">
+                  
+          
+                  If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+          
+                  This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+          
+                  #### Frontend
+          
+                  Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  ```
+          
+                  Alternatively, you can also just set the project ID in the `stack/client.ts` file:
+          
+                  ```ts src/stack/client.ts
+                  export const stackClientApp = new StackClientApp({
+                    // ...
+                    projectId: "your-project-id",
+                  });
+                  ```
+          
+          
+                  #### Backend (or both frontend and backend)
+          
+                  First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+          
+                  Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+                  ```
+          
+                  They'll automatically be picked up by the `StackServerApp` constructor.
+                </Accordion>
+              </AccordionGroup>
+            </Step>
+          
+            <Step title="Creating a <StackProvider /> and <StackTheme />">
+              In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.
+            
+              For example, if you have an `App.tsx` file, update it as follows:
+              
+              ```tsx src/App.tsx
+              import { StackProvider, StackTheme } from "@stackframe/react";
+              import { stackClientApp } from "@/stack/client";
+              
+              export default function App() {
+                return (
+                  <StackProvider app={stackClientApp}>
+                    <StackTheme>
+                      {/* your app content */}
+                    </StackTheme>
+                  </StackProvider>
+                );
+              }
+              ```
+            
+              
+            </Step>
+            
+            <Step title="Add Suspense boundary">
+              Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.
+            
+              To support the suspension, you need to add a suspense boundary around your app.
+              
+              The easiest way to do this is to just wrap your entire app in a `Suspense` component:
+              
+              ```tsx src/app/layout.tsx
+              import { Suspense } from "react";
+              import { StackProvider, StackTheme } from "@stackframe/react";
+              import { stackServerApp } from "@/stack/server";
+              
+              export default function RootLayout({ children }: { children: React.ReactNode }) {
+                return (
+                  <Suspense fallback={<div>Loading...</div>}>
+                    <StackProvider app={stackServerApp}>
+                      <StackTheme>
+                        {children}
+                      </StackTheme>
+                    </StackProvider>
+                  </Suspense>
+                );
+              }
+              ```
+            
+              
+            
+              
+            </Step>
+          
+            
+          
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="JS/TS">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Other JS/TS SDK Setup Instructions
+          
+          Follow these instructions in order to set up and get started with the Stack Auth SDK for Other JS/TS .
+          
+          
+          
+          
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              First, install the `@stackframe/js` npm package with your preferred package manager:
+          
+                ```sh
+                npm i @stackframe/js
+                # or: pnpm i @stackframe/js
+                # or: yarn add @stackframe/js
+                # or: bun add @stackframe/js
+                ```
+            </Step>
+            
+            <Step title="Initializing the Stack App">
+              Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+          
+              In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:
+              
+              ```ts src/stack/client.ts
+              import { StackClientApp } from "@stackframe/js";
+              
+              export const stackClientApp = new StackClientApp({
+                tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
+              });
+              ```
+          
+              In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:
+              
+              ```ts src/stack/server.ts
+              import { StackServerApp } from "@stackframe/js";
+              
+              export const stackServerApp = new StackServerApp({
+                tokenStore: null,
+              });
+              ```
+              
+              In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:
+              
+              ```ts src/stack/server.ts
+              import { StackServerApp } from "@stackframe/js";
+              import { stackClientApp } from "./client";
+              
+              export const stackServerApp = new StackServerApp({
+                inheritsFrom: stackClientApp,
+              });
+              ```
+              
+              
+            </Step>
+          
+            <Step title="Setting up the project">
+              It's now time to create a development setup for Stack Auth.
+          
+              You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+          
+              
+          
+              <AccordionGroup>
+                <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+                  First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):
+          
+                  ```ts stack.config.ts
+                  import type { StackConfig } from "@stackframe/js";
+          
+                  // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+                  export const config: StackConfig = "show-onboarding";
+                  ```
+          
+                  To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:
+          
+                  ```json package.json
+                  {
+                    // ...
+                    "scripts": {
+                      // ...
+                      "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+                    }
+                  }
+                  ```
+                </Accordion>
+          
+                <Accordion title="Option 2: Connecting a cloud project">
+                  
+          
+                  If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+          
+                  This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+          
+                  #### Frontend
+          
+                  Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  ```
+          
+                  Alternatively, you can also just set the project ID in the `stack/client.ts` file:
+          
+                  ```ts src/stack/client.ts
+                  export const stackClientApp = new StackClientApp({
+                    // ...
+                    projectId: "your-project-id",
+                  });
+                  ```
+          
+          
+                  #### Backend (or both frontend and backend)
+          
+                  First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+          
+                  Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+                  ```
+          
+                  They'll automatically be picked up by the `StackServerApp` constructor.
+                </Accordion>
+              </AccordionGroup>
+            </Step>
+          
+            
+          
+            <Step title="Backend: Update callers with header & get user">
+              You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
+            
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+            
+              ```ts
+              // NOTE: This is your frontend's code
+              const response = await fetch("/my-backend-endpoint", {
+                headers: {
+                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                },
+              });
+              // ...
+              ```
+            
+              In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:
+            
+              ```ts
+              // NOTE: This is your backend's code
+              const user = await stackServerApp.getUser({ tokenStore: request });
+              return new Response("Hello, " + user.displayName, { headers: { "Cache-Control": "private, no-store" } });
+              ```
+            
+              This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.
+            
+              > Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.
+            
+              If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:
+            
+              ```ts
+              // Frontend:
+              await rpcCall("my-rpc-endpoint", {
+                data: {
+                  auth: await stackClientApp.getAuthJson(),
+                },
+              });
+            
+              // Backend:
+              const user = await stackServerApp.getUser({ tokenStore: data.auth });
+              return new RpcResponse("Hello, " + user.displayName);
+              ```
+            </Step>
+          
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="Tanstack Start">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Tanstack Start SDK Setup Instructions
+          
+          Follow these instructions in order to set up and get started with the Stack Auth SDK for Tanstack Start .
+          
+          
+          
+          
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              First, install the `@stackframe/react` npm package with your preferred package manager:
+          
+                ```sh
+                npm i @stackframe/react
+                # or: pnpm i @stackframe/react
+                # or: yarn add @stackframe/react
+                # or: bun add @stackframe/react
+                ```
+            </Step>
+            
+            <Step title="Initializing the Stack App">
+              Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+          
+              In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:
+              
+              ```ts src/stack/client.ts
+              import { StackClientApp } from "@stackframe/react";
+              
+              export const stackClientApp = new StackClientApp({
+                tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
+              });
+              ```
+          
+              
+            </Step>
+          
+            <Step title="Setting up the project">
+              It's now time to create a development setup for Stack Auth.
+          
+              You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+          
+              
+          
+              <AccordionGroup>
+                <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+                  First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):
+          
+                  ```ts stack.config.ts
+                  import type { StackConfig } from "@stackframe/react";
+          
+                  // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+                  export const config: StackConfig = "show-onboarding";
+                  ```
+          
+                  To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:
+          
+                  ```json package.json
+                  {
+                    // ...
+                    "scripts": {
+                      // ...
+                      "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+                    }
+                  }
+                  ```
+                </Accordion>
+          
+                <Accordion title="Option 2: Connecting a cloud project">
+                  
+          
+                  If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+          
+                  This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+          
+                  #### Frontend
+          
+                  Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  ```
+          
+                  Alternatively, you can also just set the project ID in the `stack/client.ts` file:
+          
+                  ```ts src/stack/client.ts
+                  export const stackClientApp = new StackClientApp({
+                    // ...
+                    projectId: "your-project-id",
+                  });
+                  ```
+          
+          
+                  #### Backend (or both frontend and backend)
+          
+                  First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+          
+                  Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+                  ```
+          
+                  They'll automatically be picked up by the `StackServerApp` constructor.
+                </Accordion>
+              </AccordionGroup>
+            </Step>
+          
+            <Step title="Creating a <StackProvider /> and <StackTheme />">
+              In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.
+            
+              For example, if you have an `App.tsx` file, update it as follows:
+              
+              ```tsx src/App.tsx
+              import { StackProvider, StackTheme } from "@stackframe/react";
+              import { stackClientApp } from "@/stack/client";
+              
+              export default function App() {
+                return (
+                  <StackProvider app={stackClientApp}>
+                    <StackTheme>
+                      {/* your app content */}
+                    </StackTheme>
+                  </StackProvider>
+                );
+              }
+              ```
+            
+              
+            </Step>
+            
+            <Step title="Add Suspense boundary">
+              Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.
+            
+              To support the suspension, you need to add a suspense boundary around your app.
+              
+              The easiest way to do this is to just wrap your entire app in a `Suspense` component:
+              
+              ```tsx src/app/layout.tsx
+              import { Suspense } from "react";
+              import { StackProvider, StackTheme } from "@stackframe/react";
+              import { stackServerApp } from "@/stack/server";
+              
+              export default function RootLayout({ children }: { children: React.ReactNode }) {
+                return (
+                  <Suspense fallback={<div>Loading...</div>}>
+                    <StackProvider app={stackServerApp}>
+                      <StackTheme>
+                        {children}
+                      </StackTheme>
+                    </StackProvider>
+                  </Suspense>
+                );
+              }
+              ```
+            
+              
+            
+              
+            </Step>
+          
+            
+          
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="Node.js">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Node.js SDK Setup Instructions
+          
+          Follow these instructions in order to set up and get started with the Stack Auth SDK for Node.js .
+          
+          
+          
+          
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              First, install the `@stackframe/js` npm package with your preferred package manager:
+          
+                ```sh
+                npm i @stackframe/js
+                # or: pnpm i @stackframe/js
+                # or: yarn add @stackframe/js
+                # or: bun add @stackframe/js
+                ```
+            </Step>
+            
+            <Step title="Initializing the Stack App">
+              Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+          
+              
+          
+              In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:
+              
+              ```ts src/stack/server.ts
+              import { StackServerApp } from "@stackframe/js";
+              
+              export const stackServerApp = new StackServerApp({
+                tokenStore: null,
+              });
+              ```
+              
+              
+              
+              
+              
+              
+            </Step>
+          
+            <Step title="Setting up the project">
+              It's now time to create a development setup for Stack Auth.
+          
+              You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+          
+              
+          
+              <AccordionGroup>
+                <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+                  First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):
+          
+                  ```ts stack.config.ts
+                  import type { StackConfig } from "@stackframe/js";
+          
+                  // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+                  export const config: StackConfig = "show-onboarding";
+                  ```
+          
+                  To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:
+          
+                  ```json package.json
+                  {
+                    // ...
+                    "scripts": {
+                      // ...
+                      "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+                    }
+                  }
+                  ```
+                </Accordion>
+          
+                <Accordion title="Option 2: Connecting a cloud project">
+                  
+          
+                  If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+          
+                  This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+          
+                  #### Frontend
+          
+                  Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  ```
+          
+                  Alternatively, you can also just set the project ID in the `stack/client.ts` file:
+          
+                  ```ts src/stack/client.ts
+                  export const stackClientApp = new StackClientApp({
+                    // ...
+                    projectId: "your-project-id",
+                  });
+                  ```
+          
+          
+                  #### Backend (or both frontend and backend)
+          
+                  First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+          
+                  Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+                  ```
+          
+                  They'll automatically be picked up by the `StackServerApp` constructor.
+                </Accordion>
+              </AccordionGroup>
+            </Step>
+          
+            
+          
+            <Step title="Update callers with header & get user">
+              You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
+            
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+            
+              ```ts
+              // NOTE: This is your frontend's code
+              const response = await fetch("/my-backend-endpoint", {
+                headers: {
+                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                },
+              });
+              // ...
+              ```
+            
+              In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:
+            
+              ```ts
+              // NOTE: This is your backend's code
+              const user = await stackServerApp.getUser({ tokenStore: request });
+              return new Response("Hello, " + user.displayName, { headers: { "Cache-Control": "private, no-store" } });
+              ```
+            
+              This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.
+            
+              > Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.
+            
+              If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:
+            
+              ```ts
+              // Frontend:
+              await rpcCall("my-rpc-endpoint", {
+                data: {
+                  auth: await stackClientApp.getAuthJson(),
+                },
+              });
+            
+              // Backend:
+              const user = await stackServerApp.getUser({ tokenStore: data.auth });
+              return new RpcResponse("Hello, " + user.displayName);
+              ```
+            </Step>
+          
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="Bun">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Bun SDK Setup Instructions
+          
+          Follow these instructions in order to set up and get started with the Stack Auth SDK for Bun .
+          
+          
+          
+          
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              First, install the `@stackframe/js` npm package with your preferred package manager:
+          
+                ```sh
+                npm i @stackframe/js
+                # or: pnpm i @stackframe/js
+                # or: yarn add @stackframe/js
+                # or: bun add @stackframe/js
+                ```
+            </Step>
+            
+            <Step title="Initializing the Stack App">
+              Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
+          
+              
+          
+              In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:
+              
+              ```ts src/stack/server.ts
+              import { StackServerApp } from "@stackframe/js";
+              
+              export const stackServerApp = new StackServerApp({
+                tokenStore: null,
+              });
+              ```
+              
+              
+              
+              
+              
+              
+            </Step>
+          
+            <Step title="Setting up the project">
+              It's now time to create a development setup for Stack Auth.
+          
+              You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+          
+              
+          
+              <AccordionGroup>
+                <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+                  First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):
+          
+                  ```ts stack.config.ts
+                  import type { StackConfig } from "@stackframe/js";
+          
+                  // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+                  export const config: StackConfig = "show-onboarding";
+                  ```
+          
+                  To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:
+          
+                  ```json package.json
+                  {
+                    // ...
+                    "scripts": {
+                      // ...
+                      "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+                    }
+                  }
+                  ```
+                </Accordion>
+          
+                <Accordion title="Option 2: Connecting a cloud project">
+                  
+          
+                  If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+          
+                  This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+          
+                  #### Frontend
+          
+                  Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  ```
+          
+                  Alternatively, you can also just set the project ID in the `stack/client.ts` file:
+          
+                  ```ts src/stack/client.ts
+                  export const stackClientApp = new StackClientApp({
+                    // ...
+                    projectId: "your-project-id",
+                  });
+                  ```
+          
+          
+                  #### Backend (or both frontend and backend)
+          
+                  First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+          
+                  Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):
+          
+                  ```.env .env.local
+                  STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+                  STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+                  ```
+          
+                  They'll automatically be picked up by the `StackServerApp` constructor.
+                </Accordion>
+              </AccordionGroup>
+            </Step>
+          
+            
+          
+            <Step title="Update callers with header & get user">
+              You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
+            
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+            
+              ```ts
+              // NOTE: This is your frontend's code
+              const response = await fetch("/my-backend-endpoint", {
+                headers: {
+                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                },
+              });
+              // ...
+              ```
+            
+              In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:
+            
+              ```ts
+              // NOTE: This is your backend's code
+              const user = await stackServerApp.getUser({ tokenStore: request });
+              return new Response("Hello, " + user.displayName, { headers: { "Cache-Control": "private, no-store" } });
+              ```
+            
+              This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.
+            
+              > Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.
+            
+              If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:
+            
+              ```ts
+              // Frontend:
+              await rpcCall("my-rpc-endpoint", {
+                data: {
+                  auth: await stackClientApp.getAuthJson(),
+                },
+              });
+            
+              // Backend:
+              const user = await stackServerApp.getUser({ tokenStore: data.auth });
+              return new RpcResponse("Hello, " + user.displayName);
+              ```
+            </Step>
+          
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="Convex">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Convex Setup
+          
+          > This prompt is not yet implemented.
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              Install the Convex package:
+            </Step>
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="Supabase">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## Supabase Setup
+          
+          > This prompt is not yet implemented.
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              Install the Supabase package:
+            </Step>
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="CLI">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## CLI Setup
+          
+          > This prompt is not yet implemented.
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              Install the CLI package:
+            </Step>
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+        
+        <Tab title="MCP">
+          <div className="not-prose mb-1 flex justify-end">
+            <button
+              type="button"
+              onClick={copyGeneratedSetupPrompt}
+              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+            >
+              Copy prompt
+            </button>
+          </div>
+        
+          ## MCP Setup
+          
+          > This prompt is not yet implemented.
+          
+          <Steps titleSize="h3">
+            <Step title="Install dependencies">
+              Install the MCP package:
+            </Step>
+            <Step title="Done!" />
+          </Steps>
+        </Tab>
+      </Tabs>
+    </div>
+  </div>
+</div>
diff --git a/docs-mintlify/images/setup-tools/bun.svg b/docs-mintlify/images/setup-tools/bun.svg
new file mode 100644
index 0000000000..7ef15001d2
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/bun.svg
@@ -0,0 +1 @@
+<svg id="Bun" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 80 70"><title>Bun Logo</title><path id="Shadow" d="M71.09,20.74c-.16-.17-.33-.34-.5-.5s-.33-.34-.5-.5-.33-.34-.5-.5-.33-.34-.5-.5-.33-.34-.5-.5-.33-.34-.5-.5-.33-.34-.5-.5A26.46,26.46,0,0,1,75.5,35.7c0,16.57-16.82,30.05-37.5,30.05-11.58,0-21.94-4.23-28.83-10.86l.5.5.5.5.5.5.5.5.5.5.5.5.5.5C19.55,65.3,30.14,69.75,42,69.75c20.68,0,37.5-13.48,37.5-30C79.5,32.69,76.46,26,71.09,20.74Z"/><g id="Body"><path id="Background" d="M73,35.7c0,15.21-15.67,27.54-35,27.54S3,50.91,3,35.7C3,26.27,9,17.94,18.22,13S33.18,3,38,3s8.94,4.13,19.78,10C67,17.94,73,26.27,73,35.7Z" style="fill:#fbf0df"/><path id="Bottom_Shadow" data-name="Bottom Shadow" d="M73,35.7a21.67,21.67,0,0,0-.8-5.78c-2.73,33.3-43.35,34.9-59.32,24.94A40,40,0,0,0,38,63.24C57.3,63.24,73,50.89,73,35.7Z" style="fill:#f6dece"/><path id="Light_Shine" data-name="Light Shine" d="M24.53,11.17C29,8.49,34.94,3.46,40.78,3.45A9.29,9.29,0,0,0,38,3c-2.42,0-5,1.25-8.25,3.13-1.13.66-2.3,1.39-3.54,2.15-2.33,1.44-5,3.07-8,4.7C8.69,18.13,3,26.62,3,35.7c0,.4,0,.8,0,1.19C9.06,15.48,20.07,13.85,24.53,11.17Z" style="fill:#fffefc"/><path id="Top" d="M35.12,5.53A16.41,16.41,0,0,1,29.49,18c-.28.25-.06.73.3.59,3.37-1.31,7.92-5.23,6-13.14C35.71,5,35.12,5.12,35.12,5.53Zm2.27,0A16.24,16.24,0,0,1,39,19c-.12.35.31.65.55.36C41.74,16.56,43.65,11,37.93,5,37.64,4.74,37.19,5.14,37.39,5.49Zm2.76-.17A16.42,16.42,0,0,1,47,17.12a.33.33,0,0,0,.65.11c.92-3.49.4-9.44-7.17-12.53C40.08,4.54,39.82,5.08,40.15,5.32ZM21.69,15.76a16.94,16.94,0,0,0,10.47-9c.18-.36.75-.22.66.18-1.73,8-7.52,9.67-11.12,9.45C21.32,16.4,21.33,15.87,21.69,15.76Z" style="fill:#ccbea7;fill-rule:evenodd"/><path id="Outline" d="M38,65.75C17.32,65.75.5,52.27.5,35.7c0-10,6.18-19.33,16.53-24.92,3-1.6,5.57-3.21,7.86-4.62,1.26-.78,2.45-1.51,3.6-2.19C32,1.89,35,.5,38,.5s5.62,1.2,8.9,3.14c1,.57,2,1.19,3.07,1.87,2.49,1.54,5.3,3.28,9,5.27C69.32,16.37,75.5,25.69,75.5,35.7,75.5,52.27,58.68,65.75,38,65.75ZM38,3c-2.42,0-5,1.25-8.25,3.13-1.13.66-2.3,1.39-3.54,2.15-2.33,1.44-5,3.07-8,4.7C8.69,18.13,3,26.62,3,35.7,3,50.89,18.7,63.25,38,63.25S73,50.89,73,35.7C73,26.62,67.31,18.13,57.78,13,54,11,51.05,9.12,48.66,7.64c-1.09-.67-2.09-1.29-3-1.84C42.63,4,40.42,3,38,3Z"/></g><g id="Mouth"><g id="Background-2" data-name="Background"><path d="M45.05,43a8.93,8.93,0,0,1-2.92,4.71,6.81,6.81,0,0,1-4,1.88A6.84,6.84,0,0,1,34,47.71,8.93,8.93,0,0,1,31.12,43a.72.72,0,0,1,.8-.81H44.26A.72.72,0,0,1,45.05,43Z" style="fill:#b71422"/></g><g id="Tongue"><path id="Background-3" data-name="Background" d="M34,47.79a6.91,6.91,0,0,0,4.12,1.9,6.91,6.91,0,0,0,4.11-1.9,10.63,10.63,0,0,0,1-1.07,6.83,6.83,0,0,0-4.9-2.31,6.15,6.15,0,0,0-5,2.78C33.56,47.4,33.76,47.6,34,47.79Z" style="fill:#ff6164"/><path id="Outline-2" data-name="Outline" d="M34.16,47a5.36,5.36,0,0,1,4.19-2.08,6,6,0,0,1,4,1.69c.23-.25.45-.51.66-.77a7,7,0,0,0-4.71-1.93,6.36,6.36,0,0,0-4.89,2.36A9.53,9.53,0,0,0,34.16,47Z"/></g><path id="Outline-3" data-name="Outline" d="M38.09,50.19a7.42,7.42,0,0,1-4.45-2,9.52,9.52,0,0,1-3.11-5.05,1.2,1.2,0,0,1,.26-1,1.41,1.41,0,0,1,1.13-.51H44.26a1.44,1.44,0,0,1,1.13.51,1.19,1.19,0,0,1,.25,1h0a9.52,9.52,0,0,1-3.11,5.05A7.42,7.42,0,0,1,38.09,50.19Zm-6.17-7.4c-.16,0-.2.07-.21.09a8.29,8.29,0,0,0,2.73,4.37A6.23,6.23,0,0,0,38.09,49a6.28,6.28,0,0,0,3.65-1.73,8.3,8.3,0,0,0,2.72-4.37.21.21,0,0,0-.2-.09Z"/></g><g id="Face"><ellipse id="Right_Blush" data-name="Right Blush" cx="53.22" cy="40.18" rx="5.85" ry="3.44" style="fill:#febbd0"/><ellipse id="Left_Bluch" data-name="Left Bluch" cx="22.95" cy="40.18" rx="5.85" ry="3.44" style="fill:#febbd0"/><path id="Eyes" d="M25.7,38.8a5.51,5.51,0,1,0-5.5-5.51A5.51,5.51,0,0,0,25.7,38.8Zm24.77,0A5.51,5.51,0,1,0,45,33.29,5.5,5.5,0,0,0,50.47,38.8Z" style="fill-rule:evenodd"/><path id="Iris" d="M24,33.64a2.07,2.07,0,1,0-2.06-2.07A2.07,2.07,0,0,0,24,33.64Zm24.77,0a2.07,2.07,0,1,0-2.06-2.07A2.07,2.07,0,0,0,48.75,33.64Z" style="fill:#fff;fill-rule:evenodd"/></g></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/cli.svg b/docs-mintlify/images/setup-tools/cli.svg
new file mode 100644
index 0000000000..857dd04c71
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/cli.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>GNU Bash</title><path d="M21.038,4.9l-7.577-4.498C13.009,0.134,12.505,0,12,0c-0.505,0-1.009,0.134-1.462,0.403L2.961,4.9 C2.057,5.437,1.5,6.429,1.5,7.503v8.995c0,1.073,0.557,2.066,1.462,2.603l7.577,4.497C10.991,23.866,11.495,24,12,24 c0.505,0,1.009-0.134,1.461-0.402l7.577-4.497c0.904-0.537,1.462-1.529,1.462-2.603V7.503C22.5,6.429,21.943,5.437,21.038,4.9z M15.17,18.946l0.013,0.646c0.001,0.078-0.05,0.167-0.111,0.198l-0.383,0.22c-0.061,0.031-0.111-0.007-0.112-0.085L14.57,19.29 c-0.328,0.136-0.66,0.169-0.872,0.084c-0.04-0.016-0.057-0.075-0.041-0.142l0.139-0.584c0.011-0.046,0.036-0.092,0.069-0.121 c0.012-0.011,0.024-0.02,0.036-0.026c0.022-0.011,0.043-0.014,0.062-0.006c0.229,0.077,0.521,0.041,0.802-0.101 c0.357-0.181,0.596-0.545,0.592-0.907c-0.003-0.328-0.181-0.465-0.613-0.468c-0.55,0.001-1.064-0.107-1.072-0.917 c-0.007-0.667,0.34-1.361,0.889-1.8l-0.007-0.652c-0.001-0.08,0.048-0.168,0.111-0.2l0.37-0.236 c0.061-0.031,0.111,0.007,0.112,0.087l0.006,0.653c0.273-0.109,0.511-0.138,0.726-0.088c0.047,0.012,0.067,0.076,0.048,0.151 l-0.144,0.578c-0.011,0.044-0.036,0.088-0.065,0.116c-0.012,0.012-0.025,0.021-0.038,0.028c-0.019,0.01-0.038,0.013-0.057,0.009 c-0.098-0.022-0.332-0.073-0.699,0.113c-0.385,0.195-0.52,0.53-0.517,0.778c0.003,0.297,0.155,0.387,0.681,0.396 c0.7,0.012,1.003,0.318,1.01,1.023C16.105,17.747,15.736,18.491,15.17,18.946z M19.143,17.859c0,0.06-0.008,0.116-0.058,0.145 l-1.916,1.164c-0.05,0.029-0.09,0.004-0.09-0.056v-0.494c0-0.06,0.037-0.093,0.087-0.122l1.887-1.129 c0.05-0.029,0.09-0.004,0.09,0.056V17.859z M20.459,6.797l-7.168,4.427c-0.894,0.523-1.553,1.109-1.553,2.187v8.833 c0,0.645,0.26,1.063,0.66,1.184c-0.131,0.023-0.264,0.039-0.398,0.039c-0.42,0-0.833-0.114-1.197-0.33L3.226,18.64 c-0.741-0.44-1.201-1.261-1.201-2.142V7.503c0-0.881,0.46-1.702,1.201-2.142l7.577-4.498c0.363-0.216,0.777-0.33,1.197-0.33 c0.419,0,0.833,0.114,1.197,0.33l7.577,4.498c0.624,0.371,1.046,1.013,1.164,1.732C21.686,6.557,21.12,6.411,20.459,6.797z"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/convex.svg b/docs-mintlify/images/setup-tools/convex.svg
new file mode 100644
index 0000000000..8622c4c072
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/convex.svg
@@ -0,0 +1,5 @@
+<svg width="184" height="188" viewBox="0 0 184 188" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M108.092 130.021C126.258 128.003 143.385 118.323 152.815 102.167C148.349 142.128 104.653 167.385 68.9858 151.878C65.6992 150.453 62.8702 148.082 60.9288 145.034C52.9134 132.448 50.2786 116.433 54.0644 101.899C64.881 120.567 86.8748 132.01 108.092 130.021Z" fill="#F3B01C"/>
+<path d="M53.4012 90.1735C46.0375 107.191 45.7186 127.114 54.7463 143.51C22.9759 119.608 23.3226 68.4578 54.358 44.7949C57.2286 42.6078 60.64 41.3097 64.2178 41.1121C78.9312 40.336 93.8804 46.0225 104.364 56.6193C83.0637 56.831 62.318 70.4756 53.4012 90.1735Z" fill="#8D2676"/>
+<path d="M114.637 61.8552C103.89 46.8701 87.0686 36.6684 68.6387 36.358C104.264 20.1876 148.085 46.4045 152.856 85.1654C153.3 88.7635 152.717 92.4322 151.122 95.6775C144.466 109.195 132.124 119.679 117.702 123.559C128.269 103.96 126.965 80.0151 114.637 61.8552Z" fill="#EE342F"/>
+</svg>
diff --git a/docs-mintlify/images/setup-tools/javascript.svg b/docs-mintlify/images/setup-tools/javascript.svg
new file mode 100644
index 0000000000..3bcf02b0ba
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/javascript.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>JavaScript</title><rect width="24" height="24" rx="2" fill="#F7DF1E"/><path fill="#000" d="M13.05 11.03h-2.25v5.8c0 1.23.06 2.36-.14 2.71-.33.69-1.18.6-1.57.48-.4-.2-.6-.47-.83-.86-.06-.1-.11-.2-.13-.2l-1.82 1.13c.3.63.75 1.17 1.32 1.52.86.51 2 .68 3.21.41.78-.23 1.46-.69 1.81-1.41.51-.93.4-2.07.4-3.35.01-2.05 0-4.11 0-6.23Zm8.98 7.25c-.18-1.1-.89-2.02-3-2.87-.74-.35-1.55-.59-1.8-1.14-.09-.33-.1-.51-.05-.71.15-.65.92-.84 1.52-.66.39.12.75.42.98.9 1.03-.68 1.03-.68 1.75-1.13-.27-.42-.4-.6-.59-.78-.63-.71-1.47-1.07-2.83-1.03l-.71.09c-.68.17-1.32.53-1.71 1.01-1.14 1.29-.81 3.54.57 4.47 1.37 1.02 3.36 1.24 3.62 2.21.24 1.17-.87 1.55-1.97 1.41-.81-.18-1.26-.59-1.76-1.34l-1.83 1.05c.21.48.45.69.81 1.11 1.74 1.76 6.09 1.67 6.87-1 .03-.09.24-.71.07-1.65l.06.06Z"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/mcp.svg b/docs-mintlify/images/setup-tools/mcp.svg
new file mode 100644
index 0000000000..b01b160e21
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/mcp.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>Model Context Protocol</title><path d="M13.85 0a4.16 4.16 0 0 0-2.95 1.217L1.456 10.66a.835.835 0 0 0 0 1.18.835.835 0 0 0 1.18 0l9.442-9.442a2.49 2.49 0 0 1 3.541 0 2.49 2.49 0 0 1 0 3.541L8.59 12.97l-.1.1a.835.835 0 0 0 0 1.18.835.835 0 0 0 1.18 0l.1-.098 7.03-7.034a2.49 2.49 0 0 1 3.542 0l.049.05a2.49 2.49 0 0 1 0 3.54l-8.54 8.54a1.96 1.96 0 0 0 0 2.755l1.753 1.753a.835.835 0 0 0 1.18 0 .835.835 0 0 0 0-1.18l-1.753-1.753a.266.266 0 0 1 0-.394l8.54-8.54a4.185 4.185 0 0 0 0-5.9l-.05-.05a4.16 4.16 0 0 0-2.95-1.218c-.2 0-.401.02-.6.048a4.17 4.17 0 0 0-1.17-3.552A4.16 4.16 0 0 0 13.85 0m0 3.333a.84.84 0 0 0-.59.245L6.275 10.56a4.186 4.186 0 0 0 0 5.902 4.186 4.186 0 0 0 5.902 0L19.16 9.48a.835.835 0 0 0 0-1.18.835.835 0 0 0-1.18 0l-6.985 6.984a2.49 2.49 0 0 1-3.54 0 2.49 2.49 0 0 1 0-3.54l6.983-6.985a.835.835 0 0 0 0-1.18.84.84 0 0 0-.59-.245"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/nextjs.svg b/docs-mintlify/images/setup-tools/nextjs.svg
new file mode 100644
index 0000000000..06a2bd6eed
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/nextjs.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>Next.js</title><path d="M18.665 21.978C16.758 23.255 14.465 24 12 24 5.377 24 0 18.623 0 12S5.377 0 12 0s12 5.377 12 12c0 3.583-1.574 6.801-4.067 9.001L9.219 7.2H7.2v9.596h1.615V9.251l9.85 12.727Zm-3.332-8.533 1.6 2.061V7.2h-1.6v6.245Z"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/nodejs.svg b/docs-mintlify/images/setup-tools/nodejs.svg
new file mode 100644
index 0000000000..007d7cc4c7
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/nodejs.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>Node.js</title><path fill="#5FA04E" d="M11.998,24c-0.321,0-0.641-0.084-0.922-0.247l-2.936-1.737c-0.438-0.245-0.224-0.332-0.08-0.383 c0.585-0.203,0.703-0.25,1.328-0.604c0.065-0.037,0.151-0.023,0.218,0.017l2.256,1.339c0.082,0.045,0.197,0.045,0.272,0l8.795-5.076 c0.082-0.047,0.134-0.141,0.134-0.238V6.921c0-0.099-0.053-0.192-0.137-0.242l-8.791-5.072c-0.081-0.047-0.189-0.047-0.271,0 L3.075,6.68C2.99,6.729,2.936,6.825,2.936,6.921v10.15c0,0.097,0.054,0.189,0.139,0.235l2.409,1.392 c1.307,0.654,2.108-0.116,2.108-0.89V7.787c0-0.142,0.114-0.253,0.256-0.253h1.115c0.139,0,0.255,0.112,0.255,0.253v10.021 c0,1.745-0.95,2.745-2.604,2.745c-0.508,0-0.909,0-2.026-0.551L2.28,18.675c-0.57-0.329-0.922-0.945-0.922-1.604V6.921 c0-0.659,0.353-1.275,0.922-1.603l8.795-5.082c0.557-0.315,1.296-0.315,1.848,0l8.794,5.082c0.57,0.329,0.924,0.944,0.924,1.603 v10.15c0,0.659-0.354,1.273-0.924,1.604l-8.794,5.078C12.643,23.916,12.324,24,11.998,24z M19.099,13.993 c0-1.9-1.284-2.406-3.987-2.763c-2.731-0.361-3.009-0.548-3.009-1.187c0-0.528,0.235-1.233,2.258-1.233 c1.807,0,2.473,0.389,2.747,1.607c0.024,0.115,0.129,0.199,0.247,0.199h1.141c0.071,0,0.138-0.031,0.186-0.081 c0.048-0.054,0.074-0.123,0.067-0.196c-0.177-2.098-1.571-3.076-4.388-3.076c-2.508,0-4.004,1.058-4.004,2.833 c0,1.925,1.488,2.457,3.895,2.695c2.88,0.282,3.103,0.703,3.103,1.269c0,0.983-0.789,1.402-2.642,1.402 c-2.327,0-2.839-0.584-3.011-1.742c-0.02-0.124-0.126-0.215-0.253-0.215h-1.137c-0.141,0-0.254,0.112-0.254,0.253 c0,1.482,0.806,3.248,4.655,3.248C17.501,17.007,19.099,15.91,19.099,13.993z"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/react.svg b/docs-mintlify/images/setup-tools/react.svg
new file mode 100644
index 0000000000..6f10b52ca7
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/react.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>React</title><path fill="#61DAFB" d="M14.23 12.004a2.236 2.236 0 0 1-2.235 2.236 2.236 2.236 0 0 1-2.236-2.236 2.236 2.236 0 0 1 2.235-2.236 2.236 2.236 0 0 1 2.236 2.236zm2.648-10.69c-1.346 0-3.107.96-4.888 2.622-1.78-1.653-3.542-2.602-4.887-2.602-.41 0-.783.093-1.106.278-1.375.793-1.683 3.264-.973 6.365C1.98 8.917 0 10.42 0 12.004c0 1.59 1.99 3.097 5.043 4.03-.704 3.113-.39 5.588.988 6.38.32.187.69.275 1.102.275 1.345 0 3.107-.96 4.888-2.624 1.78 1.654 3.542 2.603 4.887 2.603.41 0 .783-.09 1.106-.275 1.374-.792 1.683-3.263.973-6.365C22.02 15.096 24 13.59 24 12.004c0-1.59-1.99-3.097-5.043-4.032.704-3.11.39-5.587-.988-6.38-.318-.184-.688-.277-1.092-.278zm-.005 1.09v.006c.225 0 .406.044.558.127.666.382.955 1.835.73 3.704-.054.46-.142.945-.25 1.44-.96-.236-2.006-.417-3.107-.534-.66-.905-1.345-1.727-2.035-2.447 1.592-1.48 3.087-2.292 4.105-2.295zm-9.77.02c1.012 0 2.514.808 4.11 2.28-.686.72-1.37 1.537-2.02 2.442-1.107.117-2.154.298-3.113.538-.112-.49-.195-.964-.254-1.42-.23-1.868.054-3.32.714-3.707.19-.09.4-.127.563-.132zm4.882 3.05c.455.468.91.992 1.36 1.564-.44-.02-.89-.034-1.345-.034-.46 0-.915.01-1.36.034.44-.572.895-1.096 1.345-1.565zM12 8.1c.74 0 1.477.034 2.202.093.406.582.802 1.203 1.183 1.86.372.64.71 1.29 1.018 1.946-.308.655-.646 1.31-1.013 1.95-.38.66-.773 1.288-1.18 1.87-.728.063-1.466.098-2.21.098-.74 0-1.477-.035-2.202-.093-.406-.582-.802-1.204-1.183-1.86-.372-.64-.71-1.29-1.018-1.946.303-.657.646-1.313 1.013-1.954.38-.66.773-1.286 1.18-1.868.728-.064 1.466-.098 2.21-.098zm-3.635.254c-.24.377-.48.763-.704 1.16-.225.39-.435.782-.635 1.174-.265-.656-.49-1.31-.676-1.947.64-.15 1.315-.283 2.015-.386zm7.26 0c.695.103 1.365.23 2.006.387-.18.632-.405 1.282-.66 1.933-.2-.39-.41-.783-.64-1.174-.225-.392-.465-.774-.705-1.146zm3.063.675c.484.15.944.317 1.375.498 1.732.74 2.852 1.708 2.852 2.476-.005.768-1.125 1.74-2.857 2.475-.42.18-.88.342-1.355.493-.28-.958-.646-1.956-1.1-2.98.45-1.017.81-2.01 1.085-2.964zm-13.395.004c.278.96.645 1.957 1.1 2.98-.45 1.017-.812 2.01-1.086 2.964-.484-.15-.944-.318-1.37-.5-1.732-.737-2.852-1.706-2.852-2.474 0-.768 1.12-1.742 2.852-2.476.42-.18.88-.342 1.356-.494zm11.678 4.28c.265.657.49 1.312.676 1.948-.64.157-1.316.29-2.016.39.24-.375.48-.762.705-1.158.225-.39.435-.788.636-1.18zm-9.945.02c.2.392.41.783.64 1.175.23.39.465.772.705 1.143-.695-.102-1.365-.23-2.006-.386.18-.63.406-1.282.66-1.933zM17.92 16.32c.112.493.2.968.254 1.423.23 1.868-.054 3.32-.714 3.708-.147.09-.338.128-.563.128-1.012 0-2.514-.807-4.11-2.28.686-.72 1.37-1.536 2.02-2.44 1.107-.118 2.154-.3 3.113-.54zm-11.83.01c.96.234 2.006.415 3.107.532.66.905 1.345 1.727 2.035 2.446-1.595 1.483-3.092 2.295-4.11 2.295-.22-.005-.406-.05-.553-.132-.666-.38-.955-1.834-.73-3.703.054-.46.142-.944.25-1.438zm4.56.64c.44.02.89.034 1.345.034.46 0 .915-.01 1.36-.034-.44.572-.895 1.095-1.345 1.565-.455-.47-.91-.993-1.36-1.565z"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/supabase.svg b/docs-mintlify/images/setup-tools/supabase.svg
new file mode 100644
index 0000000000..ea1cf3bbae
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/supabase.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>Supabase</title><path fill="#3FCF8E" d="M11.9 1.036c-.015-.986-1.26-1.41-1.874-.637L.764 12.05C-.33 13.427.65 15.455 2.409 15.455h9.579l.113 7.51c.014.985 1.259 1.408 1.873.636l9.262-11.653c1.093-1.375.113-3.403-1.645-3.403h-9.642z"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/images/setup-tools/tanstack.svg b/docs-mintlify/images/setup-tools/tanstack.svg
new file mode 100644
index 0000000000..3e6d68517e
--- /dev/null
+++ b/docs-mintlify/images/setup-tools/tanstack.svg
@@ -0,0 +1 @@
+<svg role="img" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"><title>TanStack</title><path d="M11.078.042c.316-.042.65-.014.97-.014 1.181 0 2.341.184 3.472.532a12.3 12.3 0 0 1 3.973 2.086 11.9 11.9 0 0 1 3.432 4.33c1.446 3.15 1.436 6.97-.046 10.107-.958 2.029-2.495 3.727-4.356 4.965-1.518 1.01-3.293 1.629-5.1 1.848-2.298.279-4.784-.129-6.85-1.188-3.88-1.99-6.518-5.994-6.57-10.382-.01-.846.003-1.697.17-2.534.273-1.365.748-2.683 1.463-3.88a12 12 0 0 1 2.966-3.36A12.3 12.3 0 0 1 9.357.3a12 12 0 0 1 1.255-.2l.133-.016zM7.064 19.99c-.535.057-1.098.154-1.557.454.103.025.222 0 .33 0 .258 0 .52-.01.778.002.647.028 1.32.131 1.945.303.8.22 1.505.65 2.275.942.813.307 1.622.402 2.484.402.435 0 .866-.001 1.287-.12-.22-.117-.534-.095-.778-.144a11 11 0 0 1-1.556-.416 12 12 0 0 1-1.093-.467l-.23-.108a15 15 0 0 0-1.012-.44c-.905-.343-1.908-.512-2.873-.408m.808-2.274c-1.059 0-2.13.187-3.083.667q-.346.177-.659.41c-.063.046-.175.106-.199.188s.061.151.11.204c.238-.127.464-.261.718-.357 1.64-.624 3.63-.493 5.268.078.817.285 1.569.712 2.365 1.046.89.374 1.798.616 2.753.74 1.127.147 2.412.028 3.442-.48.362-.179.865-.451 1.018-.847-.189.017-.36.098-.539.154a9 9 0 0 1-.868.222c-.994.2-2.052.24-3.053.06-.943-.17-1.82-.513-2.693-.873l-.111-.046-.223-.092-.112-.046a26 26 0 0 0-1.35-.527c-.89-.31-1.842-.5-2.784-.5M9.728 1.452c-1.27.28-2.407.826-3.502 1.514-.637.4-1.245.81-1.796 1.323-.82.765-1.447 1.695-1.993 2.666-.563 1-.924 2.166-1.098 3.297-.172 1.11-.2 2.277-.004 3.388.245 1.388.712 2.691 1.448 3.897.248-.116.424-.38.629-.557.414-.359.85-.691 1.317-.978a3.5 3.5 0 0 1 .539-.264c.07-.029.187-.055.22-.132.053-.124-.045-.34-.062-.468a7 7 0 0 1-.068-1.109 9.7 9.7 0 0 1 .61-3.177c.29-.76.73-1.45 1.254-2.069.177-.21.365-.405.56-.6.115-.114.258-.212.33-.359-.376 0-.751.108-1.108.218-.769.237-1.518.588-2.155 1.084-.291.226-.504.522-.779.76-.084.073-.235.17-.352.116-.176-.083-.149-.43-.169-.59-.078-.612.154-1.387.45-1.918.473-.852 1.348-1.58 2.376-1.555.444.011.833.166 1.257.266-.107-.153-.252-.264-.389-.39a5.4 5.4 0 0 0-1.107-.8c-.163-.085-.338-.136-.509-.2-.086-.03-.195-.074-.227-.17-.06-.177.26-.342.377-.417.453-.289 1.01-.527 1.556-.54.854-.021 1.688.452 2.04 1.258.123.284.16.583.184.885l.004.057.006.085.002.029.005.057.004.056c.268-.218.457-.54.718-.774.612-.547 1.45-.79 2.245-.544a2.97 2.97 0 0 1 1.71 1.378c.097.173.365.595.171.767-.152.134-.344.03-.504-.026a3 3 0 0 0-.372-.094l-.068-.014-.069-.013a3.9 3.9 0 0 0-1.377-.002c-.282.05-.557.15-.838.192v.06c.768.006 1.51.444 1.89 1.109.157.275.235.59.295.9.075.38.022.796-.082 1.168-.035.125-.098.336-.247.365-.106.02-.195-.085-.256-.155a4.6 4.6 0 0 0-.492-.522 20 20 0 0 0-1.467-1.14c-.267-.19-.56-.44-.868-.556.087.208.171.402.2.63.088.667-.192 1.296-.612 1.798a2.6 2.6 0 0 1-.426.427c-.067.05-.151.114-.24.1-.277-.044-.31-.463-.353-.677-.144-.726-.086-1.447.114-2.158-.178.09-.307.287-.418.45a5.3 5.3 0 0 0-.612 1.138c-.61 1.617-.604 3.51.186 5.066.088.174.221.15.395.15h.157a3 3 0 0 1 .472.018c.08.01.193 0 .257.06.077.072.036.194.018.282-.05.246-.066.469-.066.72.328-.051.419-.576.535-.84.131-.298.265-.597.387-.9.06-.148.14-.314.119-.479-.024-.185-.157-.381-.25-.54-.177-.298-.378-.606-.508-.929-.104-.258-.007-.58.286-.672.161-.05.334.049.439.166.22.244.363.609.523.896l1.249 2.248q.159.286.32.57c.043.074.086.188.173.219.077.028.182-.012.26-.027.198-.04.398-.083.598-.12.24-.043.605-.035.778-.222-.253-.08-.545-.075-.808-.057-.158.01-.333.067-.479-.025-.216-.137-.36-.455-.492-.667-.326-.525-.633-1.057-.945-1.59l-.05-.084-.1-.17q-.075-.126-.149-.255c-.037-.066-.092-.153-.039-.227.056-.076.179-.08.29-.081h.021q.066.001.117-.004a10 10 0 0 1 1.347-.107c-.035-.122-.135-.26-.103-.39.071-.292.49-.383.686-.174.131.14.207.334.292.504.113.223.24.44.361.66.211.383.441.757.658 1.138l.055.094.028.047c.093.156.187.314.238.489-.753-.035-1.318-.909-1.646-1.499-.027.095.016.179.05.27q.103.282.262.54c.152.244.326.495.556.673.408.315.945.317 1.436.283.315-.022.708-.165 1.018-.068s.434.438.25.7c-.138.196-.321.27-.55.3.162.346.373.667.527 1.02.064.146.13.37.283.448.102.051.248.003.358 0-.11-.292-.317-.54-.419-.839.31.015.61.176.898.28.567.202 1.128.424 1.687.648l.258.104c.23.092.462.183.689.283.083.037.198.123.29.07.074-.043.123-.146.169-.215a10.3 10.3 0 0 0 1.393-3.208c.75-2.989.106-6.287-1.695-8.783-.692-.96-1.562-1.789-2.522-2.476-2.401-1.718-5.551-2.407-8.44-1.768m4.908 14.904c-.636.166-1.292.317-1.945.401.086.293.296.577.45.84.059.101.122.237.24.281.132.05.292-.03.417-.072-.058-.158-.155-.3-.235-.45-.033-.06-.084-.133-.056-.206.05-.137.263-.13.381-.153.31-.063.617-.142.928-.204.114-.023.274-.085.389-.047.086.03.138.1.187.174l.022.033q.043.07.097.122c.125.113.313.13.472.162-.097-.219-.259-.41-.362-.63-.06-.127-.11-.315-.242-.388-.182-.102-.557.089-.743.137m-4.01-1.457c-.03.38-.147.689-.33 1.019.21.026.423.036.629.087.154.038.296.11.449.153-.082-.224-.233-.423-.35-.63-.12-.208-.226-.462-.398-.63"/></svg>
\ No newline at end of file
diff --git a/docs-mintlify/index.mdx b/docs-mintlify/index.mdx
index 178331d71b..b1dff3fc3c 100644
--- a/docs-mintlify/index.mdx
+++ b/docs-mintlify/index.mdx
@@ -4,7 +4,7 @@ description: "Stack Auth documentation for setup, components, SDK usage, and RES
 sidebarTitle: "Overview"
 ---
 
-import { HomePromptIsland } from "/snippets/home-prompt-island.jsx";
+import { GeneratedSetupPromptText, generatedSetupPromptText } from "/snippets/home-prompt-island.jsx";
 import { DocsAppsHomeGrid } from "/snippets/docs-apps-home-grid.jsx";
 
 export const SectionLink = ({ href, children }) => (
@@ -15,7 +15,54 @@ export const ChipLink = ({ href, children }) => (
   <a href={href} className="inline-flex rounded-md bg-slate-100 px-2.5 py-1 text-xs font-medium text-slate-600 no-underline transition hover:bg-[#6b5df7]/10 hover:text-[#6b5df7] dark:bg-slate-800 dark:text-slate-300 dark:hover:bg-[#6b5df7]/20 dark:hover:text-[#8b7cf9]">{children}</a>
 );
 
-<HomePromptIsland />
+export const copyGeneratedSetupPrompt = async (event) => {
+  const button = event.currentTarget;
+  await navigator.clipboard.writeText(generatedSetupPromptText);
+  button.textContent = "Copied";
+  window.setTimeout(() => {
+    button.textContent = "Copy prompt";
+  }, 1300);
+};
+
+<div className="not-prose my-6 rounded-3xl border border-[#d7dff6] bg-gradient-to-br from-[#f6f8ff] via-[#f2f5ff] to-[#edf7ff] p-5 text-zinc-900 shadow-[0_20px_60px_-40px_rgba(50,70,150,0.35)] sm:p-7 dark:border-[#2c3751] dark:bg-gradient-to-br dark:from-[#0c1423] dark:via-[#111b2f] dark:to-[#0b212e] dark:text-zinc-100 dark:shadow-[0_20px_60px_-40px_rgba(0,0,0,0.8)]">
+  <p className="text-[11px] font-semibold uppercase tracking-[0.16em] text-[#4f5f95] dark:text-[#8ea4d2]">
+    Agent-first setup
+  </p>
+
+  <h1 className="mt-3 text-4xl font-semibold tracking-tight text-zinc-900 sm:text-5xl dark:text-zinc-50">
+    Start with a single prompt.
+  </h1>
+  <p className="mt-3 max-w-3xl text-base leading-7 text-zinc-600 dark:text-zinc-300">
+    Set up Stack Auth by copying the prompt below into your favorite coding agent.
+  </p>
+
+  <div className="relative mt-6">
+    <GeneratedSetupPromptText className="h-28 w-full resize-none overflow-hidden rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 outline-none backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200" />
+    <button
+      type="button"
+      onClick={copyGeneratedSetupPrompt}
+      className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
+    >
+      Copy prompt
+    </button>
+    <div className="pointer-events-none absolute inset-x-2 bottom-2 h-8 rounded-b-xl bg-gradient-to-t from-[#f4f7ff] to-transparent dark:from-[#0f1a2e]" />
+  </div>
+
+  <div className="mt-5 flex flex-col gap-3 sm:flex-row">
+    <a
+      href="https://app.stack-auth.com"
+      className="inline-flex items-center justify-center rounded-xl bg-[#1e2f57] px-5 py-3 text-sm font-semibold !text-[#eef4ff] no-underline transition-colors duration-150 hover:transition-none hover:bg-[#253a6b] dark:bg-[#1e2f57] dark:hover:bg-[#253a6b] dark:!text-[#eef4ff]"
+    >
+      Go to dashboard
+    </a>
+    <a
+      href="/guides/getting-started/setup"
+      className="inline-flex items-center justify-center rounded-xl border border-[#9fb5e4] bg-white/60 px-5 py-3 text-sm font-semibold text-[#1f3764] no-underline transition-colors duration-150 hover:transition-none hover:bg-white/85 dark:border-[#3d5a91] dark:bg-transparent dark:text-[#d7e7ff] dark:hover:bg-white/10"
+    >
+      Open full prompt
+    </a>
+  </div>
+</div>
 
 <div className="mx-auto mt-20 max-w-7xl px-4 sm:px-6 lg:px-8">
   <div>
@@ -45,9 +92,6 @@ export const ChipLink = ({ href, children }) => (
     <div className="relative mb-10">
       <div className="absolute -left-[2.55rem] top-0.5 h-4 w-4 rounded-full border-2 border-[#6b5df7] bg-[#6b5df7]" />
       <SectionLink href="/guides/apps/authentication/overview">Explore Apps</SectionLink>
-      <p className="mt-1 text-sm text-slate-500 dark:text-slate-400">
-        Open app guides from a home-screen style quick access grid, modeled after dashboard Overview.
-      </p>
       <DocsAppsHomeGrid />
     </div>
 
diff --git a/docs-mintlify/snippets/home-prompt-island.jsx b/docs-mintlify/snippets/home-prompt-island.jsx
index 07526845e4..8adc50087b 100644
--- a/docs-mintlify/snippets/home-prompt-island.jsx
+++ b/docs-mintlify/snippets/home-prompt-island.jsx
@@ -1,106 +1,14 @@
-export const HomePromptIsland = () => {
-  const setupPromptEndpoint = "https://api.stack-auth.com/api/v1/setup-prompt";
-  const setupPromptLoadErrorMessage = "Failed to load the setup prompt. Please try again.";
-
-  const [prompt, setPrompt] = useState("");
-  const [isLoading, setIsLoading] = useState(true);
-  const [loadError, setLoadError] = useState(null);
-
-  const loadPrompt = async () => {
-    setLoadError(null);
-    const response = await fetch(setupPromptEndpoint, {
-      method: "GET",
-      headers: {
-        Accept: "text/plain",
-      },
-    }).then(
-      (value) => value,
-      () => {
-        throw new Error(setupPromptLoadErrorMessage);
-      },
-    );
-    if (!response.ok) {
-      throw new Error(setupPromptLoadErrorMessage);
-    }
-
-    const text = await response.text();
-    if (text.trim().length === 0) {
-      throw new Error(setupPromptLoadErrorMessage);
-    }
-
-    setPrompt(text);
-    setIsLoading(false);
-    return text;
-  };
-
-  const onMount = (node) => {
-    if (node == null || node.dataset.setupPromptInitialized === "true") {
-      return;
-    }
-    node.dataset.setupPromptInitialized = "true";
-    loadPrompt().then(
-      () => undefined,
-      (error) => {
-        setLoadError(error instanceof Error ? error.message : setupPromptLoadErrorMessage);
-        setIsLoading(false);
-      },
-    );
-  };
-
-  const onCopy = async (event) => {
-    const promptToCopy = isLoading ? await loadPrompt() : prompt;
-    await navigator.clipboard.writeText(promptToCopy);
-    const button = event.currentTarget;
-    button.textContent = "Copied";
-    window.setTimeout(() => {
-      button.textContent = "Copy prompt";
-    }, 1300);
-  };
-
-  return (
-    <div className="not-prose my-6 rounded-3xl border border-[#d7dff6] bg-gradient-to-br from-[#f6f8ff] via-[#f2f5ff] to-[#edf7ff] p-5 text-zinc-900 shadow-[0_20px_60px_-40px_rgba(50,70,150,0.35)] sm:p-7 dark:border-[#2c3751] dark:bg-gradient-to-br dark:from-[#0c1423] dark:via-[#111b2f] dark:to-[#0b212e] dark:text-zinc-100 dark:shadow-[0_20px_60px_-40px_rgba(0,0,0,0.8)]">
-      <p className="text-[11px] font-semibold uppercase tracking-[0.16em] text-[#4f5f95] dark:text-[#8ea4d2]">
-        Agent-first setup
-      </p>
-
-      <h1 className="mt-3 text-4xl font-semibold tracking-tight text-zinc-900 sm:text-5xl dark:text-zinc-50">
-        Start with a single prompt.
-      </h1>
-      <p className="mt-3 max-w-3xl text-base leading-7 text-zinc-600 dark:text-zinc-300">
-        Set up Stack Auth by copying the prompt below into your favorite coding agent.
-      </p>
-
-      <div ref={onMount} className="relative mt-6">
-        <textarea
-          readOnly
-          value={loadError ? loadError : prompt}
-          className="h-28 w-full resize-none overflow-hidden rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 outline-none backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"
-        />
-        <button
-          type="button"
-          onClick={onCopy}
-          className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
-          disabled={isLoading || loadError !== null}
-        >
-          {isLoading ? "Loading..." : "Copy prompt"}
-        </button>
-        <div className="pointer-events-none absolute inset-x-2 bottom-2 h-8 rounded-b-xl bg-gradient-to-t from-[#f4f7ff] to-transparent dark:from-[#0f1a2e]" />
-      </div>
-
-      <div className="mt-5 flex flex-col gap-3 sm:flex-row">
-        <a
-          href="https://app.stack-auth.com"
-          className="inline-flex items-center justify-center rounded-xl bg-[#1e2f57] px-5 py-3 text-sm font-semibold !text-[#eef4ff] no-underline transition-colors duration-150 hover:transition-none hover:bg-[#253a6b] dark:bg-[#1e2f57] dark:hover:bg-[#253a6b] dark:!text-[#eef4ff]"
-        >
-          Go to dashboard
-        </a>
-        <a
-          href="/guides/getting-started/setup"
-          className="inline-flex items-center justify-center rounded-xl border border-[#9fb5e4] bg-white/60 px-5 py-3 text-sm font-semibold text-[#1f3764] no-underline transition-colors duration-150 hover:transition-none hover:bg-white/85 dark:border-[#3d5a91] dark:bg-transparent dark:text-[#d7e7ff] dark:hover:bg-white/10"
-        >
-          Open full prompt
-        </a>
-      </div>
-    </div>
-  );
-};
+// This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead.
+
+export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    \n\n    \n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"@/stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackServerApp}>\n            <StackTheme>\n              {children}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  \n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
+export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli","mcp"];
+export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"},{"toolId":"mcp","title":"MCP"}];
+export const unifiedAiPromptTabTitle = "Unified AI Prompt";
+
+export const GeneratedSetupPromptText = ({ className }) => (
+  <textarea
+    readOnly
+    value={generatedSetupPromptText}
+    className={className}
+  />
+);
diff --git a/package.json b/package.json
index 258a3b8110..942e91a10f 100644
--- a/package.json
+++ b/package.json
@@ -21,7 +21,7 @@
     "clean": "pnpm pre-no-codegen && turbo run clean && rimraf --glob **/.next && rimraf --glob **/.turbo && rimraf .turbo && rimraf --glob **/node_modules && rimraf node_modules",
     "uff-cutie": "pnpm clean && pnpm i && (pnpm build || true) && pnpm codegen",
     "fml": "pnpm uff-cutie && pnpm restart-deps",
-    "codegen": "pnpm pre && turbo run codegen && pnpm run generate-sdks",
+    "codegen": "pnpm pre && turbo run codegen && pnpm run generate-sdks && pnpm run generate-setup-prompt-docs",
     "codegen:backend": "pnpm pre && turbo run codegen --filter=@stackframe/backend...",
     "deps-compose": "docker compose -p stack-dependencies-${NEXT_PUBLIC_STACK_PORT_PREFIX:-81} -f docker/dependencies/docker.compose.yaml",
     "emulator:generate-env": "node ./docker/local-emulator/generate-env-development.mjs",
@@ -50,13 +50,13 @@
     "db:init": "pnpm pre && pnpm run --filter=@stackframe/backend db:init",
     "db:migrate": "pnpm pre && pnpm run --filter=@stackframe/backend db:migrate",
     "fern": "pnpm pre && pnpm run --filter=@stackframe/docs fern",
-    "dev:full": "pnpm pre && concurrently -k \"pnpm run generate-sdks:watch\" \"turbo run dev --concurrency 99999\"",
-    "dev": "pnpm pre && concurrently -k \"pnpm run generate-sdks:watch\" \"pnpm run generate-openapi-docs:watch\" \"turbo run dev --concurrency 99999 --filter=./apps/* --filter=@stackframe/docs-mintlify --filter=@stackframe/stack-docs --filter=./packages/* --filter=./examples/demo \"",
-    "dev:tui": "pnpm pre && (trap 'kill 0' EXIT; pnpm run generate-sdks:watch & pnpm run generate-openapi-docs:watch & turbo run dev --ui tui --concurrency 99999 --filter=./apps/* --filter=@stackframe/stack-docs --filter=./packages/* --filter=./examples/demo)",
+    "dev:full": "pnpm pre && concurrently -k \"pnpm run generate-sdks:watch\" \"pnpm run generate-setup-prompt-docs:watch\" \"turbo run dev --concurrency 99999\"",
+    "dev": "pnpm pre && concurrently -k \"pnpm run generate-sdks:watch\" \"pnpm run generate-openapi-docs:watch\" \"pnpm run generate-setup-prompt-docs:watch\" \"turbo run dev --concurrency 99999 --filter=./apps/* --filter=@stackframe/docs-mintlify --filter=@stackframe/stack-docs --filter=./packages/* --filter=./examples/demo \"",
+    "dev:tui": "pnpm pre && (trap 'kill 0' EXIT; pnpm run generate-sdks:watch & pnpm run generate-openapi-docs:watch & pnpm run generate-setup-prompt-docs:watch & turbo run dev --ui tui --concurrency 99999 --filter=./apps/* --filter=@stackframe/stack-docs --filter=./packages/* --filter=./examples/demo)",
     "dev:inspect": "pnpm pre && STACK_BACKEND_DEV_EXTRA_ARGS=\"--inspect\" pnpm run dev",
     "dev:profile": "pnpm pre && STACK_BACKEND_DEV_EXTRA_ARGS=\"--experimental-cpu-prof\" pnpm run dev",
     "dev:basic": "pnpm pre && concurrently -k \"pnpm run generate-sdks:watch\" \"turbo run dev --concurrency 99999 --filter=@stackframe/backend --filter=@stackframe/dashboard --filter=@stackframe/mock-oauth-server\"",
-    "dev:docs": "pnpm pre && concurrently -k \"pnpm run generate-openapi-docs:watch\" \"turbo run dev --concurrency 99999 --filter=@stackframe/stack-docs\"",
+    "dev:docs": "pnpm pre && concurrently -k \"pnpm run generate-openapi-docs:watch\" \"pnpm run generate-setup-prompt-docs:watch\" \"turbo run dev --concurrency 99999 --filter=@stackframe/stack-docs\"",
     "dev:named": "pnpm pre && concurrently -k \"pnpm run dev\" \"node -e \\\"process.title='node (stack-named-dev-server)'; process.stdin.resume();\\\"\"",
     "kill-dev:named": "(pgrep -f 'stack-named-dev-server' | xargs -r -n1 pkill -P); echo 'Killed named dev server (if found). Sleeping to give some time for it to shut down...' && sleep 10",
     "kms": "PREFIX=${NEXT_PUBLIC_STACK_PORT_PREFIX:-81}; for p in 00 01 02 03 04 06 14; do pids=$(lsof -i :$PREFIX$p 2>/dev/null | grep LISTEN | awk '$1 != \"OrbStack\" {print $2}' | sort -u); [ -n \"$pids\" ] && echo $pids | xargs kill -9 2>/dev/null; done; echo Done.",
@@ -75,8 +75,10 @@
     "verify-data-integrity": "pnpm pre && pnpm -C apps/backend run verify-data-integrity",
     "generate-keys": "pnpm pre && turbo run generate-keys",
     "generate-sdks": "pnpm exec tsx ./scripts/generate-sdks.ts",
+    "generate-setup-prompt-docs": "pnpm exec tsx ./scripts/generate-setup-prompt-docs.ts",
     "generate-sdks:watch": "chokidar --silent -c 'pnpm run generate-sdks' './packages/template' --ignore './packages/template/package.json' --ignore '**/node_modules/**' --ignore '**/dist/**' --ignore '**/.turbo/**' --throttle 2000",
-    "generate-openapi-docs:watch": "chokidar --silent -c 'pnpm run --filter=@stackframe/stack-docs generate-openapi-docs' './docs/openapi/{admin,client,server,webhooks}.json' --throttle 2000"
+    "generate-openapi-docs:watch": "chokidar --silent -c 'pnpm run --filter=@stackframe/stack-docs generate-openapi-docs' './docs/openapi/{admin,client,server,webhooks}.json' --throttle 2000",
+    "generate-setup-prompt-docs:watch": "pnpm run generate-setup-prompt-docs && chokidar --silent -c 'pnpm run generate-setup-prompt-docs' './packages/stack-shared/src/ai/prompts.ts' './scripts/generate-setup-prompt-docs.ts' --throttle 2000"
   },
   "devDependencies": {
     "@changesets/cli": "^2.27.9",
diff --git a/packages/stack-shared/src/ai/prompts.ts b/packages/stack-shared/src/ai/prompts.ts
index 089e1d66d3..f5d9bb5420 100644
--- a/packages/stack-shared/src/ai/prompts.ts
+++ b/packages/stack-shared/src/ai/prompts.ts
@@ -1,276 +1,416 @@
-import { StackAssertionError } from "../utils/errors";
 import { deindent } from "../utils/strings";
 
-export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "python" | "js" | "tanstack-start" | "nodejs", extraOptions: { tanstackQuery: boolean }) {
-  if (mainType !== "ai-prompt") throw new StackAssertionError(`Not yet implemented`);
-  return deindent`
-    # Setting up Stack Auth
-
-    This prompt explains how to set up Stack Auth in your project.
-
-    To use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.
-
-    ## SDK Setup Instructions
-
-    Follow these instructions in order to set up and get started with the Stack Auth SDK in various languages. Not all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.
-
-    The frameworks and languages with explicit SDK support are:
-
-    - Next.js
-    - React
-    - Other JS & TS (both frontend and backend)
-
-    ### Install dependencies
-
-    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.
-
-    #### JavaScript & TypeScript
-
-    For JS & TS, the following packages are available:
-
-    - Next.js: \`@stackframe/stack\`
-    - React: \`@stackframe/react\`
-    - Other & vanilla JS: \`@stackframe/js\`
-
-    To install the correct JavaScript Stack Auth SDK into your project, run the following command:
-
-    \`\`\`sh
-    npm i <the-sdk-from-above>
-    # or: pnpm i <the-sdk-from-above>
-    # or: yarn add <the-sdk-from-above>
-    # or: bun add <the-sdk-from-above>
-    \`\`\`
-
-    ### Initializing the Stack App
-
-    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
-
-    For the frontend, you can use the \`StackClientApp\`:
-
-    \`\`\`ts src/stack/client.ts
-    import { StackClientApp } from "@stackframe/js";  // use the correct package that you installed in the first step
-
-    export const stackClientApp = new StackClientApp({
-      tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
-    });
-    \`\`\`
-
-    For the backend, you can create a \`StackServerApp\` object:
-
-    \`\`\`ts src/stack/server.ts
-    import { StackServerApp } from "@stackframe/js";  // use the correct package that you installed in the first step
-
-    export const stackServerApp = new StackServerApp({
-      tokenStore: null,
-    });
-    \`\`\`
-
-    For frameworks that are both front- and backend, like Next.js: You can create a \`StackServerApp\` from a \`StackClientApp\` object:
-
-    \`\`\`ts src/stack/server.ts
-    import { StackServerApp } from "@stackframe/stack";  // use the correct package that you installed in the first step
-    import { stackClientApp } from "./client";
-
-    export const stackServerApp = new StackServerApp({
-      inheritsFrom: stackClientApp,
-    });
-    \`\`\`
-
-    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a \`StackClientApp\` object.
-
-    ### Setting up the project
-
-    It's now time to create a development setup for Stack Auth.
-
-    You can either run Stack Auth locally, or connect to a project hosted in the cloud. If you're unsure, running Stack Auth locally is a good start unless you know you're in an environment where this is not supported.
-
-    If you already use Stack Auth for your product, we recommend you re-use the same project.
-
-    #### Running Stack Auth locally
-
-    This is the recommended way for most users. It also lets you configure Stack Auth locally with a \`stack.config.ts\` file. First, create the config file in the root directory of the workspace (or anywhere else):
-
-    \`\`\`ts stack.config.ts
-    import type { StackConfig } from "@stackframe/js";  // use the correct package that you installed in the first step
-
-    // show-onboarding: When the local emulator starts, show the onboarding flow for this project
-    export const config: StackConfig = "show-onboarding";
-    \`\`\`
-
-    To run Stack Auth locally, you need to start the emulator and set the environment variables. The \`emulator run\` CLI command does both of these, so you can simply wrap your existing \`dev\` script:
+export const mcpSetupPrompt = deindent`
+  ## MCP Setup
+
+  <Note>
+    This prompt is not yet implemented.
+  </Note>
+
+  <Steps titleSize="h3">
+    <Step title="Install dependencies">
+      Install the MCP package:
+    </Step>
+    <Step title="Done!" />
+  </Steps>
+`;
+
+export const convexSetupPrompt = deindent`
+  ## Convex Setup
+
+  <Note>
+    This prompt is not yet implemented.
+  </Note>
+
+  <Steps titleSize="h3">
+    <Step title="Install dependencies">
+      Install the Convex package:
+    </Step>
+    <Step title="Done!" />
+  </Steps>
+`;
+
+export const supabaseSetupPrompt = deindent`
+  ## Supabase Setup
+
+  <Note>
+    This prompt is not yet implemented.
+  </Note>
+
+  <Steps titleSize="h3">
+    <Step title="Install dependencies">
+      Install the Supabase package:
+    </Step>
+    <Step title="Done!" />
+  </Steps>
+`;
+
+export const cliSetupPrompt = deindent`
+  ## CLI Setup
+
+  <Note>
+    This prompt is not yet implemented.
+  </Note>
+
+  <Steps titleSize="h3">
+    <Step title="Install dependencies">
+      Install the CLI package:
+    </Step>
+    <Step title="Done!" />
+  </Steps>
+`;
+
+export const aiSetupPrompt = deindent`
+  # Setting up Stack Auth
+
+  This prompt explains how to set up Stack Auth in your project.
+
+  To use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.
+
+  ${getSdkSetupPrompt("ai-prompt")}
+
+  ${mcpSetupPrompt}
+
+  ${convexSetupPrompt}
+
+  ${supabaseSetupPrompt}
+
+  ${cliSetupPrompt}
+`;
+
+export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "js" | "tanstack-start" | "nodejs" | "bun") {
+  const isDefinitelyReact = mainType === "react" || mainType === "nextjs" || mainType === "tanstack-start";
+  const isMaybeReact = isDefinitelyReact || mainType === "ai-prompt";
+  const isDefinitelyNextjs = mainType === "nextjs";
+  const isMaybeNextjs = isDefinitelyNextjs || mainType === "ai-prompt";
+
+  const isDefinitelyBackend = mainType === "nodejs" || mainType === "bun" || mainType === "nextjs";
+  const isMaybeBackend = isDefinitelyBackend || mainType === "js";
+  const isDefinitelyFrontend = isDefinitelyReact;
+  const isMaybeFrontend = isDefinitelyFrontend || mainType === "js";
+
+  const isAiPrompt = mainType === "ai-prompt";
+
+  const typeLabel = {
+    "ai-prompt": null,
+    nextjs: "Next.js",
+    react: "React",
+    js: "Other JS/TS",
+    "tanstack-start": "Tanstack Start",
+    nodejs: "Node.js",
+    bun: "Bun",
+  }[mainType];
+  const packageName = {
+    "ai-prompt": "<the-sdk-from-above>",
+    nextjs: "@stackframe/stack",
+    react: "@stackframe/react",
+    js: "@stackframe/js",
+    "tanstack-start": "@stackframe/react",
+    nodejs: "@stackframe/js",
+    bun: "@stackframe/js",
+  }[mainType];
 
-    \`\`\`json package.json
-    {
-      // ...
-      "scripts": {
-        // ...
-        "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
-      }
-    }
-    \`\`\`
-
-    #### Connecting a cloud project
-
-    <Note>
-      If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.
-    </Note>
-
-    If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
-
-    This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
-
-    ##### Frontend
-
-    Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the \`/projects/\` part. Copy-paste it into your \`.env.local\` file (or wherever your environment variables are stored):
-
-    \`\`\`.env .env.local
-    STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
-    \`\`\`
-
-    Alternatively, you can also just set the project ID in the \`stack/client.ts\` file:
-
-    \`\`\`ts src/stack/client.ts
-    export const stackClientApp = new StackClientApp({
-      // ...
-      projectId: "your-project-id",
-    });
-    \`\`\`
-
-
-    ##### Backend (or both frontend and backend)
-
-    First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
-
-    Then, copy-paste them into your \`.env.local\` file (or wherever your environment variables are stored):
-
-    \`\`\`.env .env.local
-    STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
-    STACK_SECRET_SERVER_KEY=<your-secret-server-key>
-    \`\`\`
-
-    They'll automatically be picked up by the \`StackServerApp\` constructor.
-
-
-    ### React: Creating a \`<StackProvider />\` and \`<StackTheme />\`
-
-    For React specifically, we provide \`StackProvider\` and \`StackTheme\` components that should wrap your entire app at the root level. These components make sure that the built-in React components work correctly.
-
-    For example, if you have an \`App.tsx\` file, this may look like this:
-
-    \`\`\`tsx src/App.tsx
-    import { StackProvider, StackTheme } from "@stackframe/react";  // use the correct package that you installed in the first step
-    import { stackClientApp } from "@/stack/client";
-
-    export default function App() {
-      return (
-        <StackProvider app={stackClientApp}>
-          <StackTheme>
-            {/* your app content */}
-          </StackTheme>
-        </StackProvider>
-      );
-    }
-    \`\`\`
-
-    For Next.js specifically: You can do this in the \`layout.tsx\` file in the \`app\` directory:
-
-    \`\`\`tsx src/app/layout.tsx
-    import { Suspense } from "react";
-    import { StackProvider, StackTheme } from "@stackframe/stack";  // use the correct package that you installed in the first step
-    import { stackServerApp } from "@/stack/server";
-
-    export default function RootLayout({ children }: { children: React.ReactNode }) {
-      return (
-        <StackProvider app={stackServerApp}>
-          <StackTheme>
-            {children}
-          </StackTheme>
-        </StackProvider>
-      );
-    }
-    \`\`\`
-
-    For React specifically: You can do this in the \`App.tsx\` file:
-
-
-    ### React: Add Suspense boundary
-
-    For React specifically, Stack Auth provides additional \`useXyz\` equivalents for \`getXyz\`/\`listXyz\` functions. For example, \`useUser\` is like \`getUser\`, but as a synchronous React hook that suspends.
-
-    To support the suspension, you need to add a Suspense boundary around your app. The easiest way to do this is to just wrap your entire app in a \`Suspense\` component:
-
-    \`\`\`tsx src/app/layout.tsx
-    import { Suspense } from "react";
-    import { StackProvider, StackTheme } from "@stackframe/react";  // use the correct package that you installed in the first step
-    import { stackServerApp } from "@/stack/server";
-
-    export default function RootLayout({ children }: { children: React.ReactNode }) {
-      return (
-        <Suspense fallback={<div>Loading...</div>}>
-          <StackProvider app={stackServerApp}>
-            <StackTheme>
-              {children}
-            </StackTheme>
-          </StackProvider>
-        </Suspense>
-      );
-    }
-    \`\`\`
-
-    If you are using Next.js, you can also just provide a \`loading.tsx\` file in the \`app\` directory for the same effect:
-
-    \`\`\`tsx src/app/loading.tsx
-    export default function Loading() {
-      return <div>Loading...</div>;
-    }
-    \`\`\`
+  return deindent`
+    ## ${typeLabel ? `${typeLabel} SDK Setup Instructions` : "SDK Setup Instructions"}
+
+    Follow these instructions in order to set up and get started with the Stack Auth SDK ${typeLabel ? `for ${typeLabel} ` : "in various languages"}.
+    
+    ${isAiPrompt ? "Not all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks." : ""}
+
+    ${isAiPrompt ? deindent`
+      The frameworks and languages with explicit SDK support are:
+
+      - Next.js
+      - React
+      - Other JS & TS (both frontend and backend)
+    ` : ""}
+
+    <Steps titleSize="h3">
+      <Step title="Install dependencies">
+        ${isAiPrompt ? deindent`
+          Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.
+
+          #### JavaScript & TypeScript
+
+          For JS & TS, the following packages are available:
+
+          - Next.js: \`@stackframe/stack\`
+          - React: \`@stackframe/react\`
+          - Other & vanilla JS: \`@stackframe/js\`
+
+          You can install the correct JavaScript Stack Auth SDK into your project by running the following command:
+        ` : deindent`
+          First, install the \`${packageName}\` npm package with your preferred package manager:
+        `}
+
+          \`\`\`sh
+          npm i ${packageName}
+          # or: pnpm i ${packageName}
+          # or: yarn add ${packageName}
+          # or: bun add ${packageName}
+          \`\`\`
+      </Step>
+      
+      <Step title="Initializing the Stack App">
+        Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.
 
-    If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says "Loading...".
+        ${isMaybeFrontend ? deindent`
+          In a frontend where you cannot keep a secret key safe, you would use the \`StackClientApp\` constructor:
+
+          \`\`\`ts src/stack/client.ts
+          import { StackClientApp } from "${packageName}";
 
+          export const stackClientApp = new StackClientApp({
+            tokenStore: "cookie", // "nextjs-cookie" for Next.js, "cookie" for other web frontends, null for backend environments
+          });
+          \`\`\`
+        ` : ""}
 
-    ### Backend: Update callers with header & get user
+        ${isMaybeBackend ? deindent`
+          In a backend where you can keep a secret key safe, you can use the \`StackServerApp\`, which provides access to more sensitive APIs compared to \`StackClientApp\`:
 
-    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth in a header such that you can access the same user object on your backend.
+          ${!isDefinitelyFrontend ? deindent`
+            \`\`\`ts src/stack/server.ts
+            import { StackServerApp } from "${packageName}";
 
-    The most ergonomic way to do this is to pass the result of \`stackClientApp.getAuthorizationHeader()\` as the \`Authorization\` header into your backend endpoints:
+            export const stackServerApp = new StackServerApp({
+              tokenStore: null,
+            });
+            \`\`\`
+          ` : ""}
 
-    \`\`\`ts
-    // NOTE: This is your frontend's code
-    const response = await fetch("/my-backend-endpoint", {
-      headers: {
-        "Authorization": await stackClientApp.getAuthorizationHeader(),
-      },
-    });
-    // ...
-    \`\`\`
+          ${isMaybeFrontend && !isDefinitelyFrontend ? deindent`
+            In frameworks that are both front- and backend, like Next.js, you can also create a \`StackServerApp\` from a \`StackClientApp\` object:
+          ` : ""}
 
-    <Note>
-      Make sure that HTTP caching is disabled with \`Cache-Control: private, no-store\` for authenticated backend endpoints.
-    </Note>
+          ${isMaybeFrontend ? deindent`
+            \`\`\`ts src/stack/server.ts
+            import { StackServerApp } from "${packageName}";
+            import { stackClientApp } from "./client";
 
-    In most backend frameworks you can then access the user object by passing the request object as a \`tokenStore\` of the functions that access the user object:
+            export const stackServerApp = new StackServerApp({
+              inheritsFrom: stackClientApp,
+            });
+            \`\`\`
+          ` : ""}
 
-    \`\`\`ts
-    // NOTE: This is your backend's code
-    const user = await stackServerApp.getUser({ tokenStore: request });
-    return new Response("Hello, " + user.displayName);
-    \`\`\`
-
-    This will work as long as \`request\` is an object that follows the shape \`{ headers: Record<string, string | null> | { get: (name: string) => string | null } }\`.
-
-    If you cannot use \`getAuthorizationHeader()\`, for example because you are using a protocol other than HTTP, you can use \`getAuthJson()\` instead:
-
-    \`\`\`ts
-    // Frontend:
-    await rpcCall("my-rpc-endpoint", {
-      data: {
-        auth: await stackClientApp.getAuthJson(),
-      },
-    });
-
-    // Backend:
-    const user = await stackServerApp.getUser({ tokenStore: data.auth });
-    return new Response("Hello, " + user.displayName);
-    \`\`\`
+          ${isAiPrompt ? deindent`
+            Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a \`StackClientApp\` object.
+          ` : ""}
+        ` : ""}
+      </Step>
+
+      <Step title="Setting up the project">
+        It's now time to create a development setup for Stack Auth.
+
+        You can either run Stack Auth locally, or connect to a project hosted in the cloud.
+
+        ${isAiPrompt ? deindent`
+          If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.
+        ` : ""}
+
+        <AccordionGroup>
+          <Accordion title="Option 1: Running Stack Auth locally (recommended)" defaultOpen>
+            First, create a \`stack.config.ts\` configuration file in the root directory of the workspace (or anywhere else):
+
+            \`\`\`ts stack.config.ts
+            import type { StackConfig } from "${packageName}";
+
+            // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts
+            export const config: StackConfig = "show-onboarding";
+            \`\`\`
+
+            To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The \`emulator run\` CLI command does both of these, so you can simply wrap your existing \`dev\` script in your package.json:
+
+            \`\`\`json package.json
+            {
+              // ...
+              "scripts": {
+                // ...
+                "dev": "npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>"
+              }
+            }
+            \`\`\`
+          </Accordion>
+
+          <Accordion title="Option 2: Connecting a cloud project">
+            ${isAiPrompt ? deindent`
+              Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.
+            ` : ""}
+
+            If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.
+
+            This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).
+
+            #### Frontend
+
+            Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the \`/projects/\` part. Copy-paste it into your \`.env.local\` file (or wherever your environment variables are stored):
+
+            \`\`\`.env .env.local
+            STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+            \`\`\`
+
+            Alternatively, you can also just set the project ID in the \`stack/client.ts\` file:
+
+            \`\`\`ts src/stack/client.ts
+            export const stackClientApp = new StackClientApp({
+              // ...
+              projectId: "your-project-id",
+            });
+            \`\`\`
+
+
+            #### Backend (or both frontend and backend)
+
+            First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.
+
+            Then, copy-paste them into your \`.env.local\` file (or wherever your environment variables are stored):
+
+            \`\`\`.env .env.local
+            STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)
+            STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+            \`\`\`
+
+            They'll automatically be picked up by the \`StackServerApp\` constructor.
+          </Accordion>
+        </AccordionGroup>
+      </Step>
+
+      ${isMaybeReact ? deindent`
+        <Step title="${!isDefinitelyReact ? "React: " : ""}Creating a <StackProvider /> and <StackTheme />">
+          In React frameworks, Stack Auth provides \`StackProvider\` and \`StackTheme\` components that should wrap your entire app at the root level.
+
+          ${!isDefinitelyNextjs ? deindent`
+            For example, if you have an \`App.tsx\` file, update it as follows:
+
+            \`\`\`tsx src/App.tsx
+            import { StackProvider, StackTheme } from "${packageName}";
+            import { stackClientApp } from "@/stack/client";
+
+            export default function App() {
+              return (
+                <StackProvider app={stackClientApp}>
+                  <StackTheme>
+                    {/* your app content */}
+                  </StackTheme>
+                </StackProvider>
+              );
+            }
+            \`\`\`
+          ` : ""}
+
+          ${isMaybeNextjs ? deindent`
+            ${!isDefinitelyNextjs ? "For Next.js specifically: " : ""}You can do this in the \`layout.tsx\` file in the \`app\` directory:
+
+            \`\`\`tsx src/app/layout.tsx
+            import { Suspense } from "react";
+            import { StackProvider, StackTheme } from "${packageName}";
+            import { stackServerApp } from "@/stack/server";
+
+            export default function RootLayout({ children }: { children: React.ReactNode }) {
+              return (
+                <StackProvider app={stackServerApp}>
+                  <StackTheme>
+                    {children}
+                  </StackTheme>
+                </StackProvider>
+              );
+            }
+            \`\`\`
+          ` : ""}
+        </Step>
+
+        <Step title="${!isDefinitelyReact ? "React: " : ""}Add Suspense boundary">
+          Stack Auth also provides additional \`useXyz\` React hooks for \`getXyz\`/\`listXyz\` functions. For example, \`useUser\` is like \`getUser\`, but as a suspending React hook.
+
+          To support the suspension, you need to add a suspense boundary around your app.
+          
+          ${!isDefinitelyNextjs ? deindent`
+            The easiest way to do this is to just wrap your entire app in a \`Suspense\` component:
+
+            \`\`\`tsx src/app/layout.tsx
+            import { Suspense } from "react";
+            import { StackProvider, StackTheme } from "${packageName}";
+            import { stackServerApp } from "@/stack/server";
+
+            export default function RootLayout({ children }: { children: React.ReactNode }) {
+              return (
+                <Suspense fallback={<div>Loading...</div>}>
+                  <StackProvider app={stackServerApp}>
+                    <StackTheme>
+                      {children}
+                    </StackTheme>
+                  </StackProvider>
+                </Suspense>
+              );
+            }
+            \`\`\`
+          ` : ""}
+
+          ${isMaybeNextjs ? deindent`
+            In Next.js, this can be easily done by adding a \`loading.tsx\` file in the \`app\` directory:
+
+            \`\`\`tsx src/app/loading.tsx
+            export default function Loading() {
+              return <div>Loading...</div>;
+            }
+            \`\`\`
+          ` : ""}
+
+          ${isAiPrompt ? deindent`
+            Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says "Loading...".
+          ` : ""}
+        </Step>
+      ` : ""}
+
+      ${isMaybeBackend ? deindent`
+        <Step title="${!isDefinitelyBackend ? "Backend: " : ""}Update callers with header & get user">
+          You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
+
+          The most ergonomic way to do this is to pass the result of \`stackClientApp.getAuthorizationHeader()\` as the \`Authorization\` header into your backend endpoints:
+
+          \`\`\`ts
+          // NOTE: This is your frontend's code
+          const response = await fetch("/my-backend-endpoint", {
+            headers: {
+              "Authorization": await stackClientApp.getAuthorizationHeader(),
+            },
+          });
+          // ...
+          \`\`\`
+
+          In most backend frameworks you can then access the user object by passing the request object as a \`tokenStore\` of the functions that access the user object:
+
+          \`\`\`ts
+          // NOTE: This is your backend's code
+          const user = await stackServerApp.getUser({ tokenStore: request });
+          return new Response("Hello, " + user.displayName, { headers: { "Cache-Control": "private, no-store" } });
+          \`\`\`
+
+          This will work as long as \`request\` is an object that follows the shape \`{ headers: Record<string, string | null> | { get: (name: string) => string | null } }\`.
+
+          <Note>
+            Make sure that HTTP caching is disabled with \`Cache-Control: private, no-store\` for authenticated backend endpoints.
+          </Note>
+
+          If you cannot use \`getAuthorizationHeader()\`, for example because you are using a protocol other than HTTP, you can use \`getAuthJson()\` instead:
+
+          \`\`\`ts
+          // Frontend:
+          await rpcCall("my-rpc-endpoint", {
+            data: {
+              auth: await stackClientApp.getAuthJson(),
+            },
+          });
+
+          // Backend:
+          const user = await stackServerApp.getUser({ tokenStore: data.auth });
+          return new RpcResponse("Hello, " + user.displayName);
+          \`\`\`
+        </Step>
+      ` : ""}
+
+      <Step title="Done!" />
+    </Steps>
   `;
 }
diff --git a/scripts/generate-setup-prompt-docs.ts b/scripts/generate-setup-prompt-docs.ts
new file mode 100644
index 0000000000..972789d4d8
--- /dev/null
+++ b/scripts/generate-setup-prompt-docs.ts
@@ -0,0 +1,459 @@
+import path from "path";
+import { aiSetupPrompt, cliSetupPrompt, convexSetupPrompt, getSdkSetupPrompt, mcpSetupPrompt, supabaseSetupPrompt } from "../packages/stack-shared/src/ai/prompts";
+import { deindent } from "../packages/stack-shared/src/utils/strings";
+import { writeFileSyncIfChanged } from "./utils";
+
+const generatedComment = "This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead.";
+type SdkSetupToolCategory = "frontend" | "backend" | "database" | "other";
+type SdkSetupTool = {
+  label: string,
+  where: SdkSetupToolCategory[],
+  imageUrl: string,
+  monochromeLogo: boolean,
+  tabs: { label: string, mdContent: string }[],
+  extraFeatures: string[],
+};
+
+const repoRoot = path.resolve(__dirname, "..");
+const setupPromptText = aiSetupPrompt;
+
+const sdkSetupTools: Record<string, SdkSetupTool> = {
+  nextjs: {
+    label: "Next.js",
+    where: ["frontend", "backend"],
+    imageUrl: "/images/setup-tools/nextjs.svg",
+    monochromeLogo: true,
+    tabs: [{
+      label: "Next.js",
+      mdContent: getSdkSetupPrompt("nextjs"),
+    }],
+    extraFeatures: [],
+  },
+  react: {
+    label: "React",
+    where: ["frontend"],
+    imageUrl: "/images/setup-tools/react.svg",
+    monochromeLogo: false,
+    tabs: [{
+      label: "React",
+      mdContent: getSdkSetupPrompt("react"),
+    }],
+    extraFeatures: [],
+  },
+  js: {
+    label: "Other JS/TS",
+    where: ["frontend"],
+    imageUrl: "/images/setup-tools/javascript.svg",
+    monochromeLogo: false,
+    tabs: [{
+      label: "JS/TS",
+      mdContent: getSdkSetupPrompt("js"),
+    }],
+    extraFeatures: [],
+  },
+  "tanstack-start": {
+    label: "Tanstack Start",
+    where: ["frontend"],
+    imageUrl: "/images/setup-tools/tanstack.svg",
+    monochromeLogo: true,
+    tabs: [{
+      label: "Tanstack Start",
+      mdContent: getSdkSetupPrompt("tanstack-start"),
+    }],
+    extraFeatures: ["tanstack-query"],
+  },
+  "tanstack-query": {
+    label: "Tanstack Query",
+    where: ["frontend"],
+    imageUrl: "/images/setup-tools/tanstack.svg",
+    monochromeLogo: true,
+    tabs: [],
+    extraFeatures: ["tanstack-query"],
+  },
+  nodejs: {
+    label: "Node.js",
+    where: ["backend"],
+    imageUrl: "/images/setup-tools/nodejs.svg",
+    monochromeLogo: false,
+    tabs: [{
+      label: "Node.js",
+      mdContent: getSdkSetupPrompt("nodejs"),
+    }],
+    extraFeatures: [],
+  },
+  bun: {
+    label: "Bun",
+    where: ["backend"],
+    imageUrl: "/images/setup-tools/bun.svg",
+    monochromeLogo: false,
+    tabs: [{
+      label: "Bun",
+      mdContent: getSdkSetupPrompt("bun"),
+    }],
+    extraFeatures: [],
+  },
+  convex: {
+    label: "Convex",
+    where: ["backend", "database"],
+    imageUrl: "/images/setup-tools/convex.svg",
+    monochromeLogo: false,
+    tabs: [{
+      label: "Convex",
+      mdContent: convexSetupPrompt,
+    }],
+    extraFeatures: [],
+  },
+  supabase: {
+    label: "Supabase",
+    where: ["database"],
+    imageUrl: "/images/setup-tools/supabase.svg",
+    monochromeLogo: false,
+    tabs: [{
+      label: "Supabase",
+      mdContent: supabaseSetupPrompt,
+    }],
+    extraFeatures: [],
+  },
+  cli: {
+    label: "CLI",
+    where: ["other"],
+    imageUrl: "/images/setup-tools/cli.svg",
+    monochromeLogo: true,
+    tabs: [{
+      label: "CLI",
+      mdContent: cliSetupPrompt,
+    }],
+    extraFeatures: [],
+  },
+  mcp: {
+    label: "MCP",
+    where: ["other"],
+    imageUrl: "/images/setup-tools/mcp.svg",
+    monochromeLogo: true,
+    tabs: [{
+      label: "MCP",
+      mdContent: mcpSetupPrompt,
+    }],
+    extraFeatures: [],
+  },
+};
+
+function slugify(value: string) {
+  return value.toLowerCase().replace(/[^a-z0-9]+/g, "-").replace(/^-|-$/g, "");
+}
+
+const categoryLabels = new Map<SdkSetupToolCategory, string>([
+  ["frontend", "Frontend"],
+  ["backend", "Backend"],
+  ["database", "Database"],
+  ["other", "Other"],
+]);
+
+const setupToolIds = Object.keys(sdkSetupTools);
+const setupTabs = Object.entries(sdkSetupTools).flatMap(([toolId, tool]) => {
+  return tool.tabs.map((tab, tabIndex) => ({
+    id: `${toolId}-${slugify(tab.label)}-${tabIndex}`,
+    toolLabel: tool.label,
+    toolId,
+    tabLabel: tab.label,
+    mdContent: tab.mdContent,
+  }));
+});
+const setupTabMetadata = setupTabs.map((tab) => ({
+  toolId: tab.toolId,
+  title: tab.tabLabel,
+}));
+const unifiedAiPromptTabTitle = "Unified AI Prompt";
+
+function renderToolCards(category: SdkSetupToolCategory) {
+  const tools = Object.entries(sdkSetupTools).filter(([, tool]) => tool.where.includes(category));
+  return tools.map(([toolId, tool]) => {
+    const hasTabs = tool.tabs.length > 0;
+    const iconMarkup = tool.monochromeLogo
+      ? deindent`
+          <span
+            aria-hidden="true"
+            className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
+            style={{
+              WebkitMask: "url(${tool.imageUrl}) center / contain no-repeat",
+              mask: "url(${tool.imageUrl}) center / contain no-repeat",
+            }}
+          />
+        `
+      : deindent`
+          <img
+            src="${tool.imageUrl}"
+            alt=""
+            aria-hidden="true"
+            className="h-8 w-8 object-contain opacity-90 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-100"
+          />
+        `;
+    return deindent`
+      <button
+        type="button"
+        aria-pressed="false"
+        data-setup-tool-card="true"
+        data-tool-id="${toolId}"
+        data-tool-label="${tool.label}"
+        data-tool-has-tabs="${hasTabs ? "true" : "false"}"
+        data-tool-extra-features="${tool.extraFeatures.join(",")}"
+        onClick={onSetupToolClick}
+        className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
+        title="${tool.label}"
+      >
+        <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
+          ${iconMarkup}
+          <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
+        </div>
+        <span
+          className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
+          title="${tool.label}"
+        >
+          ${tool.label}
+        </span>
+      </button>
+    `;
+  }).join("\n");
+}
+
+function renderToolCategory(category: SdkSetupToolCategory) {
+  return deindent`
+    <section className="grid gap-3 sm:grid-cols-[6rem_1fr] sm:items-start">
+      <h3 className="pt-1 text-sm font-semibold text-[#2e446f] dark:text-[#d8e7ff]">${categoryLabels.get(category)}</h3>
+      <div className="grid grid-cols-3 gap-x-2 gap-y-3 sm:grid-cols-4 sm:gap-x-3 sm:gap-y-3 lg:grid-cols-6">
+        ${renderToolCards(category)}
+      </div>
+    </section>
+  `;
+}
+
+function renderMarkdownInTabPanel(mdContent: string) {
+  return mdContent.replace(/<Note>\n([\s\S]*?)\n\s*<\/Note>/g, (_match, noteContent: string) => {
+    const blockquoteContent = deindent(noteContent)
+      .split("\n")
+      .map((line) => line.length === 0 ? ">" : `> ${line}`)
+      .join("\n");
+    return blockquoteContent;
+  });
+}
+
+function renderTabPanels() {
+  return setupTabs.map((tab) => deindent`
+    <Tab title="${tab.tabLabel}">
+      <div className="not-prose mb-1 flex justify-end">
+        <button
+          type="button"
+          onClick={copyGeneratedSetupPrompt}
+          className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+        >
+          Copy prompt
+        </button>
+      </div>
+
+      ${renderMarkdownInTabPanel(tab.mdContent)}
+    </Tab>
+  `).join("\n\n");
+}
+
+function renderUnifiedAiPromptTab() {
+  return deindent`
+    <Tab title="${unifiedAiPromptTabTitle}">
+      Setting up with AI? Use this single prompt in your coding agent to set up Stack Auth for your selected stack.
+
+      <div className="not-prose relative mt-3">
+        <pre className="max-h-40 overflow-auto whitespace-pre-wrap rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"><code>{generatedSetupPromptText}</code></pre>
+        <button
+          type="button"
+          onClick={copyGeneratedSetupPrompt}
+          className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
+        >
+          Copy prompt
+        </button>
+      </div>
+    </Tab>
+  `;
+}
+
+writeFileSyncIfChanged(
+  path.join(repoRoot, "docs-mintlify/snippets/home-prompt-island.jsx"),
+  deindent`
+    // ${generatedComment}
+
+    export const generatedSetupPromptText = ${JSON.stringify(setupPromptText)};
+    export const setupToolIds = ${JSON.stringify(setupToolIds)};
+    export const setupTabMetadata = ${JSON.stringify(setupTabMetadata)};
+    export const unifiedAiPromptTabTitle = ${JSON.stringify(unifiedAiPromptTabTitle)};
+
+    export const GeneratedSetupPromptText = ({ className }) => (
+      <textarea
+        readOnly
+        value={generatedSetupPromptText}
+        className={className}
+      />
+    );
+  ` + "\n",
+);
+
+writeFileSyncIfChanged(
+  path.join(repoRoot, "docs-mintlify/guides/getting-started/setup.mdx"),
+  deindent`
+    ---
+    title: Setup
+    description: Install and configure Stack Auth for your project
+    sidebarTitle: Setup
+    ---
+
+    {/* ${generatedComment} */}
+
+    export const generatedSetupPromptText = ${JSON.stringify(setupPromptText)};
+    export const setupToolIds = ${JSON.stringify(setupToolIds)};
+    export const setupTabMetadata = ${JSON.stringify(setupTabMetadata)};
+    export const unifiedAiPromptTabTitle = ${JSON.stringify(unifiedAiPromptTabTitle)};
+
+    export const copyGeneratedSetupPrompt = async (event) => {
+      const button = event.currentTarget;
+      await navigator.clipboard.writeText(generatedSetupPromptText);
+      button.textContent = "Copied";
+      window.setTimeout(() => {
+        button.textContent = "Copy prompt";
+      }, 1300);
+    };
+
+    export const getSelectedSetupToolIdsFromUrl = () => {
+      if (typeof window === "undefined") {
+        return [];
+      }
+      const selectedToolIds = new Set(setupToolIds);
+      return (new URLSearchParams(window.location.search).get("tools") ?? "")
+        .split(",")
+        .map((toolId) => toolId.trim())
+        .filter((toolId) => selectedToolIds.has(toolId));
+    };
+
+    export const writeSelectedSetupToolIdsToUrl = (selectedToolIds) => {
+      if (typeof window === "undefined") {
+        return;
+      }
+      const url = new URL(window.location.href);
+      const orderedSelectedToolIds = setupToolIds.filter((toolId) => selectedToolIds.has(toolId));
+      if (orderedSelectedToolIds.length === 0) {
+        url.searchParams.delete("tools");
+      } else {
+        url.searchParams.set("tools", orderedSelectedToolIds.join(","));
+      }
+      window.history.replaceState(null, "", url.pathname + url.search + url.hash);
+    };
+
+    export const updateSetupBuilder = (root, syncUrl = true) => {
+      const selectedToolIds = new Set(
+        Array.from(root.querySelectorAll("[data-setup-tool-card='true'][aria-pressed='true']"))
+          .map((card) => card.getAttribute("data-tool-id"))
+          .filter((toolId) => toolId != null)
+      );
+      if (syncUrl) {
+        writeSelectedSetupToolIdsToUrl(selectedToolIds);
+      }
+      const visibleTabTitles = new Set(setupTabMetadata
+        .filter((tab) => selectedToolIds.has(tab.toolId))
+        .map((tab) => tab.title)
+      );
+      if (visibleTabTitles.size > 0) {
+        visibleTabTitles.add(unifiedAiPromptTabTitle);
+      }
+      const tabsRoot = root.querySelector("[data-setup-tabs-root='true']");
+
+      const emptyState = root.querySelector("[data-setup-tabs-empty='true']");
+      if (emptyState != null) {
+        emptyState.hidden = visibleTabTitles.size > 0;
+        emptyState.style.display = visibleTabTitles.size > 0 ? "none" : "";
+      }
+      if (tabsRoot == null) {
+        return;
+      }
+
+      tabsRoot.hidden = visibleTabTitles.size === 0;
+      tabsRoot.style.display = visibleTabTitles.size === 0 ? "none" : "";
+      const tabButtons = Array.from(tabsRoot.querySelectorAll("[role='tab']"));
+      let firstVisibleTabButton = null;
+      let selectedVisibleTabButton = null;
+      for (const tabButton of tabButtons) {
+        const title = tabButton.textContent?.trim() ?? "";
+        const shouldShow = visibleTabTitles.has(title);
+        tabButton.hidden = !shouldShow;
+        tabButton.style.display = shouldShow ? "" : "none";
+        if (shouldShow && firstVisibleTabButton == null) {
+          firstVisibleTabButton = tabButton;
+        }
+        if (shouldShow && tabButton.getAttribute("aria-selected") === "true") {
+          selectedVisibleTabButton = tabButton;
+        }
+      }
+      if (visibleTabTitles.size > 0 && selectedVisibleTabButton == null) {
+        firstVisibleTabButton?.click();
+      }
+    };
+
+    export const initializeSetupBuilder = (node) => {
+      if (node == null || node.dataset.setupBuilderInitialized === "true") {
+        return;
+      }
+      node.dataset.setupBuilderInitialized = "true";
+      const selectedToolIds = new Set(getSelectedSetupToolIdsFromUrl());
+      for (const toolCard of node.querySelectorAll("[data-setup-tool-card='true']")) {
+        toolCard.setAttribute("aria-pressed", selectedToolIds.has(toolCard.getAttribute("data-tool-id")) ? "true" : "false");
+      }
+      updateSetupBuilder(node, false);
+    };
+
+    export const onSetupToolClick = (event) => {
+      const button = event.currentTarget;
+      const root = button.closest("[data-setup-builder='true']");
+      if (root == null) {
+        return;
+      }
+      button.setAttribute("aria-pressed", button.getAttribute("aria-pressed") === "true" ? "false" : "true");
+      updateSetupBuilder(root);
+    };
+
+    <Note>
+      <p className="font-semibold">Setting up with AI? Use this single prompt:</p>
+      <div className="not-prose relative mt-3">
+        <pre className="max-h-40 overflow-auto whitespace-pre-wrap rounded-2xl border border-[#cdd7f4] bg-white/75 px-4 py-3 pr-32 font-mono text-xs leading-6 text-zinc-700 backdrop-blur-sm sm:text-sm dark:border-[#33476d] dark:bg-black/20 dark:text-zinc-200"><code>{generatedSetupPromptText}</code></pre>
+        <button
+          type="button"
+          onClick={copyGeneratedSetupPrompt}
+          className="absolute right-2 top-2 inline-flex items-center justify-center rounded-lg border border-[#9fb5e4] bg-[#eaf1ff] px-3 py-1.5 text-xs font-semibold text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 focus-visible:ring-offset-[#f3f6ff] dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51] dark:focus-visible:ring-offset-[#0f1a2e]"
+        >
+          Copy prompt
+        </button>
+      </div>
+    </Note>
+
+    <div ref={initializeSetupBuilder} data-setup-builder="true" className="mt-10">
+      <div>
+        <h2 className="text-3xl font-bold tracking-tight text-slate-900 dark:text-white">Choose your tech stack</h2>
+        <p className="mt-2 text-sm font-medium text-slate-500 dark:text-slate-400">Choose all that apply.</p>
+      </div>
+
+      <div className="not-prose mt-5 space-y-4 rounded-2xl border border-[#d6e4ff] bg-gradient-to-b from-[#f7faff] to-[#eaf2ff] p-3 shadow-[inset_0_1px_0_rgba(255,255,255,0.9),0_10px_30px_-24px_rgba(47,79,140,0.35)] dark:border-[#1f2d45] dark:from-[#11203a] dark:to-[#070f1f] dark:shadow-[inset_0_1px_0_rgba(112,152,224,0.18),0_16px_34px_-24px_rgba(2,8,20,0.85)] sm:p-4">
+        ${renderToolCategory("frontend")}
+        ${renderToolCategory("backend")}
+        ${renderToolCategory("database")}
+        ${renderToolCategory("other")}
+      </div>
+
+      <div className="mt-8">
+        <p data-setup-tabs-empty="true" className="not-prose rounded-2xl border border-[#c5d7f6] bg-white/65 p-5 text-sm text-[#4a5f89] dark:border-[#2c4c7d] dark:bg-[#0c1627]/45 dark:text-[#8fa4cc]">
+          Select a tool to show setup instructions.
+        </p>
+        <div data-setup-tabs-root="true" hidden style={{ display: "none" }}>
+          <Tabs>
+            ${renderUnifiedAiPromptTab()}
+
+            ${renderTabPanels()}
+          </Tabs>
+        </div>
+      </div>
+    </div>
+  ` + "\n",
+);

From 3f44cf67f32d99f6cdee080f3c4bef2c27a09e1d Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Tue, 5 May 2026 21:08:21 -0700
Subject: [PATCH 07/13] Fix comment

---
 packages/stack-shared/src/ai/prompts.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/packages/stack-shared/src/ai/prompts.ts b/packages/stack-shared/src/ai/prompts.ts
index f5d9bb5420..563c578dcb 100644
--- a/packages/stack-shared/src/ai/prompts.ts
+++ b/packages/stack-shared/src/ai/prompts.ts
@@ -85,9 +85,9 @@ export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "
   const isMaybeNextjs = isDefinitelyNextjs || mainType === "ai-prompt";
 
   const isDefinitelyBackend = mainType === "nodejs" || mainType === "bun" || mainType === "nextjs";
-  const isMaybeBackend = isDefinitelyBackend || mainType === "js";
+  const isMaybeBackend = isDefinitelyBackend || mainType === "js" || mainType === "ai-prompt";
   const isDefinitelyFrontend = isDefinitelyReact;
-  const isMaybeFrontend = isDefinitelyFrontend || mainType === "js";
+  const isMaybeFrontend = isDefinitelyFrontend || mainType === "js" || mainType === "ai-prompt";
 
   const isAiPrompt = mainType === "ai-prompt";
 

From ea18fc8c2ca9187f124e0180ab89bf12fbd0cc1f Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Wed, 6 May 2026 09:34:55 -0700
Subject: [PATCH 08/13] PR review comments

---
 .../internal/local-emulator/project/route.tsx | 10 ++--
 apps/backend/src/lib/local-emulator.ts        |  8 ++-
 .../project-onboarding-wizard.test.tsx        | 13 +++++
 .../new-project/page-client-parts/shared.ts   |  5 +-
 .../projects/page-client.tsx                  |  2 +-
 apps/e2e/tests/js/auth-like.test.ts           | 23 ++++----
 .../guides/getting-started/setup.mdx          | 54 +++++++++++--------
 docs-mintlify/index.mdx                       |  8 ++-
 docs-mintlify/sdk/types/user.mdx              |  5 +-
 docs-mintlify/snippets/home-prompt-island.jsx |  3 +-
 docs/content/docs/sdk/types/user.mdx          | 49 +++++++++++++++++
 packages/stack-cli/src/commands/emulator.ts   | 16 +++---
 packages/stack-shared/src/ai/prompts.ts       | 17 +++---
 .../apps/implementations/client-app-impl.ts   |  4 +-
 scripts/generate-setup-prompt-docs.ts         |  9 +++-
 15 files changed, 160 insertions(+), 66 deletions(-)

diff --git a/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx b/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx
index 543db2002c..fd6ccf5149 100644
--- a/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx
+++ b/apps/backend/src/app/api/latest/internal/local-emulator/project/route.tsx
@@ -306,19 +306,19 @@ export const POST = createSmartRouteHandler({
       throw new StatusError(StatusError.BadRequest, `Config file not found: ${absoluteFilePath}`);
     }
 
-    // If the file is empty, write the onboarding sentinel config.
     const fileContent = await fs.readFile(resolvedFilePath, "utf-8");
-    if (fileContent.trim() === "") {
-      await writeShowOnboardingConfigToFile(absoluteFilePath);
-    }
+    const shouldWriteShowOnboardingConfig = fileContent.trim() === "";
 
     await assertLocalEmulatorOwnerTeamReadiness();
 
     const { projectId } = await getOrCreateLocalEmulatorProjectId(absoluteFilePath);
-    const showOnboarding = await isLocalEmulatorOnboardingEnabledInConfig(absoluteFilePath);
+    const showOnboarding = shouldWriteShowOnboardingConfig || await isLocalEmulatorOnboardingEnabledInConfig(absoluteFilePath);
     const onboardingStatus = await syncLocalEmulatorOnboardingStatus(projectId, showOnboarding);
     const credentials = await getOrCreateCredentials(projectId);
     const fileConfig = await readConfigFromFile(absoluteFilePath);
+    if (shouldWriteShowOnboardingConfig) {
+      await writeShowOnboardingConfigToFile(absoluteFilePath);
+    }
 
     return {
       statusCode: 200 as const,
diff --git a/apps/backend/src/lib/local-emulator.ts b/apps/backend/src/lib/local-emulator.ts
index 098ecc07e5..841045afa0 100644
--- a/apps/backend/src/lib/local-emulator.ts
+++ b/apps/backend/src/lib/local-emulator.ts
@@ -82,7 +82,13 @@ async function readConfigValueFromFile(filePath: string): Promise<LocalEmulatorC
 
   const evalFilename = /\.[cm]?tsx?$/.test(filePath) ? filePath : `${filePath}.ts`;
   const jiti = createJiti(import.meta.url, { cache: false });
-  const mod = jiti.evalModule(content, { filename: evalFilename }) as Record<string, unknown>;
+  let mod: Record<string, unknown>;
+  try {
+    mod = jiti.evalModule(content, { filename: evalFilename }) as Record<string, unknown>;
+  } catch (e) {
+    const message = e instanceof Error ? e.message : String(e);
+    throw new StatusError(StatusError.BadRequest, `Error evaluating config in ${filePath}: ${message}`);
+  }
   const config = mod.config;
   if (config === LOCAL_EMULATOR_SHOW_ONBOARDING_VALUE) {
     return config;
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx
index da1ea3d167..ddccb656d6 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/project-onboarding-wizard.test.tsx
@@ -137,12 +137,25 @@ vi.mock("./link-existing-onboarding", () => ({
 }));
 
 import { ProjectOnboardingWizard } from "./project-onboarding-wizard";
+import { normalizeProjectOnboardingState, REQUIRED_APP_IDS } from "./shared";
 
 afterEach(() => {
   cleanup();
 });
 
 describe("ProjectOnboardingWizard", () => {
+  it("keeps required apps when normalizing persisted onboarding state", () => {
+    const normalizedState = normalizeProjectOnboardingState({
+      selected_config_choice: "create-new",
+      selected_apps: [],
+      selected_sign_in_methods: [],
+      selected_email_theme_id: null,
+      selected_payments_country: "US",
+    });
+
+    expect(normalizedState.selected_apps).toEqual(REQUIRED_APP_IDS);
+  });
+
   it("completes onboarding automatically after Stripe setup returns successfully", async () => {
     const setStatus = vi.fn(async () => {});
     const onComplete = vi.fn();
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts
index 0920188f52..5fd2c8de9b 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/new-project/page-client-parts/shared.ts
@@ -81,7 +81,10 @@ export function normalizeProjectOnboardingState(
   value: ProjectOnboardingState,
   options?: { localEmulator: boolean },
 ): ProjectOnboardingState {
-  const selectedApps = ALL_APP_IDS.filter((appId) => value.selected_apps.some((selectedAppId) => selectedAppId === appId));
+  const selectedApps = ALL_APP_IDS.filter((appId) => (
+    value.selected_apps.some((selectedAppId) => selectedAppId === appId)
+    || REQUIRED_APP_IDS.some((requiredAppId) => requiredAppId === appId)
+  ));
   const selectedSignInMethods = SIGN_IN_METHODS
     .map((method) => method.id)
     .filter((methodId) => value.selected_sign_in_methods.some((selectedMethodId) => selectedMethodId === methodId));
diff --git a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx
index b8e1c3662b..66d36f8e2e 100644
--- a/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx
+++ b/apps/dashboard/src/app/(main)/(protected)/(outside-dashboard)/projects/page-client.tsx
@@ -213,7 +213,7 @@ export default function PageClient() {
       }
       const onboardingStatus = "onboarding_status" in responseBody
         ? responseBody.onboarding_status
-        : "completed";
+        : undefined;
       if (!isProjectOnboardingStatus(onboardingStatus)) {
         throw new Error("Local emulator endpoint returned an invalid onboarding status.");
       }
diff --git a/apps/e2e/tests/js/auth-like.test.ts b/apps/e2e/tests/js/auth-like.test.ts
index ce6cd5f45d..f88756b612 100644
--- a/apps/e2e/tests/js/auth-like.test.ts
+++ b/apps/e2e/tests/js/auth-like.test.ts
@@ -274,16 +274,17 @@ it("getAuthorizationHeader should return a Bearer token that works for authentic
   await signIn(clientApp);
 
   const authorizationHeader = await clientApp.getAuthorizationHeader();
-  expect(authorizationHeader).toBeDefined();
-  expect(authorizationHeader).not.toBeNull();
+  if (authorizationHeader == null) {
+    throw new Error("Expected authorization header for signed-in user.");
+  }
   expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
-  const parsedAuthorizationHeader = parseAuthorizationHeaderValue(authorizationHeader!);
+  const parsedAuthorizationHeader = parseAuthorizationHeaderValue(authorizationHeader);
   const authJson = await clientApp.getAuthJson();
   expect(parsedAuthorizationHeader).toEqual(authJson);
 
   const requestLike = {
     headers: new Headers({
-      authorization: authorizationHeader!,
+      authorization: authorizationHeader,
     }),
   };
   const serverUser = await serverApp.getUser({ tokenStore: requestLike });
@@ -368,10 +369,11 @@ it("clientApp.getAuthorizationHeader should return Bearer header value", async (
   await signIn(clientApp);
 
   const authorizationHeader = await clientApp.getAuthorizationHeader();
-  expect(authorizationHeader).toBeDefined();
-  expect(authorizationHeader).not.toBeNull();
+  if (authorizationHeader == null) {
+    throw new Error("Expected authorization header for signed-in user.");
+  }
   expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
-  expect(parseAuthorizationHeaderValue(authorizationHeader!)).toEqual(await clientApp.getAuthJson());
+  expect(parseAuthorizationHeaderValue(authorizationHeader)).toEqual(await clientApp.getAuthJson());
 });
 
 it("clientApp.getAuthorizationHeader should return null when not signed in", async ({ expect }) => {
@@ -386,10 +388,11 @@ it("clientApp.getAuthorizationHeader should work with tokenStore option", async
   await signIn(clientApp);
 
   const authorizationHeader = await clientApp.getAuthorizationHeader({ tokenStore: "memory" });
-  expect(authorizationHeader).toBeDefined();
-  expect(authorizationHeader).not.toBeNull();
+  if (authorizationHeader == null) {
+    throw new Error("Expected authorization header for signed-in user.");
+  }
   expect(authorizationHeader).toMatch(/^Bearer\s+stackauth_.+/);
-  expect(parseAuthorizationHeaderValue(authorizationHeader!)).toEqual(await clientApp.getAuthJson({ tokenStore: "memory" }));
+  expect(parseAuthorizationHeaderValue(authorizationHeader)).toEqual(await clientApp.getAuthJson({ tokenStore: "memory" }));
 });
 
 it("clientApp.getAuthHeaders should return x-stack-auth header", async ({ expect }) => {
diff --git a/docs-mintlify/guides/getting-started/setup.mdx b/docs-mintlify/guides/getting-started/setup.mdx
index e305940d62..806c916c67 100644
--- a/docs-mintlify/guides/getting-started/setup.mdx
+++ b/docs-mintlify/guides/getting-started/setup.mdx
@@ -6,15 +6,19 @@ sidebarTitle: Setup
 
 {/* This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead. */}
 
-export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    \n\n    \n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"@/stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackServerApp}>\n            <StackTheme>\n              {children}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  \n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
+export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:\n    \n    ```ts src/stack/client.ts\n    import { StackClientApp } from \"<the-sdk-from-above>\";\n    \n    export const stackClientApp = new StackClientApp({\n      tokenStore: \"cookie\", // \"nextjs-cookie\" for Next.js, \"cookie\" for other web frontends, null for backend environments\n    });\n    ```\n\n    In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    \n    export const stackServerApp = new StackServerApp({\n      tokenStore: null,\n    });\n    ```\n    \n    In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./client\";\n    \n    export const stackServerApp = new StackServerApp({\n      inheritsFrom: stackClientApp,\n    });\n    ```\n    \n    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a `StackClientApp` object.\n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/App.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackClientApp}>\n            <StackTheme>\n              {/* your app content */}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  <Step title=\"Backend: Update callers with header & get user\">\n    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.\n  \n    The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:\n  \n    ```ts\n    // NOTE: This is your frontend's code\n    const authorizationHeader = await stackClientApp.getAuthorizationHeader();\n    const response = await fetch(\"/my-backend-endpoint\", {\n      headers: {\n        ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),\n      },\n    });\n    // ...\n    ```\n  \n    In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:\n  \n    ```ts\n    // NOTE: This is your backend's code\n    const user = await stackServerApp.getUser({ tokenStore: request });\n    return new Response(\"Hello, \" + user.displayName, { headers: { \"Cache-Control\": \"private, no-store\" } });\n    ```\n  \n    This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.\n  \n    <Note>\n      Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.\n    </Note>\n  \n    If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:\n  \n    ```ts\n    // Frontend:\n    await rpcCall(\"my-rpc-endpoint\", {\n      data: {\n        auth: await stackClientApp.getAuthJson(),\n      },\n    });\n  \n    // Backend:\n    const user = await stackServerApp.getUser({ tokenStore: data.auth });\n    return new RpcResponse(\"Hello, \" + user.displayName);\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
 export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli","mcp"];
 export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"},{"toolId":"mcp","title":"MCP"}];
 export const unifiedAiPromptTabTitle = "Unified AI Prompt";
 
 export const copyGeneratedSetupPrompt = async (event) => {
   const button = event.currentTarget;
-  await navigator.clipboard.writeText(generatedSetupPromptText);
-  button.textContent = "Copied";
+  try {
+    await navigator.clipboard.writeText(generatedSetupPromptText);
+    button.textContent = "Copied";
+  } catch {
+    button.textContent = "Copy failed";
+  }
   window.setTimeout(() => {
     button.textContent = "Copy prompt";
   }, 1300);
@@ -735,13 +739,14 @@ export const onSetupToolClick = (event) => {
             <Step title="Update callers with header & get user">
               You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
             
-              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:
             
               ```ts
               // NOTE: This is your frontend's code
+              const authorizationHeader = await stackClientApp.getAuthorizationHeader();
               const response = await fetch("/my-backend-endpoint", {
                 headers: {
-                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                  ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
                 },
               });
               // ...
@@ -905,7 +910,7 @@ export const onSetupToolClick = (event) => {
               
               ```tsx src/App.tsx
               import { StackProvider, StackTheme } from "@stackframe/react";
-              import { stackClientApp } from "@/stack/client";
+              import { stackClientApp } from "./stack/client";
               
               export default function App() {
                 return (
@@ -928,17 +933,17 @@ export const onSetupToolClick = (event) => {
               
               The easiest way to do this is to just wrap your entire app in a `Suspense` component:
               
-              ```tsx src/app/layout.tsx
+              ```tsx src/App.tsx
               import { Suspense } from "react";
               import { StackProvider, StackTheme } from "@stackframe/react";
-              import { stackServerApp } from "@/stack/server";
+              import { stackClientApp } from "./stack/client";
               
-              export default function RootLayout({ children }: { children: React.ReactNode }) {
+              export default function App() {
                 return (
                   <Suspense fallback={<div>Loading...</div>}>
-                    <StackProvider app={stackServerApp}>
+                    <StackProvider app={stackClientApp}>
                       <StackTheme>
-                        {children}
+                        {/* your app content */}
                       </StackTheme>
                     </StackProvider>
                   </Suspense>
@@ -1102,13 +1107,14 @@ export const onSetupToolClick = (event) => {
             <Step title="Backend: Update callers with header & get user">
               You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
             
-              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:
             
               ```ts
               // NOTE: This is your frontend's code
+              const authorizationHeader = await stackClientApp.getAuthorizationHeader();
               const response = await fetch("/my-backend-endpoint", {
                 headers: {
-                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                  ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
                 },
               });
               // ...
@@ -1272,7 +1278,7 @@ export const onSetupToolClick = (event) => {
               
               ```tsx src/App.tsx
               import { StackProvider, StackTheme } from "@stackframe/react";
-              import { stackClientApp } from "@/stack/client";
+              import { stackClientApp } from "./stack/client";
               
               export default function App() {
                 return (
@@ -1295,17 +1301,17 @@ export const onSetupToolClick = (event) => {
               
               The easiest way to do this is to just wrap your entire app in a `Suspense` component:
               
-              ```tsx src/app/layout.tsx
+              ```tsx src/App.tsx
               import { Suspense } from "react";
               import { StackProvider, StackTheme } from "@stackframe/react";
-              import { stackServerApp } from "@/stack/server";
+              import { stackClientApp } from "./stack/client";
               
-              export default function RootLayout({ children }: { children: React.ReactNode }) {
+              export default function App() {
                 return (
                   <Suspense fallback={<div>Loading...</div>}>
-                    <StackProvider app={stackServerApp}>
+                    <StackProvider app={stackClientApp}>
                       <StackTheme>
-                        {children}
+                        {/* your app content */}
                       </StackTheme>
                     </StackProvider>
                   </Suspense>
@@ -1454,13 +1460,14 @@ export const onSetupToolClick = (event) => {
             <Step title="Update callers with header & get user">
               You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
             
-              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:
             
               ```ts
               // NOTE: This is your frontend's code
+              const authorizationHeader = await stackClientApp.getAuthorizationHeader();
               const response = await fetch("/my-backend-endpoint", {
                 headers: {
-                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                  ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
                 },
               });
               // ...
@@ -1628,13 +1635,14 @@ export const onSetupToolClick = (event) => {
             <Step title="Update callers with header & get user">
               You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
             
-              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints:
+              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:
             
               ```ts
               // NOTE: This is your frontend's code
+              const authorizationHeader = await stackClientApp.getAuthorizationHeader();
               const response = await fetch("/my-backend-endpoint", {
                 headers: {
-                  "Authorization": await stackClientApp.getAuthorizationHeader(),
+                  ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
                 },
               });
               // ...
diff --git a/docs-mintlify/index.mdx b/docs-mintlify/index.mdx
index b1dff3fc3c..4ca9f2653d 100644
--- a/docs-mintlify/index.mdx
+++ b/docs-mintlify/index.mdx
@@ -17,8 +17,12 @@ export const ChipLink = ({ href, children }) => (
 
 export const copyGeneratedSetupPrompt = async (event) => {
   const button = event.currentTarget;
-  await navigator.clipboard.writeText(generatedSetupPromptText);
-  button.textContent = "Copied";
+  try {
+    await navigator.clipboard.writeText(generatedSetupPromptText);
+    button.textContent = "Copied";
+  } catch {
+    button.textContent = "Copy failed";
+  }
   window.setTimeout(() => {
     button.textContent = "Copy prompt";
   }, 1300);
diff --git a/docs-mintlify/sdk/types/user.mdx b/docs-mintlify/sdk/types/user.mdx
index 3388ea7cc1..774076befc 100644
--- a/docs-mintlify/sdk/types/user.mdx
+++ b/docs-mintlify/sdk/types/user.mdx
@@ -672,9 +672,8 @@ Use `useUser()` to get `CurrentUser` (client). Use `stackServerApp.getUser()` to
 <CurrentUserSection type="currentUser" property="getAuthorizationHeader" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
-      Returns the HTTP `Authorization` header value in `Bearer stackauth_&lt;base64(getAuthJson())&gt;` format for authenticated requests.
+      Returns the HTTP `Authorization` header value in `Bearer stackauth_...` format for authenticated requests.
       Returns `null` if the user is not signed in.
-      If you are not using HTTP, use `getAuthJson()` instead.
 
       <MethodReturns type="Promise<string | null>" />
     </MethodContent>
@@ -693,7 +692,7 @@ Use `useUser()` to get `CurrentUser` (client). Use `stackServerApp.getUser()` to
 <CurrentUserSection type="currentUser" property="useAuthorizationHeader" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
-      React hook that returns the HTTP `Authorization` header value in `Bearer stackauth_&lt;base64(getAuthJson())&gt;` format.
+      React hook that returns the HTTP `Authorization` header value in `Bearer stackauth_...` format.
       Returns `null` if the user is not signed in.
 
       <MethodReturns type='string | null' />
diff --git a/docs-mintlify/snippets/home-prompt-island.jsx b/docs-mintlify/snippets/home-prompt-island.jsx
index 8adc50087b..c51832abb9 100644
--- a/docs-mintlify/snippets/home-prompt-island.jsx
+++ b/docs-mintlify/snippets/home-prompt-island.jsx
@@ -1,6 +1,6 @@
 // This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead.
 
-export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    \n\n    \n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"@/stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackServerApp}>\n            <StackTheme>\n              {children}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  \n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
+export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:\n    \n    ```ts src/stack/client.ts\n    import { StackClientApp } from \"<the-sdk-from-above>\";\n    \n    export const stackClientApp = new StackClientApp({\n      tokenStore: \"cookie\", // \"nextjs-cookie\" for Next.js, \"cookie\" for other web frontends, null for backend environments\n    });\n    ```\n\n    In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    \n    export const stackServerApp = new StackServerApp({\n      tokenStore: null,\n    });\n    ```\n    \n    In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./client\";\n    \n    export const stackServerApp = new StackServerApp({\n      inheritsFrom: stackClientApp,\n    });\n    ```\n    \n    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a `StackClientApp` object.\n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/App.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackClientApp}>\n            <StackTheme>\n              {/* your app content */}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  <Step title=\"Backend: Update callers with header & get user\">\n    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.\n  \n    The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:\n  \n    ```ts\n    // NOTE: This is your frontend's code\n    const authorizationHeader = await stackClientApp.getAuthorizationHeader();\n    const response = await fetch(\"/my-backend-endpoint\", {\n      headers: {\n        ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),\n      },\n    });\n    // ...\n    ```\n  \n    In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:\n  \n    ```ts\n    // NOTE: This is your backend's code\n    const user = await stackServerApp.getUser({ tokenStore: request });\n    return new Response(\"Hello, \" + user.displayName, { headers: { \"Cache-Control\": \"private, no-store\" } });\n    ```\n  \n    This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.\n  \n    <Note>\n      Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.\n    </Note>\n  \n    If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:\n  \n    ```ts\n    // Frontend:\n    await rpcCall(\"my-rpc-endpoint\", {\n      data: {\n        auth: await stackClientApp.getAuthJson(),\n      },\n    });\n  \n    // Backend:\n    const user = await stackServerApp.getUser({ tokenStore: data.auth });\n    return new RpcResponse(\"Hello, \" + user.displayName);\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
 export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli","mcp"];
 export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"},{"toolId":"mcp","title":"MCP"}];
 export const unifiedAiPromptTabTitle = "Unified AI Prompt";
@@ -8,6 +8,7 @@ export const unifiedAiPromptTabTitle = "Unified AI Prompt";
 export const GeneratedSetupPromptText = ({ className }) => (
   <textarea
     readOnly
+    aria-label="Generated setup prompt"
     value={generatedSetupPromptText}
     className={className}
   />
diff --git a/docs/content/docs/sdk/types/user.mdx b/docs/content/docs/sdk/types/user.mdx
index f9b3e1c712..b2c613aebd 100644
--- a/docs/content/docs/sdk/types/user.mdx
+++ b/docs/content/docs/sdk/types/user.mdx
@@ -1377,6 +1377,55 @@ code={`type CurrentUser = {
   </MethodLayout>
 </CollapsibleTypesSection>
 
+<CollapsibleTypesSection type="currentUser" property="useAuthorizationHeader" defaultOpen={false}>
+  <MethodLayout>
+    <MethodContent>
+      React hook equivalent of `getAuthorizationHeader()`.
+
+      Returns the value for the HTTP `Authorization` header for authenticated requests to external servers,
+      or `null` if the user is not signed in. Use it when a React component needs to call an API on a
+      different origin and same-origin cookies are not enough.
+
+      ### Parameters
+
+      No parameters.
+
+      ### Returns
+
+      `string | null`: A `Bearer stackauth_...` authorization header value, or `null` if not signed in.
+    </MethodContent>
+    <MethodAside>
+      <AsideSection title="Signature">
+
+      ```typescript
+      declare function useAuthorizationHeader(): string | null;
+      ```
+      </AsideSection>
+      <AsideSection title="Examples">
+      ```tsx Passing an authorization header from React
+      function ExternalApiButton() {
+        const authorizationHeader = user.useAuthorizationHeader();
+
+        return (
+          <button
+            onClick={async () => {
+              await fetch("https://api.example.com", {
+                headers: {
+                  ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
+                },
+              });
+            }}
+          >
+            Call API
+          </button>
+        );
+      }
+      ```
+      </AsideSection>
+    </MethodAside>
+  </MethodLayout>
+</CollapsibleTypesSection>
+
 <CollapsibleTypesSection type="currentUser" property="getAuthHeaders" defaultOpen={false}>
   <MethodLayout>
     <MethodContent>
diff --git a/packages/stack-cli/src/commands/emulator.ts b/packages/stack-cli/src/commands/emulator.ts
index 9d8fea44c8..53ed406233 100644
--- a/packages/stack-cli/src/commands/emulator.ts
+++ b/packages/stack-cli/src/commands/emulator.ts
@@ -107,19 +107,21 @@ async function fetchEmulatorCredentials(pck: string, backendPort: number, config
     onboarding_status: string,
     onboarding_outstanding: boolean,
   };
-  if (typeof data.project_id !== "string" || typeof data.publishable_client_key !== "string" || typeof data.secret_server_key !== "string") {
+  if (
+    typeof data.project_id !== "string"
+    || typeof data.publishable_client_key !== "string"
+    || typeof data.secret_server_key !== "string"
+    || typeof data.onboarding_status !== "string"
+    || typeof data.onboarding_outstanding !== "boolean"
+  ) {
     throw new CliError("Local emulator project endpoint returned an invalid credentials response.");
   }
-  const onboardingStatus = typeof data.onboarding_status === "string" ? data.onboarding_status : "completed";
-  const onboardingOutstanding = typeof data.onboarding_outstanding === "boolean"
-    ? data.onboarding_outstanding
-    : onboardingStatus !== "completed";
   return {
     project_id: data.project_id,
     publishable_client_key: data.publishable_client_key,
     secret_server_key: data.secret_server_key,
-    onboarding_status: onboardingStatus,
-    onboarding_outstanding: onboardingOutstanding,
+    onboarding_status: data.onboarding_status,
+    onboarding_outstanding: data.onboarding_outstanding,
   };
 }
 
diff --git a/packages/stack-shared/src/ai/prompts.ts b/packages/stack-shared/src/ai/prompts.ts
index 563c578dcb..26b3b66a9e 100644
--- a/packages/stack-shared/src/ai/prompts.ts
+++ b/packages/stack-shared/src/ai/prompts.ts
@@ -285,7 +285,7 @@ export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "
 
             \`\`\`tsx src/App.tsx
             import { StackProvider, StackTheme } from "${packageName}";
-            import { stackClientApp } from "@/stack/client";
+            import { stackClientApp } from "./stack/client";
 
             export default function App() {
               return (
@@ -328,17 +328,17 @@ export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "
           ${!isDefinitelyNextjs ? deindent`
             The easiest way to do this is to just wrap your entire app in a \`Suspense\` component:
 
-            \`\`\`tsx src/app/layout.tsx
+            \`\`\`tsx src/App.tsx
             import { Suspense } from "react";
             import { StackProvider, StackTheme } from "${packageName}";
-            import { stackServerApp } from "@/stack/server";
+            import { stackClientApp } from "./stack/client";
 
-            export default function RootLayout({ children }: { children: React.ReactNode }) {
+            export default function App() {
               return (
                 <Suspense fallback={<div>Loading...</div>}>
-                  <StackProvider app={stackServerApp}>
+                  <StackProvider app={stackClientApp}>
                     <StackTheme>
-                      {children}
+                      {/* your app content */}
                     </StackTheme>
                   </StackProvider>
                 </Suspense>
@@ -367,13 +367,14 @@ export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "
         <Step title="${!isDefinitelyBackend ? "Backend: " : ""}Update callers with header & get user">
           You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
 
-          The most ergonomic way to do this is to pass the result of \`stackClientApp.getAuthorizationHeader()\` as the \`Authorization\` header into your backend endpoints:
+          The most ergonomic way to do this is to pass the result of \`stackClientApp.getAuthorizationHeader()\` as the \`Authorization\` header into your backend endpoints when the user is signed in:
 
           \`\`\`ts
           // NOTE: This is your frontend's code
+          const authorizationHeader = await stackClientApp.getAuthorizationHeader();
           const response = await fetch("/my-backend-endpoint", {
             headers: {
-              "Authorization": await stackClientApp.getAuthorizationHeader(),
+              ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
             },
           });
           // ...
diff --git a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
index 6ef1ea0d50..08544fab93 100644
--- a/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
+++ b/packages/template/src/lib/stack-app/apps/implementations/client-app-impl.ts
@@ -115,7 +115,7 @@ function getAuthJsonFromAuthorizationHeaderValue(authorizationHeaderValue: strin
     const decodedAuthJson = new TextDecoder().decode(decodeBase64(encodedAuthJson));
     parsed = JSON.parse(decodedAuthJson);
   } catch (e) {
-    throw new Error(`Invalid stackauth authorization header: ${authorizationHeaderValue}`, { cause: e });
+    throw new Error("Invalid stackauth authorization header.", { cause: e });
   }
 
   if (parsed == null || typeof parsed !== "object" || Array.isArray(parsed)) {
@@ -1076,7 +1076,7 @@ export class _StackClientAppImplIncomplete<HasTokenStore extends boolean, Projec
               if (typeof parsed !== "object") throw new Error("x-stack-auth header must be a JSON object");
               if (parsed === null) throw new Error("x-stack-auth header must not be null");
             } catch (e) {
-              throw new Error(`Invalid x-stack-auth header: ${stackAuthHeader}`, { cause: e });
+              throw new Error("Invalid x-stack-auth header.", { cause: e });
             }
             return this._getOrCreateTokenStore(cookieHelper, {
               accessToken: parsed.accessToken ?? null,
diff --git a/scripts/generate-setup-prompt-docs.ts b/scripts/generate-setup-prompt-docs.ts
index 972789d4d8..bc0cf60b87 100644
--- a/scripts/generate-setup-prompt-docs.ts
+++ b/scripts/generate-setup-prompt-docs.ts
@@ -287,6 +287,7 @@ writeFileSyncIfChanged(
     export const GeneratedSetupPromptText = ({ className }) => (
       <textarea
         readOnly
+        aria-label="Generated setup prompt"
         value={generatedSetupPromptText}
         className={className}
       />
@@ -312,8 +313,12 @@ writeFileSyncIfChanged(
 
     export const copyGeneratedSetupPrompt = async (event) => {
       const button = event.currentTarget;
-      await navigator.clipboard.writeText(generatedSetupPromptText);
-      button.textContent = "Copied";
+      try {
+        await navigator.clipboard.writeText(generatedSetupPromptText);
+        button.textContent = "Copied";
+      } catch {
+        button.textContent = "Copy failed";
+      }
       window.setTimeout(() => {
         button.textContent = "Copy prompt";
       }, 1300);

From 3c3a870bacf6d0e3583ea49249fca5500a6ce968 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Wed, 6 May 2026 09:52:28 -0700
Subject: [PATCH 09/13] No backend setup step in Next.js

---
 .../guides/getting-started/setup.mdx          | 42 -------------------
 packages/stack-shared/src/ai/prompts.ts       |  2 +-
 2 files changed, 1 insertion(+), 43 deletions(-)

diff --git a/docs-mintlify/guides/getting-started/setup.mdx b/docs-mintlify/guides/getting-started/setup.mdx
index 806c916c67..020b5c3b63 100644
--- a/docs-mintlify/guides/getting-started/setup.mdx
+++ b/docs-mintlify/guides/getting-started/setup.mdx
@@ -736,49 +736,7 @@ export const onSetupToolClick = (event) => {
               
             </Step>
           
-            <Step title="Update callers with header & get user">
-              You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
-            
-              The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:
-            
-              ```ts
-              // NOTE: This is your frontend's code
-              const authorizationHeader = await stackClientApp.getAuthorizationHeader();
-              const response = await fetch("/my-backend-endpoint", {
-                headers: {
-                  ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),
-                },
-              });
-              // ...
-              ```
-            
-              In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:
-            
-              ```ts
-              // NOTE: This is your backend's code
-              const user = await stackServerApp.getUser({ tokenStore: request });
-              return new Response("Hello, " + user.displayName, { headers: { "Cache-Control": "private, no-store" } });
-              ```
-            
-              This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.
-            
-              > Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.
             
-              If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:
-            
-              ```ts
-              // Frontend:
-              await rpcCall("my-rpc-endpoint", {
-                data: {
-                  auth: await stackClientApp.getAuthJson(),
-                },
-              });
-            
-              // Backend:
-              const user = await stackServerApp.getUser({ tokenStore: data.auth });
-              return new RpcResponse("Hello, " + user.displayName);
-              ```
-            </Step>
           
             <Step title="Done!" />
           </Steps>
diff --git a/packages/stack-shared/src/ai/prompts.ts b/packages/stack-shared/src/ai/prompts.ts
index 26b3b66a9e..20450bad78 100644
--- a/packages/stack-shared/src/ai/prompts.ts
+++ b/packages/stack-shared/src/ai/prompts.ts
@@ -363,7 +363,7 @@ export function getSdkSetupPrompt(mainType: "ai-prompt" | "nextjs" | "react" | "
         </Step>
       ` : ""}
 
-      ${isMaybeBackend ? deindent`
+      ${isMaybeBackend && !isDefinitelyNextjs ? deindent`
         <Step title="${!isDefinitelyBackend ? "Backend: " : ""}Update callers with header & get user">
           You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.
 

From 6eca0580910de3b3810369a7f441927fd3d03d4c Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Wed, 6 May 2026 10:10:33 -0700
Subject: [PATCH 10/13] Update prompts

---
 docs-mintlify/apps-sidebar-filter.js          | 131 +++++++
 docs-mintlify/docs.json                       |   3 +
 .../guides/getting-started/setup.mdx          | 361 +++++++++++++++---
 .../snippets/docs-apps-home-grid.jsx          | 116 ------
 docs-mintlify/snippets/home-prompt-island.jsx |   6 +-
 packages/stack-shared/src/ai/prompts.ts       | 312 ++++++++++++++-
 scripts/generate-setup-prompt-docs.ts         |   6 +-
 7 files changed, 738 insertions(+), 197 deletions(-)
 create mode 100644 docs-mintlify/apps-sidebar-filter.js

diff --git a/docs-mintlify/apps-sidebar-filter.js b/docs-mintlify/apps-sidebar-filter.js
new file mode 100644
index 0000000000..808c19267d
--- /dev/null
+++ b/docs-mintlify/apps-sidebar-filter.js
@@ -0,0 +1,131 @@
+(function () {
+  const SEARCH_ATTRIBUTE = "data-apps-sidebar-search";
+  const EMPTY_ATTRIBUTE = "data-apps-sidebar-empty";
+
+  function applySidebarAppsFilterTheme(searchInput, emptyState, clearFilterButton) {
+    const isDark = document.documentElement.classList.contains("dark");
+    searchInput.style.background = isDark ? "rgba(17,24,39,0.72)" : "rgba(248,250,252,0.98)";
+    searchInput.style.color = isDark ? "#e5e7eb" : "#111827";
+    searchInput.style.border = isDark ? "1px solid rgba(75,85,99,0.9)" : "1px solid rgba(203,213,225,0.95)";
+    emptyState.style.color = isDark ? "rgba(203,213,225,0.86)" : "rgba(55,65,81,0.9)";
+    clearFilterButton.style.color = isDark ? "#8fb7ff" : "#295fbe";
+  }
+
+  function installAppsSidebarFilter() {
+    const navigationItems = document.querySelector("#navigation-items");
+    if (navigationItems == null) {
+      return false;
+    }
+
+    const sidebarHeaders = navigationItems.querySelectorAll(".sidebar-group-header");
+    const appsHeader = Array.from(sidebarHeaders).find((header) => header.textContent?.trim() === "Apps");
+    if (appsHeader == null) {
+      return false;
+    }
+
+    const appsGroupContainer = appsHeader.parentElement;
+    const appsList = appsGroupContainer?.querySelector("ul");
+    if (appsGroupContainer == null || appsList == null) {
+      return false;
+    }
+
+    if (appsHeader.querySelector(`[${SEARCH_ATTRIBUTE}="true"]`) != null) {
+      return true;
+    }
+
+    const legacySearchContainers = appsGroupContainer.querySelectorAll(`div[${SEARCH_ATTRIBUTE}="true"]`);
+    for (const legacySearchContainer of legacySearchContainers) {
+      legacySearchContainer.remove();
+    }
+    const existingEmptyStates = appsGroupContainer.querySelectorAll(`[${EMPTY_ATTRIBUTE}="true"]`);
+    for (const existingEmptyState of existingEmptyStates) {
+      existingEmptyState.remove();
+    }
+
+    const searchInput = document.createElement("input");
+    searchInput.type = "text";
+    searchInput.placeholder = "Filter...";
+    searchInput.setAttribute("aria-label", "Filter apps in sidebar");
+    searchInput.setAttribute(SEARCH_ATTRIBUTE, "true");
+    searchInput.style.width = "120px";
+    searchInput.style.height = "24px";
+    searchInput.style.borderRadius = "7px";
+    searchInput.style.padding = "0 8px";
+    searchInput.style.fontSize = "11px";
+    searchInput.style.lineHeight = "1";
+    searchInput.style.outline = "none";
+    searchInput.style.transition = "border-color 150ms ease, background-color 150ms ease, color 150ms ease";
+    searchInput.style.fontWeight = "500";
+    searchInput.style.marginLeft = "auto";
+    searchInput.style.flexShrink = "0";
+
+    const emptyState = document.createElement("div");
+    emptyState.setAttribute(EMPTY_ATTRIBUTE, "true");
+    emptyState.style.display = "none";
+    emptyState.style.padding = "2px 0 8px 16px";
+    emptyState.style.fontSize = "12px";
+    emptyState.style.lineHeight = "1.3";
+
+    const emptyStatePrefix = document.createElement("span");
+    emptyStatePrefix.textContent = "No more results. ";
+    emptyState.appendChild(emptyStatePrefix);
+
+    const clearFilterButton = document.createElement("button");
+    clearFilterButton.type = "button";
+    clearFilterButton.textContent = "Clear filter";
+    clearFilterButton.style.border = "none";
+    clearFilterButton.style.padding = "0";
+    clearFilterButton.style.background = "transparent";
+    clearFilterButton.style.fontSize = "12px";
+    clearFilterButton.style.fontWeight = "600";
+    clearFilterButton.style.cursor = "pointer";
+    clearFilterButton.style.textDecoration = "underline";
+    clearFilterButton.style.textUnderlineOffset = "2px";
+    emptyState.appendChild(clearFilterButton);
+
+    const filterSidebarApps = () => {
+      const query = searchInput.value.trim().toLowerCase();
+      const appRows = Array.from(appsList.children);
+      let visibleCount = 0;
+      for (const row of appRows) {
+        const searchableElement = row.querySelector("a, button") ?? row;
+        const rowText = searchableElement.textContent?.replace(/\s+/g, " ").trim().toLowerCase() ?? "";
+        const isVisible = query.length === 0 || rowText.includes(query);
+        row.style.display = isVisible ? "" : "none";
+        if (isVisible) {
+          visibleCount += 1;
+        }
+      }
+      emptyState.style.display = query.length > 0 && visibleCount === 0 ? "block" : "none";
+    };
+
+    clearFilterButton.addEventListener("click", () => {
+      searchInput.value = "";
+      filterSidebarApps();
+      searchInput.focus();
+    });
+    searchInput.addEventListener("input", filterSidebarApps);
+    applySidebarAppsFilterTheme(searchInput, emptyState, clearFilterButton);
+
+    appsHeader.style.display = "flex";
+    appsHeader.style.alignItems = "center";
+    appsHeader.style.gap = "8px";
+    appsHeader.style.paddingRight = "12px";
+    appsHeader.appendChild(searchInput);
+    appsGroupContainer.insertBefore(emptyState, appsList);
+    return true;
+  }
+
+  function installWhenReady() {
+    if (installAppsSidebarFilter()) {
+      return;
+    }
+    window.setTimeout(installWhenReady, 250);
+  }
+
+  if (typeof window !== "undefined" && typeof document !== "undefined") {
+    window.requestAnimationFrame(installWhenReady);
+    const observer = new MutationObserver(() => installAppsSidebarFilter());
+    observer.observe(document.documentElement, { childList: true, subtree: true, attributes: true, attributeFilter: ["class"] });
+  }
+})();
diff --git a/docs-mintlify/docs.json b/docs-mintlify/docs.json
index 37bea151cf..cdda950ce6 100644
--- a/docs-mintlify/docs.json
+++ b/docs-mintlify/docs.json
@@ -224,5 +224,8 @@
       "robots": "noindex"
     }
   },
+  "settings": {
+    "customScripts": ["/apps-sidebar-filter.js"]
+  },
   "redirects": []
 }
diff --git a/docs-mintlify/guides/getting-started/setup.mdx b/docs-mintlify/guides/getting-started/setup.mdx
index 020b5c3b63..012d5fd5b4 100644
--- a/docs-mintlify/guides/getting-started/setup.mdx
+++ b/docs-mintlify/guides/getting-started/setup.mdx
@@ -6,9 +6,9 @@ sidebarTitle: Setup
 
 {/* This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead. */}
 
-export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:\n    \n    ```ts src/stack/client.ts\n    import { StackClientApp } from \"<the-sdk-from-above>\";\n    \n    export const stackClientApp = new StackClientApp({\n      tokenStore: \"cookie\", // \"nextjs-cookie\" for Next.js, \"cookie\" for other web frontends, null for backend environments\n    });\n    ```\n\n    In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    \n    export const stackServerApp = new StackServerApp({\n      tokenStore: null,\n    });\n    ```\n    \n    In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./client\";\n    \n    export const stackServerApp = new StackServerApp({\n      inheritsFrom: stackClientApp,\n    });\n    ```\n    \n    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a `StackClientApp` object.\n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/App.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackClientApp}>\n            <StackTheme>\n              {/* your app content */}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  <Step title=\"Backend: Update callers with header & get user\">\n    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.\n  \n    The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:\n  \n    ```ts\n    // NOTE: This is your frontend's code\n    const authorizationHeader = await stackClientApp.getAuthorizationHeader();\n    const response = await fetch(\"/my-backend-endpoint\", {\n      headers: {\n        ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),\n      },\n    });\n    // ...\n    ```\n  \n    In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:\n  \n    ```ts\n    // NOTE: This is your backend's code\n    const user = await stackServerApp.getUser({ tokenStore: request });\n    return new Response(\"Hello, \" + user.displayName, { headers: { \"Cache-Control\": \"private, no-store\" } });\n    ```\n  \n    This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.\n  \n    <Note>\n      Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.\n    </Note>\n  \n    If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:\n  \n    ```ts\n    // Frontend:\n    await rpcCall(\"my-rpc-endpoint\", {\n      data: {\n        auth: await stackClientApp.getAuthJson(),\n      },\n    });\n  \n    // Backend:\n    const user = await stackServerApp.getUser({ tokenStore: data.auth });\n    return new RpcResponse(\"Hello, \" + user.displayName);\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
-export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli","mcp"];
-export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"},{"toolId":"mcp","title":"MCP"}];
+export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:\n    \n    ```ts src/stack/client.ts\n    import { StackClientApp } from \"<the-sdk-from-above>\";\n    \n    export const stackClientApp = new StackClientApp({\n      tokenStore: \"cookie\", // \"nextjs-cookie\" for Next.js, \"cookie\" for other web frontends, null for backend environments\n    });\n    ```\n\n    In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    \n    export const stackServerApp = new StackServerApp({\n      tokenStore: null,\n    });\n    ```\n    \n    In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./client\";\n    \n    export const stackServerApp = new StackServerApp({\n      inheritsFrom: stackClientApp,\n    });\n    ```\n    \n    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a `StackClientApp` object.\n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/App.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackClientApp}>\n            <StackTheme>\n              {/* your app content */}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  <Step title=\"Backend: Update callers with header & get user\">\n    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.\n  \n    The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:\n  \n    ```ts\n    // NOTE: This is your frontend's code\n    const authorizationHeader = await stackClientApp.getAuthorizationHeader();\n    const response = await fetch(\"/my-backend-endpoint\", {\n      headers: {\n        ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),\n      },\n    });\n    // ...\n    ```\n  \n    In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:\n  \n    ```ts\n    // NOTE: This is your backend's code\n    const user = await stackServerApp.getUser({ tokenStore: request });\n    return new Response(\"Hello, \" + user.displayName, { headers: { \"Cache-Control\": \"private, no-store\" } });\n    ```\n  \n    This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.\n  \n    <Note>\n      Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.\n    </Note>\n  \n    If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:\n  \n    ```ts\n    // Frontend:\n    await rpcCall(\"my-rpc-endpoint\", {\n      data: {\n        auth: await stackClientApp.getAuthJson(),\n      },\n    });\n  \n    // Backend:\n    const user = await stackServerApp.getUser({ tokenStore: data.auth });\n    return new RpcResponse(\"Hello, \" + user.displayName);\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\nFollow these instructions to integrate Stack Auth with Convex.\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Create or identify the Convex app\">\n    If the project does not already use Convex, initialize a Convex + Next.js app:\n\n    ```sh\n    npm create convex@latest\n    ```\n\n    When prompted, choose **Next.js** and **No auth**. Stack Auth will provide auth.\n\n    During development, run the Convex backend and the app dev server:\n\n    ```sh\n    npx convex dev\n    npm run dev\n    ```\n  </Step>\n\n  <Step title=\"Install and configure Stack Auth\">\n    Install Stack Auth in the app. If you have not already completed the SDK setup steps above, run the setup wizard:\n\n    ```sh\n    npx @stackframe/stack-cli@latest init\n    ```\n\n    Create or select a Stack Auth project in the dashboard. Copy the Stack Auth environment variables into the app's `.env.local` file.\n\n    Also add the same Stack Auth environment variables to the Convex deployment environment in the Convex dashboard.\n  </Step>\n\n  <Step title=\"Configure Convex auth providers\">\n    Create or update `convex/auth.config.ts`:\n\n    ```ts convex/auth.config.ts\n    import { getConvexProvidersConfig } from \"@stackframe/js\";\n    // or: import { getConvexProvidersConfig } from \"@stackframe/react\";\n    // or: import { getConvexProvidersConfig } from \"@stackframe/stack\";\n\n    export default {\n      providers: getConvexProvidersConfig({\n        projectId: process.env.STACK_PROJECT_ID, // or process.env.NEXT_PUBLIC_STACK_PROJECT_ID\n      }),\n    };\n    ```\n  </Step>\n\n  <Step title=\"Connect Convex clients to Stack Auth\">\n    Update the Convex client setup so Convex receives Stack Auth tokens.\n\n    In browser JavaScript:\n\n    ```ts\n    convexClient.setAuth(stackClientApp.getConvexClientAuth({}));\n    ```\n\n    In React:\n\n    ```ts\n    convexReactClient.setAuth(stackClientApp.getConvexClientAuth({}));\n    ```\n\n    For Convex HTTP clients on the server, pass a request-like token store:\n\n    ```ts\n    convexHttpClient.setAuth(stackClientApp.getConvexHttpClientAuth({ tokenStore: requestObject }));\n    ```\n  </Step>\n\n  <Step title=\"Use Stack Auth user data in Convex functions\">\n    In Convex queries and mutations, use Stack Auth's Convex integration to read the current user.\n\n    ```ts convex/myFunctions.ts\n    import { query } from \"./_generated/server\";\n    import { stackServerApp } from \"../src/stack/server\";\n\n    export const myQuery = query({\n      handler: async (ctx, args) => {\n        const user = await stackServerApp.getPartialUser({ from: \"convex\", ctx });\n        return user;\n      },\n    });\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This setup covers Supabase Row Level Security (RLS) with Stack Auth JWTs. It does not sync user data between Supabase and Stack Auth. Use Stack Auth webhooks if you need data sync.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Create Supabase RLS policies\">\n    In the Supabase SQL editor, enable Row Level Security for your tables and write policies based on Supabase JWT claims.\n\n    For example, this sample table demonstrates public rows, authenticated rows, and user-owned rows:\n\n    ```sql\n    CREATE TABLE data (\n      id bigint PRIMARY KEY,\n      text text NOT NULL,\n      user_id UUID\n    );\n\n    INSERT INTO data (id, text, user_id) VALUES\n      (1, 'Everyone can see this', NULL),\n      (2, 'Only authenticated users can see this', NULL),\n      (3, 'Only user with specific id can see this', NULL);\n\n    ALTER TABLE data ENABLE ROW LEVEL SECURITY;\n\n    CREATE POLICY \"Public read\" ON \"public\".\"data\" TO public\n    USING (id = 1);\n\n    CREATE POLICY \"Authenticated access\" ON \"public\".\"data\" TO authenticated\n    USING (id = 2);\n\n    CREATE POLICY \"User access\" ON \"public\".\"data\" TO authenticated\n    USING (id = 3 AND auth.uid() = user_id);\n    ```\n  </Step>\n\n  <Step title=\"Install Stack Auth and Supabase dependencies\">\n    If you are starting from scratch with Next.js, you can use Supabase's template and then initialize Stack Auth:\n\n    ```sh\n    npx create-next-app@latest -e with-supabase stack-supabase\n    cd stack-supabase\n    npx @stackframe/stack-cli@latest init\n    ```\n\n    Add the Supabase environment variables to `.env.local`:\n\n    ```.env .env.local\n    NEXT_PUBLIC_SUPABASE_URL=<your-supabase-url>\n    NEXT_PUBLIC_SUPABASE_ANON_KEY=<your-supabase-anon-key>\n    SUPABASE_JWT_SECRET=<your-supabase-jwt-secret>\n    ```\n\n    Also add the Stack Auth environment variables:\n\n    ```.env .env.local\n    NEXT_PUBLIC_STACK_PROJECT_ID=<your-stack-project-id>\n    NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>\n    STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n    ```\n  </Step>\n\n  <Step title=\"Mint Supabase JWTs from Stack Auth users\">\n    Create a server action that signs a Supabase JWT using the current Stack Auth user ID:\n\n    ```tsx utils/actions.ts\n    'use server';\n\n    import { stackServerApp } from \"@/stack/server\";\n    import * as jose from \"jose\";\n\n    export const getSupabaseJwt = async () => {\n      const user = await stackServerApp.getUser();\n\n      if (!user) {\n        return null;\n      }\n\n      const token = await new jose.SignJWT({\n        sub: user.id,\n        role: \"authenticated\",\n      })\n        .setProtectedHeader({ alg: \"HS256\" })\n        .setIssuedAt()\n        .setExpirationTime(\"1h\")\n        .sign(new TextEncoder().encode(process.env.SUPABASE_JWT_SECRET));\n\n      return token;\n    };\n    ```\n  </Step>\n\n  <Step title=\"Create a Supabase client that uses the Stack Auth JWT\">\n    Create a helper that passes the server-generated JWT to Supabase:\n\n    ```tsx utils/supabase-client.ts\n    import { createBrowserClient } from \"@supabase/ssr\";\n    import { getSupabaseJwt } from \"./actions\";\n\n    export const createSupabaseClient = () => {\n      return createBrowserClient(\n        process.env.NEXT_PUBLIC_SUPABASE_URL!,\n        process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,\n        { accessToken: async () => await getSupabaseJwt() || \"\" },\n      );\n    };\n    ```\n  </Step>\n\n  <Step title=\"Fetch Supabase data\">\n    Use the Supabase client from your UI. The RLS policies will decide which rows the user can read based on the Stack Auth user ID embedded in the Supabase JWT.\n\n    ```tsx app/page.tsx\n    'use client';\n\n    import { createSupabaseClient } from \"@/utils/supabase-client\";\n    import { useStackApp, useUser } from \"@stackframe/stack\";\n    import Link from \"next/link\";\n    import { useEffect, useState } from \"react\";\n\n    export default function Page() {\n      const app = useStackApp();\n      const user = useUser();\n      const supabase = createSupabaseClient();\n      const [data, setData] = useState<null | any[]>(null);\n\n      useEffect(() => {\n        supabase.from(\"data\").select().then(({ data }) => setData(data ?? []));\n      }, []);\n\n      const listContent = data === null\n        ? <p>Loading...</p>\n        : data.length === 0\n          ? <p>No notes found</p>\n          : data.map((note) => <li key={note.id}>{note.text}</li>);\n\n      return (\n        <div>\n          {user ? (\n            <>\n              <p>You are signed in</p>\n              <p>User ID: {user.id}</p>\n              <Link href={app.urls.signOut}>Sign Out</Link>\n            </>\n          ) : (\n            <Link href={app.urls.signIn}>Sign In</Link>\n          )}\n          <h3>Supabase data</h3>\n          <ul>{listContent}</ul>\n        </div>\n      );\n    }\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\nFollow these instructions to authenticate users in a command line application with Stack Auth.\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Add the CLI auth template\">\n    Download the Stack Auth CLI authentication template and place it in your project. For Python apps, copy it as `stack_auth_cli_template.py`.\n\n    Example project layout:\n\n    ```text\n    my-python-app/\n    ├─ main.py\n    └─ stack_auth_cli_template.py\n    ```\n  </Step>\n\n  <Step title=\"Prompt the user to log in\">\n    Import and call `prompt_cli_login`. It opens the browser, lets the user authenticate, and returns a refresh token.\n\n    ```py main.py\n    from stack_auth_cli_template import prompt_cli_login\n\n    refresh_token = prompt_cli_login(\n      app_url=\"https://your-app-url.example.com\",\n      project_id=\"your-project-id-here\",\n      publishable_client_key=\"your-publishable-client-key-here\",\n    )\n\n    if refresh_token is None:\n      print(\"User cancelled the login process. Exiting\")\n      exit(1)\n    ```\n\n    You can store the refresh token in a local file or keychain and only prompt the user again when no saved refresh token exists.\n  </Step>\n\n  <Step title=\"Exchange the refresh token for an access token\">\n    Use the refresh token with Stack Auth's REST API to get an access token.\n\n    ```py\n    def get_access_token(refresh_token):\n      access_token_response = stack_auth_request(\n        \"post\",\n        \"/api/v1/auth/sessions/current/refresh\",\n        headers={\n          \"x-stack-refresh-token\": refresh_token,\n        },\n      )\n\n      return access_token_response[\"access_token\"]\n    ```\n  </Step>\n\n  <Step title=\"Fetch the current user\">\n    Use the access token to call the Stack Auth REST API as the logged-in user.\n\n    ```py\n    def get_user_object(access_token):\n      return stack_auth_request(\n        \"get\",\n        \"/api/v1/users/me\",\n        headers={\n          \"x-stack-access-token\": access_token,\n        },\n      )\n\n    user = get_user_object(get_access_token(refresh_token))\n    print(\"The user is logged in as\", user[\"display_name\"] or user[\"primary_email\"])\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>";
+export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli"];
+export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"}];
 export const unifiedAiPromptTabTitle = "Unified AI Prompt";
 
 export const copyGeneratedSetupPrompt = async (event) => {
@@ -505,36 +505,6 @@ export const onSetupToolClick = (event) => {
             CLI
           </span>
         </button>
-        <button
-          type="button"
-          aria-pressed="false"
-          data-setup-tool-card="true"
-          data-tool-id="mcp"
-          data-tool-label="MCP"
-          data-tool-has-tabs="true"
-          data-tool-extra-features=""
-          onClick={onSetupToolClick}
-          className="group flex flex-col items-center gap-1 rounded-xl px-1 py-1 text-center transition-colors duration-150 hover:transition-none focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 aria-pressed:bg-white/60 aria-pressed:ring-2 aria-pressed:ring-[#6b5df7] dark:aria-pressed:bg-white/10"
-          title="MCP"
-        >
-          <div className="relative flex h-16 w-16 items-center justify-center overflow-hidden rounded-2xl border border-[#b8cff7] bg-gradient-to-b from-[#f2f7ff] via-[#ebf2ff] to-[#e4edff] shadow-[inset_0_1px_0_rgba(255,255,255,0.95),0_7px_18px_rgba(43,76,140,0.2)] transition-[border-color,box-shadow,transform] duration-150 group-hover:transition-none group-hover:border-[#78a8f0] group-hover:shadow-[inset_0_1px_0_rgba(255,255,255,1),0_0_20px_rgba(82,138,234,0.38),0_10px_22px_rgba(43,76,140,0.24)] dark:border-[#2c4c7d]/70 dark:from-[#183155] dark:via-[#112542] dark:to-[#0a1830] dark:shadow-[inset_0_1px_0_rgba(160,200,255,0.24),0_8px_24px_rgba(2,8,20,0.62)] dark:group-hover:border-[#4f84d7] dark:group-hover:shadow-[inset_0_1px_0_rgba(188,218,255,0.42),0_0_26px_rgba(77,138,239,0.5),0_12px_30px_rgba(2,8,20,0.72)]">
-            <span
-              aria-hidden="true"
-              className="h-8 w-8 bg-black opacity-80 transition-opacity duration-150 group-hover:transition-none group-hover:opacity-90 dark:bg-white dark:opacity-95"
-              style={{
-                WebkitMask: "url(/images/setup-tools/mcp.svg) center / contain no-repeat",
-                mask: "url(/images/setup-tools/mcp.svg) center / contain no-repeat",
-              }}
-            />
-            <span className="absolute right-2 top-2 hidden h-5 min-w-5 items-center justify-center rounded-full bg-[#6b5df7] px-1 text-[9px] font-bold uppercase tracking-tight text-white group-aria-pressed:flex">On</span>
-          </div>
-          <span
-            className="min-h-8 max-w-20 text-center text-xs font-medium leading-4 text-[#2e446f] transition-colors duration-150 group-hover:transition-none group-hover:text-[#182b50] dark:text-[#d8e7ff] dark:group-hover:text-white"
-            title="MCP"
-          >
-            MCP
-          </span>
-        </button>
       </div>
     </section>
   </div>
@@ -1651,12 +1621,92 @@ export const onSetupToolClick = (event) => {
         
           ## Convex Setup
           
-          > This prompt is not yet implemented.
+          Follow these instructions to integrate Stack Auth with Convex.
           
           <Steps titleSize="h3">
-            <Step title="Install dependencies">
-              Install the Convex package:
+            <Step title="Create or identify the Convex app">
+              If the project does not already use Convex, initialize a Convex + Next.js app:
+          
+              ```sh
+              npm create convex@latest
+              ```
+          
+              When prompted, choose **Next.js** and **No auth**. Stack Auth will provide auth.
+          
+              During development, run the Convex backend and the app dev server:
+          
+              ```sh
+              npx convex dev
+              npm run dev
+              ```
+            </Step>
+          
+            <Step title="Install and configure Stack Auth">
+              Install Stack Auth in the app. If you have not already completed the SDK setup steps above, run the setup wizard:
+          
+              ```sh
+              npx @stackframe/stack-cli@latest init
+              ```
+          
+              Create or select a Stack Auth project in the dashboard. Copy the Stack Auth environment variables into the app's `.env.local` file.
+          
+              Also add the same Stack Auth environment variables to the Convex deployment environment in the Convex dashboard.
             </Step>
+          
+            <Step title="Configure Convex auth providers">
+              Create or update `convex/auth.config.ts`:
+          
+              ```ts convex/auth.config.ts
+              import { getConvexProvidersConfig } from "@stackframe/js";
+              // or: import { getConvexProvidersConfig } from "@stackframe/react";
+              // or: import { getConvexProvidersConfig } from "@stackframe/stack";
+          
+              export default {
+                providers: getConvexProvidersConfig({
+                  projectId: process.env.STACK_PROJECT_ID, // or process.env.NEXT_PUBLIC_STACK_PROJECT_ID
+                }),
+              };
+              ```
+            </Step>
+          
+            <Step title="Connect Convex clients to Stack Auth">
+              Update the Convex client setup so Convex receives Stack Auth tokens.
+          
+              In browser JavaScript:
+          
+              ```ts
+              convexClient.setAuth(stackClientApp.getConvexClientAuth({}));
+              ```
+          
+              In React:
+          
+              ```ts
+              convexReactClient.setAuth(stackClientApp.getConvexClientAuth({}));
+              ```
+          
+              For Convex HTTP clients on the server, pass a request-like token store:
+          
+              ```ts
+              convexHttpClient.setAuth(stackClientApp.getConvexHttpClientAuth({ tokenStore: requestObject }));
+              ```
+            </Step>
+          
+            <Step title="Use Stack Auth user data in Convex functions">
+              In Convex queries and mutations, use Stack Auth's Convex integration to read the current user.
+          
+              ```ts convex/myFunctions.ts
+              import { query } from "./_generated/server";
+              import { stackServerApp } from "../src/stack/server";
+          
+              export const myQuery = query({
+                handler: async (ctx, args) => {
+                  const user = await stackServerApp.getPartialUser({ from: "convex", ctx });
+                  return user;
+                },
+              });
+              ```
+            </Step>
+          
             <Step title="Done!" />
           </Steps>
         </Tab>
@@ -1674,12 +1724,158 @@ export const onSetupToolClick = (event) => {
         
           ## Supabase Setup
           
-          > This prompt is not yet implemented.
+          > This setup covers Supabase Row Level Security (RLS) with Stack Auth JWTs. It does not sync user data between Supabase and Stack Auth. Use Stack Auth webhooks if you need data sync.
           
           <Steps titleSize="h3">
-            <Step title="Install dependencies">
-              Install the Supabase package:
+            <Step title="Create Supabase RLS policies">
+              In the Supabase SQL editor, enable Row Level Security for your tables and write policies based on Supabase JWT claims.
+          
+              For example, this sample table demonstrates public rows, authenticated rows, and user-owned rows:
+          
+              ```sql
+              CREATE TABLE data (
+                id bigint PRIMARY KEY,
+                text text NOT NULL,
+                user_id UUID
+              );
+          
+              INSERT INTO data (id, text, user_id) VALUES
+                (1, 'Everyone can see this', NULL),
+                (2, 'Only authenticated users can see this', NULL),
+                (3, 'Only user with specific id can see this', NULL);
+          
+              ALTER TABLE data ENABLE ROW LEVEL SECURITY;
+          
+              CREATE POLICY "Public read" ON "public"."data" TO public
+              USING (id = 1);
+          
+              CREATE POLICY "Authenticated access" ON "public"."data" TO authenticated
+              USING (id = 2);
+          
+              CREATE POLICY "User access" ON "public"."data" TO authenticated
+              USING (id = 3 AND auth.uid() = user_id);
+              ```
+            </Step>
+          
+            <Step title="Install Stack Auth and Supabase dependencies">
+              If you are starting from scratch with Next.js, you can use Supabase's template and then initialize Stack Auth:
+          
+              ```sh
+              npx create-next-app@latest -e with-supabase stack-supabase
+              cd stack-supabase
+              npx @stackframe/stack-cli@latest init
+              ```
+          
+              Add the Supabase environment variables to `.env.local`:
+          
+              ```.env .env.local
+              NEXT_PUBLIC_SUPABASE_URL=<your-supabase-url>
+              NEXT_PUBLIC_SUPABASE_ANON_KEY=<your-supabase-anon-key>
+              SUPABASE_JWT_SECRET=<your-supabase-jwt-secret>
+              ```
+          
+              Also add the Stack Auth environment variables:
+          
+              ```.env .env.local
+              NEXT_PUBLIC_STACK_PROJECT_ID=<your-stack-project-id>
+              NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
+              STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+              ```
+            </Step>
+          
+            <Step title="Mint Supabase JWTs from Stack Auth users">
+              Create a server action that signs a Supabase JWT using the current Stack Auth user ID:
+          
+              ```tsx utils/actions.ts
+              'use server';
+          
+              import { stackServerApp } from "@/stack/server";
+              import * as jose from "jose";
+          
+              export const getSupabaseJwt = async () => {
+                const user = await stackServerApp.getUser();
+          
+                if (!user) {
+                  return null;
+                }
+          
+                const token = await new jose.SignJWT({
+                  sub: user.id,
+                  role: "authenticated",
+                })
+                  .setProtectedHeader({ alg: "HS256" })
+                  .setIssuedAt()
+                  .setExpirationTime("1h")
+                  .sign(new TextEncoder().encode(process.env.SUPABASE_JWT_SECRET));
+          
+                return token;
+              };
+              ```
+            </Step>
+          
+            <Step title="Create a Supabase client that uses the Stack Auth JWT">
+              Create a helper that passes the server-generated JWT to Supabase:
+          
+              ```tsx utils/supabase-client.ts
+              import { createBrowserClient } from "@supabase/ssr";
+              import { getSupabaseJwt } from "./actions";
+          
+              export const createSupabaseClient = () => {
+                return createBrowserClient(
+                  process.env.NEXT_PUBLIC_SUPABASE_URL!,
+                  process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
+                  { accessToken: async () => await getSupabaseJwt() || "" },
+                );
+              };
+              ```
+            </Step>
+          
+            <Step title="Fetch Supabase data">
+              Use the Supabase client from your UI. The RLS policies will decide which rows the user can read based on the Stack Auth user ID embedded in the Supabase JWT.
+          
+              ```tsx app/page.tsx
+              'use client';
+          
+              import { createSupabaseClient } from "@/utils/supabase-client";
+              import { useStackApp, useUser } from "@stackframe/stack";
+              import Link from "next/link";
+              import { useEffect, useState } from "react";
+          
+              export default function Page() {
+                const app = useStackApp();
+                const user = useUser();
+                const supabase = createSupabaseClient();
+                const [data, setData] = useState<null | any[]>(null);
+          
+                useEffect(() => {
+                  supabase.from("data").select().then(({ data }) => setData(data ?? []));
+                }, []);
+          
+                const listContent = data === null
+                  ? <p>Loading...</p>
+                  : data.length === 0
+                    ? <p>No notes found</p>
+                    : data.map((note) => <li key={note.id}>{note.text}</li>);
+          
+                return (
+                  <div>
+                    {user ? (
+                      <>
+                        <p>You are signed in</p>
+                        <p>User ID: {user.id}</p>
+                        <Link href={app.urls.signOut}>Sign Out</Link>
+                      </>
+                    ) : (
+                      <Link href={app.urls.signIn}>Sign In</Link>
+                    )}
+                    <h3>Supabase data</h3>
+                    <ul>{listContent}</ul>
+                  </div>
+                );
+              }
+              ```
             </Step>
+          
             <Step title="Done!" />
           </Steps>
         </Tab>
@@ -1697,35 +1893,76 @@ export const onSetupToolClick = (event) => {
         
           ## CLI Setup
           
-          > This prompt is not yet implemented.
+          Follow these instructions to authenticate users in a command line application with Stack Auth.
           
           <Steps titleSize="h3">
-            <Step title="Install dependencies">
-              Install the CLI package:
+            <Step title="Add the CLI auth template">
+              Download the Stack Auth CLI authentication template and place it in your project. For Python apps, copy it as `stack_auth_cli_template.py`.
+          
+              Example project layout:
+          
+              ```text
+              my-python-app/
+              ├─ main.py
+              └─ stack_auth_cli_template.py
+              ```
             </Step>
-            <Step title="Done!" />
-          </Steps>
-        </Tab>
-        
-        <Tab title="MCP">
-          <div className="not-prose mb-1 flex justify-end">
-            <button
-              type="button"
-              onClick={copyGeneratedSetupPrompt}
-              className="inline-flex items-center justify-center rounded-md border border-[#9fb5e4] bg-[#eaf1ff] px-2 py-1 text-[11px] font-semibold leading-none text-[#2a4272] transition-colors duration-150 hover:transition-none hover:bg-[#dde8ff] focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-violet-500 focus-visible:ring-offset-2 dark:border-[#3d5a91] dark:bg-[#12213d] dark:text-[#d5e6ff] dark:hover:bg-[#1a2e51]"
-            >
-              Copy prompt
-            </button>
-          </div>
-        
-          ## MCP Setup
           
-          > This prompt is not yet implemented.
+            <Step title="Prompt the user to log in">
+              Import and call `prompt_cli_login`. It opens the browser, lets the user authenticate, and returns a refresh token.
           
-          <Steps titleSize="h3">
-            <Step title="Install dependencies">
-              Install the MCP package:
+              ```py main.py
+              from stack_auth_cli_template import prompt_cli_login
+          
+              refresh_token = prompt_cli_login(
+                app_url="https://your-app-url.example.com",
+                project_id="your-project-id-here",
+                publishable_client_key="your-publishable-client-key-here",
+              )
+          
+              if refresh_token is None:
+                print("User cancelled the login process. Exiting")
+                exit(1)
+              ```
+          
+              You can store the refresh token in a local file or keychain and only prompt the user again when no saved refresh token exists.
             </Step>
+          
+            <Step title="Exchange the refresh token for an access token">
+              Use the refresh token with Stack Auth's REST API to get an access token.
+          
+              ```py
+              def get_access_token(refresh_token):
+                access_token_response = stack_auth_request(
+                  "post",
+                  "/api/v1/auth/sessions/current/refresh",
+                  headers={
+                    "x-stack-refresh-token": refresh_token,
+                  },
+                )
+          
+                return access_token_response["access_token"]
+              ```
+            </Step>
+          
+            <Step title="Fetch the current user">
+              Use the access token to call the Stack Auth REST API as the logged-in user.
+          
+              ```py
+              def get_user_object(access_token):
+                return stack_auth_request(
+                  "get",
+                  "/api/v1/users/me",
+                  headers={
+                    "x-stack-access-token": access_token,
+                  },
+                )
+          
+              user = get_user_object(get_access_token(refresh_token))
+              print("The user is logged in as", user["display_name"] or user["primary_email"])
+              ```
+            </Step>
+          
             <Step title="Done!" />
           </Steps>
         </Tab>
diff --git a/docs-mintlify/snippets/docs-apps-home-grid.jsx b/docs-mintlify/snippets/docs-apps-home-grid.jsx
index 989e3be1e1..2339423c91 100644
--- a/docs-mintlify/snippets/docs-apps-home-grid.jsx
+++ b/docs-mintlify/snippets/docs-apps-home-grid.jsx
@@ -96,122 +96,6 @@ export const DocsAppsHomeGrid = () => {
     }
   };
 
-  if (typeof document !== "undefined" && typeof window !== "undefined") {
-    window.requestAnimationFrame(() => {
-      const navigationItems = document.querySelector("#navigation-items");
-      if (navigationItems == null) {
-        return;
-      }
-
-      const sidebarHeaders = navigationItems.querySelectorAll(".sidebar-group-header");
-      const appsHeader = Array.from(sidebarHeaders).find((header) => header.textContent?.trim() === "Apps");
-      if (appsHeader == null) {
-        return;
-      }
-
-      const appsGroupContainer = appsHeader.parentElement;
-      const appsList = appsGroupContainer?.querySelector("ul");
-      if (appsGroupContainer == null || appsList == null) {
-        return;
-      }
-      const existingHeaderSearch = appsHeader.querySelector("[data-apps-sidebar-search='true']");
-      if (existingHeaderSearch != null) {
-        existingHeaderSearch.remove();
-      }
-      const legacySearchContainers = appsGroupContainer.querySelectorAll("div[data-apps-sidebar-search='true']");
-      for (const legacySearchContainer of legacySearchContainers) {
-        legacySearchContainer.remove();
-      }
-      const existingEmptyStates = appsGroupContainer.querySelectorAll("[data-apps-sidebar-empty='true']");
-      for (const existingEmptyState of existingEmptyStates) {
-        existingEmptyState.remove();
-      }
-
-      const searchInput = document.createElement("input");
-      searchInput.type = "text";
-      searchInput.placeholder = "Filter...";
-      searchInput.setAttribute("aria-label", "Filter apps in sidebar");
-      searchInput.style.width = "120px";
-      searchInput.style.height = "24px";
-      searchInput.style.borderRadius = "7px";
-      searchInput.style.padding = "0 8px";
-      searchInput.style.fontSize = "11px";
-      searchInput.style.lineHeight = "1";
-      searchInput.style.outline = "none";
-      searchInput.style.transition = "border-color 150ms ease, background-color 150ms ease, color 150ms ease";
-      searchInput.style.fontWeight = "500";
-      searchInput.style.marginLeft = "auto";
-      searchInput.style.flexShrink = "0";
-
-      const emptyState = document.createElement("div");
-      emptyState.setAttribute("data-apps-sidebar-empty", "true");
-      emptyState.style.display = "none";
-      emptyState.style.padding = "2px 0 8px 16px";
-      emptyState.style.fontSize = "12px";
-      emptyState.style.lineHeight = "1.3";
-
-      const emptyStatePrefix = document.createElement("span");
-      emptyStatePrefix.textContent = "No more results. ";
-      emptyState.appendChild(emptyStatePrefix);
-
-      const clearFilterButton = document.createElement("button");
-      clearFilterButton.type = "button";
-      clearFilterButton.textContent = "Clear filter";
-      clearFilterButton.style.border = "none";
-      clearFilterButton.style.padding = "0";
-      clearFilterButton.style.background = "transparent";
-      clearFilterButton.style.fontSize = "12px";
-      clearFilterButton.style.fontWeight = "600";
-      clearFilterButton.style.cursor = "pointer";
-      clearFilterButton.style.textDecoration = "underline";
-      clearFilterButton.style.textUnderlineOffset = "2px";
-      emptyState.appendChild(clearFilterButton);
-
-      const applyTheme = () => {
-        const isDark = document.documentElement.classList.contains("dark");
-        searchInput.style.background = isDark ? "rgba(17,24,39,0.72)" : "rgba(248,250,252,0.98)";
-        searchInput.style.color = isDark ? "#e5e7eb" : "#111827";
-        searchInput.style.border = isDark ? "1px solid rgba(75,85,99,0.9)" : "1px solid rgba(203,213,225,0.95)";
-        emptyState.style.color = isDark ? "rgba(203,213,225,0.86)" : "rgba(55,65,81,0.9)";
-        clearFilterButton.style.color = isDark ? "#8fb7ff" : "#295fbe";
-      };
-
-      const filterSidebarApps = () => {
-        const query = searchInput.value.trim().toLowerCase();
-        const appRows = Array.from(appsList.children);
-        let visibleCount = 0;
-        for (const row of appRows) {
-          const searchableElement = row.querySelector("a, button") ?? row;
-          const rowText = searchableElement.textContent?.replace(/\s+/g, " ").trim().toLowerCase() ?? "";
-          const isVisible = query.length === 0 || rowText.includes(query);
-          row.style.display = isVisible ? "" : "none";
-          if (isVisible) {
-            visibleCount += 1;
-          }
-        }
-        emptyState.style.display = query.length > 0 && visibleCount === 0 ? "block" : "none";
-      };
-
-      clearFilterButton.addEventListener("click", () => {
-        searchInput.value = "";
-        filterSidebarApps();
-        searchInput.focus();
-      });
-      searchInput.addEventListener("input", filterSidebarApps);
-      applyTheme();
-      const classObserver = new MutationObserver(applyTheme);
-      classObserver.observe(document.documentElement, { attributes: true, attributeFilter: ["class"] });
-
-      appsHeader.style.display = "flex";
-      appsHeader.style.alignItems = "center";
-      appsHeader.style.gap = "8px";
-      appsHeader.style.paddingRight = "12px";
-      searchInput.setAttribute("data-apps-sidebar-search", "true");
-      appsHeader.appendChild(searchInput);
-      appsGroupContainer.insertBefore(emptyState, appsList);
-    });
-  }
-
   return (
     <div data-explore-apps-root="true" className="mt-4 rounded-2xl border border-[#d6e4ff] bg-gradient-to-b from-[#f7faff] to-[#eaf2ff] p-3 shadow-[inset_0_1px_0_rgba(255,255,255,0.9),0_10px_30px_-24px_rgba(47,79,140,0.35)] dark:border-[#1f2d45] dark:from-[#11203a] dark:to-[#070f1f] dark:shadow-[inset_0_1px_0_rgba(112,152,224,0.18),0_16px_34px_-24px_rgba(2,8,20,0.85)] sm:p-4">
       <div className="mb-3 sm:mb-4">
diff --git a/docs-mintlify/snippets/home-prompt-island.jsx b/docs-mintlify/snippets/home-prompt-island.jsx
index c51832abb9..095afae9c1 100644
--- a/docs-mintlify/snippets/home-prompt-island.jsx
+++ b/docs-mintlify/snippets/home-prompt-island.jsx
@@ -1,8 +1,8 @@
 // This file is auto-generated by scripts/generate-setup-prompt-docs.ts. Do not edit it manually; edit packages/stack-shared/src/ai/prompts.ts instead.
 
-export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:\n    \n    ```ts src/stack/client.ts\n    import { StackClientApp } from \"<the-sdk-from-above>\";\n    \n    export const stackClientApp = new StackClientApp({\n      tokenStore: \"cookie\", // \"nextjs-cookie\" for Next.js, \"cookie\" for other web frontends, null for backend environments\n    });\n    ```\n\n    In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    \n    export const stackServerApp = new StackServerApp({\n      tokenStore: null,\n    });\n    ```\n    \n    In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./client\";\n    \n    export const stackServerApp = new StackServerApp({\n      inheritsFrom: stackClientApp,\n    });\n    ```\n    \n    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a `StackClientApp` object.\n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/App.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackClientApp}>\n            <StackTheme>\n              {/* your app content */}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  <Step title=\"Backend: Update callers with header & get user\">\n    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.\n  \n    The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:\n  \n    ```ts\n    // NOTE: This is your frontend's code\n    const authorizationHeader = await stackClientApp.getAuthorizationHeader();\n    const response = await fetch(\"/my-backend-endpoint\", {\n      headers: {\n        ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),\n      },\n    });\n    // ...\n    ```\n  \n    In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:\n  \n    ```ts\n    // NOTE: This is your backend's code\n    const user = await stackServerApp.getUser({ tokenStore: request });\n    return new Response(\"Hello, \" + user.displayName, { headers: { \"Cache-Control\": \"private, no-store\" } });\n    ```\n  \n    This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.\n  \n    <Note>\n      Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.\n    </Note>\n  \n    If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:\n  \n    ```ts\n    // Frontend:\n    await rpcCall(\"my-rpc-endpoint\", {\n      data: {\n        auth: await stackClientApp.getAuthJson(),\n      },\n    });\n  \n    // Backend:\n    const user = await stackServerApp.getUser({ tokenStore: data.auth });\n    return new RpcResponse(\"Hello, \" + user.displayName);\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Convex package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the Supabase package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the CLI package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>";
-export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli","mcp"];
-export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"},{"toolId":"mcp","title":"MCP"}];
+export const generatedSetupPromptText = "# Setting up Stack Auth\n\nThis prompt explains how to set up Stack Auth in your project.\n\nTo use it, you can use the sections below to set up Stack Auth in the project. For example, if you are setting up a Svelte project, you would follow the SDK setup instructions for a frontend JS project.\n\n## SDK Setup Instructions\n\nFollow these instructions in order to set up and get started with the Stack Auth SDK in various languages.\n\nNot all steps are applicable to every type of application; for example, React apps have some extra steps that are not needed with other frameworks.\n\nThe frameworks and languages with explicit SDK support are:\n\n- Next.js\n- React\n- Other JS & TS (both frontend and backend)\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Stack Auth has SDKs for various languages, frameworks, and libraries. Use the most specific package each, so, for example, even though a Next.js project uses both Next.js and React, use the Next.js package. If a programming language is not supported entirely, you may have to use the REST API to interface with Stack Auth.\n    \n    #### JavaScript & TypeScript\n    \n    For JS & TS, the following packages are available:\n    \n    - Next.js: `@stackframe/stack`\n    - React: `@stackframe/react`\n    - Other & vanilla JS: `@stackframe/js`\n    \n    You can install the correct JavaScript Stack Auth SDK into your project by running the following command:\n\n      ```sh\n      npm i <the-sdk-from-above>\n      # or: pnpm i <the-sdk-from-above>\n      # or: yarn add <the-sdk-from-above>\n      # or: bun add <the-sdk-from-above>\n      ```\n  </Step>\n  \n  <Step title=\"Initializing the Stack App\">\n    Next, let us create the Stack App object for your project. This is the most important object in a Stack Auth project.\n\n    In a frontend where you cannot keep a secret key safe, you would use the `StackClientApp` constructor:\n    \n    ```ts src/stack/client.ts\n    import { StackClientApp } from \"<the-sdk-from-above>\";\n    \n    export const stackClientApp = new StackClientApp({\n      tokenStore: \"cookie\", // \"nextjs-cookie\" for Next.js, \"cookie\" for other web frontends, null for backend environments\n    });\n    ```\n\n    In a backend where you can keep a secret key safe, you can use the `StackServerApp`, which provides access to more sensitive APIs compared to `StackClientApp`:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    \n    export const stackServerApp = new StackServerApp({\n      tokenStore: null,\n    });\n    ```\n    \n    In frameworks that are both front- and backend, like Next.js, you can also create a `StackServerApp` from a `StackClientApp` object:\n    \n    ```ts src/stack/server.ts\n    import { StackServerApp } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./client\";\n    \n    export const stackServerApp = new StackServerApp({\n      inheritsFrom: stackClientApp,\n    });\n    ```\n    \n    Note that the secret server key should **never** be exposed to the client, as it can be used to read and write everything in your Stack Auth project. In web frontends or bundled applications, you should therefore always only ever create a `StackClientApp` object.\n  </Step>\n\n  <Step title=\"Setting up the project\">\n    It's now time to create a development setup for Stack Auth.\n\n    You can either run Stack Auth locally, or connect to a project hosted in the cloud.\n\n    If you already use Stack Auth for your product, we recommend you re-use the same project to share your configuration between the two.\n\n    <AccordionGroup>\n      <Accordion title=\"Option 1: Running Stack Auth locally (recommended)\" defaultOpen>\n        First, create a `stack.config.ts` configuration file in the root directory of the workspace (or anywhere else):\n\n        ```ts stack.config.ts\n        import type { StackConfig } from \"<the-sdk-from-above>\";\n\n        // default: show-onboarding, which shows the onboarding flow for this project when Stack Auth starts\n        export const config: StackConfig = \"show-onboarding\";\n        ```\n\n        To run your application with Stack Auth, you then need to start the emulator and set environment variables expected by your application. The `emulator run` CLI command does both of these, so you can simply wrap your existing `dev` script in your package.json:\n\n        ```json package.json\n        {\n          // ...\n          \"scripts\": {\n            // ...\n            \"dev\": \"npx @stackframe/stack-cli emulator run --config-file ./stack.config.ts -- <your-existing-dev-script>\"\n          }\n        }\n        ```\n      </Accordion>\n\n      <Accordion title=\"Option 2: Connecting a cloud project\">\n        Note: If you're an AI agent, and you don't already have the information you need from the Cloud project, you may have to ask the user for help on this step. You can either ask them to provide the environment variables, or just leave them empty for now and ask the user to complete them at the end.\n\n        If you'd rather run your development environment on our infrastructure, or you already have an existing product, you can also connect a cloud project.\n\n        This process is slightly different depending on whether you're setting up a frontend or a backend (whether your app can keep a secret key safe or not).\n\n        #### Frontend\n\n        Go to your project's dashboard on [app.stack-auth.com](https://app.stack-auth.com) and get the project ID. You can find it in the URL after the `/projects/` part. Copy-paste it into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if available, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        ```\n\n        Alternatively, you can also just set the project ID in the `stack/client.ts` file:\n\n        ```ts src/stack/client.ts\n        export const stackClientApp = new StackClientApp({\n          // ...\n          projectId: \"your-project-id\",\n        });\n        ```\n\n\n        #### Backend (or both frontend and backend)\n\n        First, navigate to the [Project Keys](https://app.stack-auth.com/projects/-selector-/project-keys) page in the Stack Auth dashboard and generate a new set of keys.\n\n        Then, copy-paste them into your `.env.local` file (or wherever your environment variables are stored):\n\n        ```.env .env.local\n        STACK_PROJECT_ID=<your-project-id>  # if desired, prefix with your framework's convention for client-exposed variables (e.g. NEXT_PUBLIC_, VITE_, etc.)\n        STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n        ```\n\n        They'll automatically be picked up by the `StackServerApp` constructor.\n      </Accordion>\n    </AccordionGroup>\n  </Step>\n\n  <Step title=\"React: Creating a <StackProvider /> and <StackTheme />\">\n    In React frameworks, Stack Auth provides `StackProvider` and `StackTheme` components that should wrap your entire app at the root level.\n  \n    For example, if you have an `App.tsx` file, update it as follows:\n    \n    ```tsx src/App.tsx\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <StackProvider app={stackClientApp}>\n          <StackTheme>\n            {/* your app content */}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  \n    For Next.js specifically: You can do this in the `layout.tsx` file in the `app` directory:\n    \n    ```tsx src/app/layout.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackServerApp } from \"@/stack/server\";\n    \n    export default function RootLayout({ children }: { children: React.ReactNode }) {\n      return (\n        <StackProvider app={stackServerApp}>\n          <StackTheme>\n            {children}\n          </StackTheme>\n        </StackProvider>\n      );\n    }\n    ```\n  </Step>\n  \n  <Step title=\"React: Add Suspense boundary\">\n    Stack Auth also provides additional `useXyz` React hooks for `getXyz`/`listXyz` functions. For example, `useUser` is like `getUser`, but as a suspending React hook.\n  \n    To support the suspension, you need to add a suspense boundary around your app.\n    \n    The easiest way to do this is to just wrap your entire app in a `Suspense` component:\n    \n    ```tsx src/App.tsx\n    import { Suspense } from \"react\";\n    import { StackProvider, StackTheme } from \"<the-sdk-from-above>\";\n    import { stackClientApp } from \"./stack/client\";\n    \n    export default function App() {\n      return (\n        <Suspense fallback={<div>Loading...</div>}>\n          <StackProvider app={stackClientApp}>\n            <StackTheme>\n              {/* your app content */}\n            </StackTheme>\n          </StackProvider>\n        </Suspense>\n      );\n    }\n    ```\n  \n    In Next.js, this can be easily done by adding a `loading.tsx` file in the `app` directory:\n    \n    ```tsx src/app/loading.tsx\n    export default function Loading() {\n      return <div>Loading...</div>;\n    }\n    ```\n  \n    Note: If you are an AI agent, make sure to make the loading indicator visually appealing and match the design of your app, instead of the example that just says \"Loading...\".\n  </Step>\n\n  <Step title=\"Backend: Update callers with header & get user\">\n    You are now ready to use the Stack Auth SDK. If you have any frontends calling your backend endpoints, you may want to pass along the Stack Auth tokens in a header such that you can access the same user object on your backend.\n  \n    The most ergonomic way to do this is to pass the result of `stackClientApp.getAuthorizationHeader()` as the `Authorization` header into your backend endpoints when the user is signed in:\n  \n    ```ts\n    // NOTE: This is your frontend's code\n    const authorizationHeader = await stackClientApp.getAuthorizationHeader();\n    const response = await fetch(\"/my-backend-endpoint\", {\n      headers: {\n        ...(authorizationHeader ? { Authorization: authorizationHeader } : {}),\n      },\n    });\n    // ...\n    ```\n  \n    In most backend frameworks you can then access the user object by passing the request object as a `tokenStore` of the functions that access the user object:\n  \n    ```ts\n    // NOTE: This is your backend's code\n    const user = await stackServerApp.getUser({ tokenStore: request });\n    return new Response(\"Hello, \" + user.displayName, { headers: { \"Cache-Control\": \"private, no-store\" } });\n    ```\n  \n    This will work as long as `request` is an object that follows the shape `{ headers: Record<string, string | null> | { get: (name: string) => string | null } }`.\n  \n    <Note>\n      Make sure that HTTP caching is disabled with `Cache-Control: private, no-store` for authenticated backend endpoints.\n    </Note>\n  \n    If you cannot use `getAuthorizationHeader()`, for example because you are using a protocol other than HTTP, you can use `getAuthJson()` instead:\n  \n    ```ts\n    // Frontend:\n    await rpcCall(\"my-rpc-endpoint\", {\n      data: {\n        auth: await stackClientApp.getAuthJson(),\n      },\n    });\n  \n    // Backend:\n    const user = await stackServerApp.getUser({ tokenStore: data.auth });\n    return new RpcResponse(\"Hello, \" + user.displayName);\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## MCP Setup\n\n<Note>\n  This prompt is not yet implemented.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Install dependencies\">\n    Install the MCP package:\n  </Step>\n  <Step title=\"Done!\" />\n</Steps>\n\n## Convex Setup\n\nFollow these instructions to integrate Stack Auth with Convex.\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Create or identify the Convex app\">\n    If the project does not already use Convex, initialize a Convex + Next.js app:\n\n    ```sh\n    npm create convex@latest\n    ```\n\n    When prompted, choose **Next.js** and **No auth**. Stack Auth will provide auth.\n\n    During development, run the Convex backend and the app dev server:\n\n    ```sh\n    npx convex dev\n    npm run dev\n    ```\n  </Step>\n\n  <Step title=\"Install and configure Stack Auth\">\n    Install Stack Auth in the app. If you have not already completed the SDK setup steps above, run the setup wizard:\n\n    ```sh\n    npx @stackframe/stack-cli@latest init\n    ```\n\n    Create or select a Stack Auth project in the dashboard. Copy the Stack Auth environment variables into the app's `.env.local` file.\n\n    Also add the same Stack Auth environment variables to the Convex deployment environment in the Convex dashboard.\n  </Step>\n\n  <Step title=\"Configure Convex auth providers\">\n    Create or update `convex/auth.config.ts`:\n\n    ```ts convex/auth.config.ts\n    import { getConvexProvidersConfig } from \"@stackframe/js\";\n    // or: import { getConvexProvidersConfig } from \"@stackframe/react\";\n    // or: import { getConvexProvidersConfig } from \"@stackframe/stack\";\n\n    export default {\n      providers: getConvexProvidersConfig({\n        projectId: process.env.STACK_PROJECT_ID, // or process.env.NEXT_PUBLIC_STACK_PROJECT_ID\n      }),\n    };\n    ```\n  </Step>\n\n  <Step title=\"Connect Convex clients to Stack Auth\">\n    Update the Convex client setup so Convex receives Stack Auth tokens.\n\n    In browser JavaScript:\n\n    ```ts\n    convexClient.setAuth(stackClientApp.getConvexClientAuth({}));\n    ```\n\n    In React:\n\n    ```ts\n    convexReactClient.setAuth(stackClientApp.getConvexClientAuth({}));\n    ```\n\n    For Convex HTTP clients on the server, pass a request-like token store:\n\n    ```ts\n    convexHttpClient.setAuth(stackClientApp.getConvexHttpClientAuth({ tokenStore: requestObject }));\n    ```\n  </Step>\n\n  <Step title=\"Use Stack Auth user data in Convex functions\">\n    In Convex queries and mutations, use Stack Auth's Convex integration to read the current user.\n\n    ```ts convex/myFunctions.ts\n    import { query } from \"./_generated/server\";\n    import { stackServerApp } from \"../src/stack/server\";\n\n    export const myQuery = query({\n      handler: async (ctx, args) => {\n        const user = await stackServerApp.getPartialUser({ from: \"convex\", ctx });\n        return user;\n      },\n    });\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## Supabase Setup\n\n<Note>\n  This setup covers Supabase Row Level Security (RLS) with Stack Auth JWTs. It does not sync user data between Supabase and Stack Auth. Use Stack Auth webhooks if you need data sync.\n</Note>\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Create Supabase RLS policies\">\n    In the Supabase SQL editor, enable Row Level Security for your tables and write policies based on Supabase JWT claims.\n\n    For example, this sample table demonstrates public rows, authenticated rows, and user-owned rows:\n\n    ```sql\n    CREATE TABLE data (\n      id bigint PRIMARY KEY,\n      text text NOT NULL,\n      user_id UUID\n    );\n\n    INSERT INTO data (id, text, user_id) VALUES\n      (1, 'Everyone can see this', NULL),\n      (2, 'Only authenticated users can see this', NULL),\n      (3, 'Only user with specific id can see this', NULL);\n\n    ALTER TABLE data ENABLE ROW LEVEL SECURITY;\n\n    CREATE POLICY \"Public read\" ON \"public\".\"data\" TO public\n    USING (id = 1);\n\n    CREATE POLICY \"Authenticated access\" ON \"public\".\"data\" TO authenticated\n    USING (id = 2);\n\n    CREATE POLICY \"User access\" ON \"public\".\"data\" TO authenticated\n    USING (id = 3 AND auth.uid() = user_id);\n    ```\n  </Step>\n\n  <Step title=\"Install Stack Auth and Supabase dependencies\">\n    If you are starting from scratch with Next.js, you can use Supabase's template and then initialize Stack Auth:\n\n    ```sh\n    npx create-next-app@latest -e with-supabase stack-supabase\n    cd stack-supabase\n    npx @stackframe/stack-cli@latest init\n    ```\n\n    Add the Supabase environment variables to `.env.local`:\n\n    ```.env .env.local\n    NEXT_PUBLIC_SUPABASE_URL=<your-supabase-url>\n    NEXT_PUBLIC_SUPABASE_ANON_KEY=<your-supabase-anon-key>\n    SUPABASE_JWT_SECRET=<your-supabase-jwt-secret>\n    ```\n\n    Also add the Stack Auth environment variables:\n\n    ```.env .env.local\n    NEXT_PUBLIC_STACK_PROJECT_ID=<your-stack-project-id>\n    NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>\n    STACK_SECRET_SERVER_KEY=<your-secret-server-key>\n    ```\n  </Step>\n\n  <Step title=\"Mint Supabase JWTs from Stack Auth users\">\n    Create a server action that signs a Supabase JWT using the current Stack Auth user ID:\n\n    ```tsx utils/actions.ts\n    'use server';\n\n    import { stackServerApp } from \"@/stack/server\";\n    import * as jose from \"jose\";\n\n    export const getSupabaseJwt = async () => {\n      const user = await stackServerApp.getUser();\n\n      if (!user) {\n        return null;\n      }\n\n      const token = await new jose.SignJWT({\n        sub: user.id,\n        role: \"authenticated\",\n      })\n        .setProtectedHeader({ alg: \"HS256\" })\n        .setIssuedAt()\n        .setExpirationTime(\"1h\")\n        .sign(new TextEncoder().encode(process.env.SUPABASE_JWT_SECRET));\n\n      return token;\n    };\n    ```\n  </Step>\n\n  <Step title=\"Create a Supabase client that uses the Stack Auth JWT\">\n    Create a helper that passes the server-generated JWT to Supabase:\n\n    ```tsx utils/supabase-client.ts\n    import { createBrowserClient } from \"@supabase/ssr\";\n    import { getSupabaseJwt } from \"./actions\";\n\n    export const createSupabaseClient = () => {\n      return createBrowserClient(\n        process.env.NEXT_PUBLIC_SUPABASE_URL!,\n        process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,\n        { accessToken: async () => await getSupabaseJwt() || \"\" },\n      );\n    };\n    ```\n  </Step>\n\n  <Step title=\"Fetch Supabase data\">\n    Use the Supabase client from your UI. The RLS policies will decide which rows the user can read based on the Stack Auth user ID embedded in the Supabase JWT.\n\n    ```tsx app/page.tsx\n    'use client';\n\n    import { createSupabaseClient } from \"@/utils/supabase-client\";\n    import { useStackApp, useUser } from \"@stackframe/stack\";\n    import Link from \"next/link\";\n    import { useEffect, useState } from \"react\";\n\n    export default function Page() {\n      const app = useStackApp();\n      const user = useUser();\n      const supabase = createSupabaseClient();\n      const [data, setData] = useState<null | any[]>(null);\n\n      useEffect(() => {\n        supabase.from(\"data\").select().then(({ data }) => setData(data ?? []));\n      }, []);\n\n      const listContent = data === null\n        ? <p>Loading...</p>\n        : data.length === 0\n          ? <p>No notes found</p>\n          : data.map((note) => <li key={note.id}>{note.text}</li>);\n\n      return (\n        <div>\n          {user ? (\n            <>\n              <p>You are signed in</p>\n              <p>User ID: {user.id}</p>\n              <Link href={app.urls.signOut}>Sign Out</Link>\n            </>\n          ) : (\n            <Link href={app.urls.signIn}>Sign In</Link>\n          )}\n          <h3>Supabase data</h3>\n          <ul>{listContent}</ul>\n        </div>\n      );\n    }\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>\n\n## CLI Setup\n\nFollow these instructions to authenticate users in a command line application with Stack Auth.\n\n<Steps titleSize=\"h3\">\n  <Step title=\"Add the CLI auth template\">\n    Download the Stack Auth CLI authentication template and place it in your project. For Python apps, copy it as `stack_auth_cli_template.py`.\n\n    Example project layout:\n\n    ```text\n    my-python-app/\n    ├─ main.py\n    └─ stack_auth_cli_template.py\n    ```\n  </Step>\n\n  <Step title=\"Prompt the user to log in\">\n    Import and call `prompt_cli_login`. It opens the browser, lets the user authenticate, and returns a refresh token.\n\n    ```py main.py\n    from stack_auth_cli_template import prompt_cli_login\n\n    refresh_token = prompt_cli_login(\n      app_url=\"https://your-app-url.example.com\",\n      project_id=\"your-project-id-here\",\n      publishable_client_key=\"your-publishable-client-key-here\",\n    )\n\n    if refresh_token is None:\n      print(\"User cancelled the login process. Exiting\")\n      exit(1)\n    ```\n\n    You can store the refresh token in a local file or keychain and only prompt the user again when no saved refresh token exists.\n  </Step>\n\n  <Step title=\"Exchange the refresh token for an access token\">\n    Use the refresh token with Stack Auth's REST API to get an access token.\n\n    ```py\n    def get_access_token(refresh_token):\n      access_token_response = stack_auth_request(\n        \"post\",\n        \"/api/v1/auth/sessions/current/refresh\",\n        headers={\n          \"x-stack-refresh-token\": refresh_token,\n        },\n      )\n\n      return access_token_response[\"access_token\"]\n    ```\n  </Step>\n\n  <Step title=\"Fetch the current user\">\n    Use the access token to call the Stack Auth REST API as the logged-in user.\n\n    ```py\n    def get_user_object(access_token):\n      return stack_auth_request(\n        \"get\",\n        \"/api/v1/users/me\",\n        headers={\n          \"x-stack-access-token\": access_token,\n        },\n      )\n\n    user = get_user_object(get_access_token(refresh_token))\n    print(\"The user is logged in as\", user[\"display_name\"] or user[\"primary_email\"])\n    ```\n  </Step>\n\n  <Step title=\"Done!\" />\n</Steps>";
+export const setupToolIds = ["nextjs","react","js","tanstack-start","tanstack-query","nodejs","bun","convex","supabase","cli"];
+export const setupTabMetadata = [{"toolId":"nextjs","title":"Next.js"},{"toolId":"react","title":"React"},{"toolId":"js","title":"JS/TS"},{"toolId":"tanstack-start","title":"Tanstack Start"},{"toolId":"nodejs","title":"Node.js"},{"toolId":"bun","title":"Bun"},{"toolId":"convex","title":"Convex"},{"toolId":"supabase","title":"Supabase"},{"toolId":"cli","title":"CLI"}];
 export const unifiedAiPromptTabTitle = "Unified AI Prompt";
 
 export const GeneratedSetupPromptText = ({ className }) => (
diff --git a/packages/stack-shared/src/ai/prompts.ts b/packages/stack-shared/src/ai/prompts.ts
index 20450bad78..891ef3c386 100644
--- a/packages/stack-shared/src/ai/prompts.ts
+++ b/packages/stack-shared/src/ai/prompts.ts
@@ -18,14 +18,92 @@ export const mcpSetupPrompt = deindent`
 export const convexSetupPrompt = deindent`
   ## Convex Setup
 
-  <Note>
-    This prompt is not yet implemented.
-  </Note>
+  Follow these instructions to integrate Stack Auth with Convex.
 
   <Steps titleSize="h3">
-    <Step title="Install dependencies">
-      Install the Convex package:
+    <Step title="Create or identify the Convex app">
+      If the project does not already use Convex, initialize a Convex + Next.js app:
+
+      \`\`\`sh
+      npm create convex@latest
+      \`\`\`
+
+      When prompted, choose **Next.js** and **No auth**. Stack Auth will provide auth.
+
+      During development, run the Convex backend and the app dev server:
+
+      \`\`\`sh
+      npx convex dev
+      npm run dev
+      \`\`\`
+    </Step>
+
+    <Step title="Install and configure Stack Auth">
+      Install Stack Auth in the app. If you have not already completed the SDK setup steps above, run the setup wizard:
+
+      \`\`\`sh
+      npx @stackframe/stack-cli@latest init
+      \`\`\`
+
+      Create or select a Stack Auth project in the dashboard. Copy the Stack Auth environment variables into the app's \`.env.local\` file.
+
+      Also add the same Stack Auth environment variables to the Convex deployment environment in the Convex dashboard.
+    </Step>
+
+    <Step title="Configure Convex auth providers">
+      Create or update \`convex/auth.config.ts\`:
+
+      \`\`\`ts convex/auth.config.ts
+      import { getConvexProvidersConfig } from "@stackframe/js";
+      // or: import { getConvexProvidersConfig } from "@stackframe/react";
+      // or: import { getConvexProvidersConfig } from "@stackframe/stack";
+
+      export default {
+        providers: getConvexProvidersConfig({
+          projectId: process.env.STACK_PROJECT_ID, // or process.env.NEXT_PUBLIC_STACK_PROJECT_ID
+        }),
+      };
+      \`\`\`
+    </Step>
+
+    <Step title="Connect Convex clients to Stack Auth">
+      Update the Convex client setup so Convex receives Stack Auth tokens.
+
+      In browser JavaScript:
+
+      \`\`\`ts
+      convexClient.setAuth(stackClientApp.getConvexClientAuth({}));
+      \`\`\`
+
+      In React:
+
+      \`\`\`ts
+      convexReactClient.setAuth(stackClientApp.getConvexClientAuth({}));
+      \`\`\`
+
+      For Convex HTTP clients on the server, pass a request-like token store:
+
+      \`\`\`ts
+      convexHttpClient.setAuth(stackClientApp.getConvexHttpClientAuth({ tokenStore: requestObject }));
+      \`\`\`
+    </Step>
+
+    <Step title="Use Stack Auth user data in Convex functions">
+      In Convex queries and mutations, use Stack Auth's Convex integration to read the current user.
+
+      \`\`\`ts convex/myFunctions.ts
+      import { query } from "./_generated/server";
+      import { stackServerApp } from "../src/stack/server";
+
+      export const myQuery = query({
+        handler: async (ctx, args) => {
+          const user = await stackServerApp.getPartialUser({ from: "convex", ctx });
+          return user;
+        },
+      });
+      \`\`\`
     </Step>
+
     <Step title="Done!" />
   </Steps>
 `;
@@ -34,13 +112,159 @@ export const supabaseSetupPrompt = deindent`
   ## Supabase Setup
 
   <Note>
-    This prompt is not yet implemented.
+    This setup covers Supabase Row Level Security (RLS) with Stack Auth JWTs. It does not sync user data between Supabase and Stack Auth. Use Stack Auth webhooks if you need data sync.
   </Note>
 
   <Steps titleSize="h3">
-    <Step title="Install dependencies">
-      Install the Supabase package:
+    <Step title="Create Supabase RLS policies">
+      In the Supabase SQL editor, enable Row Level Security for your tables and write policies based on Supabase JWT claims.
+
+      For example, this sample table demonstrates public rows, authenticated rows, and user-owned rows:
+
+      \`\`\`sql
+      CREATE TABLE data (
+        id bigint PRIMARY KEY,
+        text text NOT NULL,
+        user_id UUID
+      );
+
+      INSERT INTO data (id, text, user_id) VALUES
+        (1, 'Everyone can see this', NULL),
+        (2, 'Only authenticated users can see this', NULL),
+        (3, 'Only user with specific id can see this', NULL);
+
+      ALTER TABLE data ENABLE ROW LEVEL SECURITY;
+
+      CREATE POLICY "Public read" ON "public"."data" TO public
+      USING (id = 1);
+
+      CREATE POLICY "Authenticated access" ON "public"."data" TO authenticated
+      USING (id = 2);
+
+      CREATE POLICY "User access" ON "public"."data" TO authenticated
+      USING (id = 3 AND auth.uid() = user_id);
+      \`\`\`
+    </Step>
+
+    <Step title="Install Stack Auth and Supabase dependencies">
+      If you are starting from scratch with Next.js, you can use Supabase's template and then initialize Stack Auth:
+
+      \`\`\`sh
+      npx create-next-app@latest -e with-supabase stack-supabase
+      cd stack-supabase
+      npx @stackframe/stack-cli@latest init
+      \`\`\`
+
+      Add the Supabase environment variables to \`.env.local\`:
+
+      \`\`\`.env .env.local
+      NEXT_PUBLIC_SUPABASE_URL=<your-supabase-url>
+      NEXT_PUBLIC_SUPABASE_ANON_KEY=<your-supabase-anon-key>
+      SUPABASE_JWT_SECRET=<your-supabase-jwt-secret>
+      \`\`\`
+
+      Also add the Stack Auth environment variables:
+
+      \`\`\`.env .env.local
+      NEXT_PUBLIC_STACK_PROJECT_ID=<your-stack-project-id>
+      NEXT_PUBLIC_STACK_PUBLISHABLE_CLIENT_KEY=<your-publishable-client-key>
+      STACK_SECRET_SERVER_KEY=<your-secret-server-key>
+      \`\`\`
+    </Step>
+
+    <Step title="Mint Supabase JWTs from Stack Auth users">
+      Create a server action that signs a Supabase JWT using the current Stack Auth user ID:
+
+      \`\`\`tsx utils/actions.ts
+      'use server';
+
+      import { stackServerApp } from "@/stack/server";
+      import * as jose from "jose";
+
+      export const getSupabaseJwt = async () => {
+        const user = await stackServerApp.getUser();
+
+        if (!user) {
+          return null;
+        }
+
+        const token = await new jose.SignJWT({
+          sub: user.id,
+          role: "authenticated",
+        })
+          .setProtectedHeader({ alg: "HS256" })
+          .setIssuedAt()
+          .setExpirationTime("1h")
+          .sign(new TextEncoder().encode(process.env.SUPABASE_JWT_SECRET));
+
+        return token;
+      };
+      \`\`\`
+    </Step>
+
+    <Step title="Create a Supabase client that uses the Stack Auth JWT">
+      Create a helper that passes the server-generated JWT to Supabase:
+
+      \`\`\`tsx utils/supabase-client.ts
+      import { createBrowserClient } from "@supabase/ssr";
+      import { getSupabaseJwt } from "./actions";
+
+      export const createSupabaseClient = () => {
+        return createBrowserClient(
+          process.env.NEXT_PUBLIC_SUPABASE_URL!,
+          process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
+          { accessToken: async () => await getSupabaseJwt() || "" },
+        );
+      };
+      \`\`\`
+    </Step>
+
+    <Step title="Fetch Supabase data">
+      Use the Supabase client from your UI. The RLS policies will decide which rows the user can read based on the Stack Auth user ID embedded in the Supabase JWT.
+
+      \`\`\`tsx app/page.tsx
+      'use client';
+
+      import { createSupabaseClient } from "@/utils/supabase-client";
+      import { useStackApp, useUser } from "@stackframe/stack";
+      import Link from "next/link";
+      import { useEffect, useState } from "react";
+
+      export default function Page() {
+        const app = useStackApp();
+        const user = useUser();
+        const supabase = createSupabaseClient();
+        const [data, setData] = useState<null | any[]>(null);
+
+        useEffect(() => {
+          supabase.from("data").select().then(({ data }) => setData(data ?? []));
+        }, []);
+
+        const listContent = data === null
+          ? <p>Loading...</p>
+          : data.length === 0
+            ? <p>No notes found</p>
+            : data.map((note) => <li key={note.id}>{note.text}</li>);
+
+        return (
+          <div>
+            {user ? (
+              <>
+                <p>You are signed in</p>
+                <p>User ID: {user.id}</p>
+                <Link href={app.urls.signOut}>Sign Out</Link>
+              </>
+            ) : (
+              <Link href={app.urls.signIn}>Sign In</Link>
+            )}
+            <h3>Supabase data</h3>
+            <ul>{listContent}</ul>
+          </div>
+        );
+      }
+      \`\`\`
     </Step>
+
     <Step title="Done!" />
   </Steps>
 `;
@@ -48,14 +272,76 @@ export const supabaseSetupPrompt = deindent`
 export const cliSetupPrompt = deindent`
   ## CLI Setup
 
-  <Note>
-    This prompt is not yet implemented.
-  </Note>
+  Follow these instructions to authenticate users in a command line application with Stack Auth.
 
   <Steps titleSize="h3">
-    <Step title="Install dependencies">
-      Install the CLI package:
+    <Step title="Add the CLI auth template">
+      Download the Stack Auth CLI authentication template and place it in your project. For Python apps, copy it as \`stack_auth_cli_template.py\`.
+
+      Example project layout:
+
+      \`\`\`text
+      my-python-app/
+      ├─ main.py
+      └─ stack_auth_cli_template.py
+      \`\`\`
     </Step>
+
+    <Step title="Prompt the user to log in">
+      Import and call \`prompt_cli_login\`. It opens the browser, lets the user authenticate, and returns a refresh token.
+
+      \`\`\`py main.py
+      from stack_auth_cli_template import prompt_cli_login
+
+      refresh_token = prompt_cli_login(
+        app_url="https://your-app-url.example.com",
+        project_id="your-project-id-here",
+        publishable_client_key="your-publishable-client-key-here",
+      )
+
+      if refresh_token is None:
+        print("User cancelled the login process. Exiting")
+        exit(1)
+      \`\`\`
+
+      You can store the refresh token in a local file or keychain and only prompt the user again when no saved refresh token exists.
+    </Step>
+
+    <Step title="Exchange the refresh token for an access token">
+      Use the refresh token with Stack Auth's REST API to get an access token.
+
+      \`\`\`py
+      def get_access_token(refresh_token):
+        access_token_response = stack_auth_request(
+          "post",
+          "/api/v1/auth/sessions/current/refresh",
+          headers={
+            "x-stack-refresh-token": refresh_token,
+          },
+        )
+
+        return access_token_response["access_token"]
+      \`\`\`
+    </Step>
+
+    <Step title="Fetch the current user">
+      Use the access token to call the Stack Auth REST API as the logged-in user.
+
+      \`\`\`py
+      def get_user_object(access_token):
+        return stack_auth_request(
+          "get",
+          "/api/v1/users/me",
+          headers={
+            "x-stack-access-token": access_token,
+          },
+        )
+
+      user = get_user_object(get_access_token(refresh_token))
+      print("The user is logged in as", user["display_name"] or user["primary_email"])
+      \`\`\`
+    </Step>
+
     <Step title="Done!" />
   </Steps>
 `;
diff --git a/scripts/generate-setup-prompt-docs.ts b/scripts/generate-setup-prompt-docs.ts
index bc0cf60b87..25bbb11172 100644
--- a/scripts/generate-setup-prompt-docs.ts
+++ b/scripts/generate-setup-prompt-docs.ts
@@ -1,5 +1,5 @@
 import path from "path";
-import { aiSetupPrompt, cliSetupPrompt, convexSetupPrompt, getSdkSetupPrompt, mcpSetupPrompt, supabaseSetupPrompt } from "../packages/stack-shared/src/ai/prompts";
+import { aiSetupPrompt, cliSetupPrompt, convexSetupPrompt, getSdkSetupPrompt, supabaseSetupPrompt } from "../packages/stack-shared/src/ai/prompts";
 import { deindent } from "../packages/stack-shared/src/utils/strings";
 import { writeFileSyncIfChanged } from "./utils";
 
@@ -125,7 +125,7 @@ const sdkSetupTools: Record<string, SdkSetupTool> = {
     }],
     extraFeatures: [],
   },
-  mcp: {
+  /*mcp: {
     label: "MCP",
     where: ["other"],
     imageUrl: "/images/setup-tools/mcp.svg",
@@ -135,7 +135,7 @@ const sdkSetupTools: Record<string, SdkSetupTool> = {
       mdContent: mcpSetupPrompt,
     }],
     extraFeatures: [],
-  },
+  },*/
 };
 
 function slugify(value: string) {

From 114b1d313b894ea5f004cff542ae1a8234e63e8a Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Wed, 6 May 2026 10:15:17 -0700
Subject: [PATCH 11/13] Commit OpenAPI schemas

---
 docs-mintlify/.gitignore            |     1 -
 docs-mintlify/openapi/admin.json    | 10993 ++++++++++++++++++++++++++
 docs-mintlify/openapi/client.json   |  6566 +++++++++++++++
 docs-mintlify/openapi/server.json   | 10275 ++++++++++++++++++++++++
 docs-mintlify/openapi/webhooks.json |  1100 +++
 package.json                        |     2 +-
 6 files changed, 28935 insertions(+), 2 deletions(-)
 create mode 100644 docs-mintlify/openapi/admin.json
 create mode 100644 docs-mintlify/openapi/client.json
 create mode 100644 docs-mintlify/openapi/server.json
 create mode 100644 docs-mintlify/openapi/webhooks.json

diff --git a/docs-mintlify/.gitignore b/docs-mintlify/.gitignore
index fabd380778..c4c4ffc6aa 100644
--- a/docs-mintlify/.gitignore
+++ b/docs-mintlify/.gitignore
@@ -1,2 +1 @@
-openapi/
 *.zip
diff --git a/docs-mintlify/openapi/admin.json b/docs-mintlify/openapi/admin.json
new file mode 100644
index 0000000000..4eec7eb9e1
--- /dev/null
+++ b/docs-mintlify/openapi/admin.json
@@ -0,0 +1,10993 @@
+{
+  "openapi": "3.1.0",
+  "info": {
+    "title": "Stack REST API",
+    "version": "1.0.0"
+  },
+  "servers": [
+    {
+      "url": "https://api.stack-auth.com/api/v1",
+      "description": "Stack REST API"
+    }
+  ],
+  "paths": {
+    "/": {
+      "get": {
+        "summary": "/api/v1",
+        "description": "Returns a human-readable message with some useful information about the API.",
+        "parameters": [
+          {
+            "name": "X-Stack-Project-Id",
+            "in": "header",
+            "schema": {
+              "type": "string",
+              "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+              "description": "The unique identifier of the project"
+            },
+            "description": "The unique identifier of the project",
+            "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+            "required": false
+          },
+          {
+            "name": "X-Stack-Branch-Id",
+            "in": "header",
+            "schema": {
+              "type": "string",
+              "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+              "description": "The unique identifier of the project"
+            },
+            "description": "The unique identifier of the project",
+            "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+            "required": false
+          },
+          {
+            "name": "X-Stack-Access-Type",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Access-Token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Refresh-Token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Publishable-Client-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Secret-Server-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Super-Secret-Admin-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [],
+        "x-full-url": "https://api.stack-auth.com/api/v1/",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string",
+                  "example": "Welcome to the Stack API endpoint! Please refer to the documentation at https://docs.stack-auth.com/\n\nAuthentication: None"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-chat/{threadId}": {
+      "patch": {
+        "summary": "Save a chat message",
+        "description": "Save a chat message",
+        "parameters": [
+          {
+            "name": "threadId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "message": {
+                    "type": "object"
+                  }
+                },
+                "required": [
+                  "message"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "AI Chat"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-chat/{threadId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/anonymous/sign-up": {
+      "post": {
+        "summary": "Sign up anonymously",
+        "description": "Create a new anonymous account with no email",
+        "parameters": [],
+        "tags": [
+          "Anonymous"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/anonymous/sign-up",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys": {
+      "get": {
+        "summary": "List user API keys",
+        "description": "List all user API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  }
+                },
+                "required": [
+                  "description",
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys": {
+      "get": {
+        "summary": "List team API keys",
+        "description": "List all team API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create team API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "team_id": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "description",
+                  "team_id"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get user API key details",
+        "description": "Get details of a specific user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update user API key",
+        "description": "Update an user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "revoked": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys/check": {
+      "post": {
+        "summary": "Check team API key validity",
+        "description": "Validate a team API key",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "api_key": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "api_key"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/check",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys/check": {
+      "post": {
+        "summary": "Check user API key validity",
+        "description": "Validate a user API key",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "api_key": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "api_key"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/check",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get team API key details",
+        "description": "Get details of a specific team API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update team API key",
+        "description": "Update an team API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "revoked": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli": {
+      "post": {
+        "summary": "Initiate CLI authentication",
+        "description": "Create a new CLI authentication session and return polling and login codes",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "expires_in_millis": {
+                    "type": "number",
+                    "default": 7200000
+                  },
+                  "anon_refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "polling_code": {
+                      "type": "string"
+                    },
+                    "login_code": {
+                      "type": "string"
+                    },
+                    "expires_at": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "polling_code",
+                    "login_code",
+                    "expires_at"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli/poll": {
+      "post": {
+        "summary": "Poll CLI authentication status",
+        "description": "Check the status of a CLI authentication session using the polling code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "polling_code": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "polling_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/poll",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
+                  ]
+                }
+              }
+            }
+          },
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli/complete": {
+      "post": {
+        "summary": "Complete CLI authentication",
+        "description": "Inspect, claim, or complete a CLI authentication session",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "login_code": {
+                    "type": "string"
+                  },
+                  "mode": {
+                    "type": "string",
+                    "default": "complete"
+                  },
+                  "refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "login_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/connected-accounts/{user_id}": {
+      "get": {
+        "summary": "List connected accounts",
+        "description": "Retrieves a list of all connected accounts for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Connected Accounts"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/connected-accounts/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "provider": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "provider_account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "provider",
+                          "provider_account_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels": {
+      "get": {
+        "summary": "List contact channels",
+        "description": "Retrieves a list of all contact channels for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the contact channel"
+                          },
+                          "value": {
+                            "type": "string",
+                            "example": "johndoe@example.com",
+                            "description": "The value of the contact channel. For email, this should be a valid email address."
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "email",
+                            "description": "The type of the contact channel. Currently only \"email\" is supported."
+                          },
+                          "used_for_auth": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                          },
+                          "is_verified": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                          },
+                          "is_primary": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "id",
+                          "value",
+                          "type",
+                          "used_for_auth",
+                          "is_verified",
+                          "is_primary"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a contact channel",
+        "description": "Add a new contact channel for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "is_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "value": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The value of the contact channel. For email, this should be a valid email address."
+                  },
+                  "type": {
+                    "type": "string",
+                    "example": "email",
+                    "description": "The type of the contact channel. Currently only \"email\" is supported."
+                  },
+                  "used_for_auth": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                  },
+                  "is_primary": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                  }
+                },
+                "required": [
+                  "user_id",
+                  "value",
+                  "type",
+                  "used_for_auth"
+                ],
+                "example": {
+                  "is_verified": true,
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                  "value": "johndoe@example.com",
+                  "type": "email",
+                  "used_for_auth": true,
+                  "is_primary": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/verify": {
+      "post": {
+        "summary": "Verify an email",
+        "description": "Verify an email address of a user",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/{user_id}/{contact_channel_id}": {
+      "get": {
+        "summary": "Get a contact channel",
+        "description": "Retrieves a specific contact channel by the user ID and the contact channel ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete a contact channel",
+        "description": "Removes a contact channel for a given user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a contact channel",
+        "description": "Updates an existing contact channel. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "is_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                  },
+                  "value": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The value of the contact channel. For email, this should be a valid email address."
+                  },
+                  "type": {
+                    "type": "string",
+                    "example": "email",
+                    "description": "The type of the contact channel. Currently only \"email\" is supported."
+                  },
+                  "used_for_auth": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                  },
+                  "is_primary": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                  }
+                },
+                "example": {
+                  "is_verified": true,
+                  "value": "johndoe@example.com",
+                  "type": "email",
+                  "used_for_auth": true,
+                  "is_primary": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/verify/check-code": {
+      "post": {
+        "summary": "Check email verification code",
+        "description": "Check if an email verification code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/{user_id}/{contact_channel_id}/send-verification-code": {
+      "post": {
+        "summary": "Send contact channel verification code",
+        "description": "Send a code to the user's contact channel for verifying the contact channel.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "The user to send the verification code to."
+            },
+            "description": "The user to send the verification code to.",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "The contact channel to send the verification code to."
+            },
+            "description": "The contact channel to send the verification code to.",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/email-verification",
+                    "description": "The base callback URL to construct a verification link for the verification e-mail. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/contact-channels/verify` endpoint."
+                  }
+                },
+                "required": [
+                  "callback_url"
+                ],
+                "example": {
+                  "callback_url": "https://example.com/handler/email-verification"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}/send-verification-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/data-vault/stores/{id}/set": {
+      "post": {
+        "summary": "Store encrypted value in data vault",
+        "description": "Stores a hashed key and encrypted value in the data vault for a specific store",
+        "parameters": [
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "hashed_key": {
+                    "type": "string"
+                  },
+                  "encrypted_value": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "hashed_key",
+                  "encrypted_value"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "DataVault"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/set",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/data-vault/stores/{id}/get": {
+      "post": {
+        "summary": "Retrieve encrypted value from data vault",
+        "description": "Retrieves and decrypts a value from the data vault using a hashed key",
+        "parameters": [
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "hashed_key": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "hashed_key"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "DataVault"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/get",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "encrypted_value": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "encrypted_value"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/send-email": {
+      "post": {
+        "summary": "Send email",
+        "description": "Send an email to a list of users. The content field should contain either {html} for HTML emails, {template_id, variables} for template-based emails, or {draft_id} for a draft email.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/send-email",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "results": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "user_id"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "results"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/render-email": {
+      "post": {
+        "summary": "Render email theme",
+        "description": "Renders HTML content using the specified email theme",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/render-email",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "html": {
+                      "type": "string"
+                    },
+                    "subject": {
+                      "type": "string"
+                    },
+                    "notification_category": {
+                      "type": "string"
+                    },
+                    "editable_regions": {
+                      "type": "object"
+                    }
+                  },
+                  "required": [
+                    "html"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/outbox": {
+      "get": {
+        "summary": "List email outbox",
+        "description": "Lists all emails in the outbox with optional filtering by status or simple_status.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "limit",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The maximum number of items to return. Maximum allowed is 100"
+            },
+            "description": "The maximum number of items to return. Maximum allowed is 100",
+            "required": false
+          },
+          {
+            "name": "cursor",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The cursor to start the result set from (email ID)"
+            },
+            "description": "The cursor to start the result set from (email ID)",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object"
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/capacity-boost": {
+      "post": {
+        "summary": "Activate email capacity boost",
+        "description": "Temporarily increases email capacity by 4x for 4 hours.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/capacity-boost",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "expires_at": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "expires_at"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/delivery-info": {
+      "get": {
+        "summary": "Get email delivery info",
+        "description": "Returns delivery statistics and capacity information for the current tenancy.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/delivery-info",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "stats": {
+                      "type": "object",
+                      "properties": {
+                        "hour": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        },
+                        "day": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        },
+                        "week": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        },
+                        "month": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "hour",
+                        "day",
+                        "week",
+                        "month"
+                      ]
+                    },
+                    "capacity": {
+                      "type": "object",
+                      "properties": {
+                        "rate_per_second": {
+                          "type": "number"
+                        },
+                        "boost_multiplier": {
+                          "type": "number"
+                        },
+                        "penalty_factor": {
+                          "type": "number"
+                        },
+                        "is_boost_active": {
+                          "type": "boolean"
+                        },
+                        "boost_expires_at": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "rate_per_second",
+                        "boost_multiplier",
+                        "penalty_factor",
+                        "is_boost_active"
+                      ]
+                    }
+                  },
+                  "required": [
+                    "stats",
+                    "capacity"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/outbox/{id}": {
+      "get": {
+        "summary": "Get email outbox entry",
+        "description": "Gets a single email from the outbox by ID.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update email outbox entry",
+        "description": "Updates an email in the outbox. Can be used to edit email content, pause/resume, or cancel emails. Only emails in editable states (`paused`, `preparing`, `rendering`, `render-error`, `scheduled`, `queued`, `server-error`) can be modified.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "tsx_source": {
+                    "type": "string"
+                  },
+                  "theme_id": {
+                    "type": "string"
+                  },
+                  "to": {
+                    "type": "object"
+                  },
+                  "variables": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  },
+                  "skip_deliverability_check": {
+                    "type": "boolean"
+                  },
+                  "scheduled_at_millis": {
+                    "type": "number"
+                  },
+                  "is_paused": {
+                    "type": "boolean"
+                  },
+                  "cancel": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/notification-preference/{user_id}": {
+      "get": {
+        "summary": "List notification preferences",
+        "description": "Get all notification preferences for a user, showing which notification categories are enabled or disabled.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "notification_category_id": {
+                            "type": "string"
+                          },
+                          "notification_category_name": {
+                            "type": "string"
+                          },
+                          "enabled": {
+                            "type": "boolean"
+                          },
+                          "can_disable": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "notification_category_id",
+                          "notification_category_name",
+                          "enabled",
+                          "can_disable"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/notification-preference/{user_id}/{notification_category_id}": {
+      "patch": {
+        "summary": "Update notification preference",
+        "description": "Enable or disable a specific notification category for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "notification_category_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "enabled": {
+                    "type": "boolean"
+                  }
+                },
+                "required": [
+                  "enabled"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}/{notification_category_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "notification_category_id": {
+                      "type": "string"
+                    },
+                    "notification_category_name": {
+                      "type": "string"
+                    },
+                    "enabled": {
+                      "type": "boolean"
+                    },
+                    "can_disable": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "notification_category_id",
+                    "notification_category_name",
+                    "enabled",
+                    "can_disable"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feedback": {
+      "post": {
+        "summary": "Submit support feedback",
+        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "name": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string"
+                  },
+                  "message": {
+                    "type": "string"
+                  },
+                  "feedback_type": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "message"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feature-requests": {
+      "get": {
+        "summary": "Get feature requests",
+        "description": "Fetch all feature requests with upvote status for the current user",
+        "parameters": [],
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "posts": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "content": {
+                            "type": "string"
+                          },
+                          "upvotes": {
+                            "type": "number"
+                          },
+                          "date": {
+                            "type": "string"
+                          },
+                          "postStatus": {
+                            "type": "object",
+                            "properties": {
+                              "name": {
+                                "type": "string"
+                              },
+                              "color": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "name",
+                              "color"
+                            ]
+                          },
+                          "userHasUpvoted": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "upvotes",
+                          "date",
+                          "userHasUpvoted"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "posts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create feature request",
+        "description": "Create a new feature request",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "content": {
+                    "type": "string"
+                  },
+                  "category": {
+                    "type": "string"
+                  },
+                  "tags": {
+                    "type": "array",
+                    "items": {
+                      "type": "string"
+                    }
+                  },
+                  "commentsAllowed": {
+                    "type": "boolean"
+                  },
+                  "customInputValues": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  }
+                },
+                "required": [
+                  "title"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/preview/create-project": {
+      "post": {
+        "summary": "Create a preview project",
+        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "project_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "project_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feature-requests/{featureRequestId}/upvote": {
+      "post": {
+        "summary": "Toggle upvote on feature request",
+        "description": "Toggle upvote on a feature request for the current user",
+        "parameters": [
+          {
+            "name": "featureRequestId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests/{featureRequestId}/upvote",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "upvoted": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers": {
+      "get": {
+        "summary": "List OAuth providers",
+        "description": "Retrieves a list of all OAuth providers for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the OAuth provider"
+                          },
+                          "email": {
+                            "type": "string",
+                            "example": "test@gmail.com",
+                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                          },
+                          "provider_config_id": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                          },
+                          "allow_sign_in": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                          },
+                          "allow_connected_accounts": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                          }
+                        },
+                        "required": [
+                          "account_id",
+                          "user_id",
+                          "id",
+                          "provider_config_id",
+                          "type",
+                          "allow_sign_in",
+                          "allow_connected_accounts"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create an OAuth provider",
+        "description": "Add a new OAuth provider for a user.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "provider_config_id": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string",
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  },
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  }
+                },
+                "required": [
+                  "user_id",
+                  "provider_config_id",
+                  "allow_sign_in",
+                  "allow_connected_accounts",
+                  "account_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                  "email": "test@gmail.com",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true,
+                  "account_id": "google-account-id-12345"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers/{user_id}/{provider_id}": {
+      "get": {
+        "summary": "Get an OAuth provider",
+        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete an OAuth provider",
+        "description": "Removes an OAuth provider for a given user.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update an OAuth provider",
+        "description": "Updates an existing OAuth provider. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  },
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  }
+                },
+                "example": {
+                  "email": "test@gmail.com",
+                  "account_id": "google-account-id-12345",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/token": {
+      "post": {
+        "summary": "OAuth token endpoints",
+        "description": "This endpoint is used to exchange an authorization code or refresh token for an access token.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "grant_type": {
+                    "type": "string"
+                  },
+                  "client_id": {
+                    "type": "string"
+                  },
+                  "client_secret": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "grant_type"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/token",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/cross-domain/authorize": {
+      "post": {
+        "summary": "Create cross-domain auth handoff redirect",
+        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
+        "parameters": [
+          {
+            "name": "x-stack-publishable-client-key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "redirect_uri": {
+                    "type": "string"
+                  },
+                  "state": {
+                    "type": "string"
+                  },
+                  "code_challenge": {
+                    "type": "string"
+                  },
+                  "code_challenge_method": {
+                    "type": "string",
+                    "default": "S256"
+                  },
+                  "after_callback_redirect_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "redirect_uri",
+                  "state",
+                  "code_challenge"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "redirect_url": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "redirect_url"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/authorize/{provider_id}": {
+      "get": {
+        "summary": "OAuth authorize endpoint",
+        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+        "parameters": [
+          {
+            "name": "type",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "authenticate"
+            },
+            "required": false
+          },
+          {
+            "name": "token",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": ""
+            },
+            "required": false
+          },
+          {
+            "name": "provider_scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "error_redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "after_callback_redirect_url",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "stack_response_mode",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "redirect"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_token",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_phase",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_unavailable",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "client_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "client_secret",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "state",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "grant_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge_method",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "response_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "location": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "location"
+                  ]
+                }
+              }
+            }
+          },
+          "307": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations": {
+      "get": {
+        "summary": "List AI conversations",
+        "description": "List AI conversations for the current user filtered by project",
+        "parameters": [
+          {
+            "name": "projectId",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "conversations": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "projectId": {
+                            "type": "string"
+                          },
+                          "updatedAt": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "projectId",
+                          "updatedAt"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "conversations"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create AI conversation",
+        "description": "Create a new AI conversation with optional initial messages",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "projectId": {
+                    "type": "string"
+                  },
+                  "messages": {
+                    "type": "array",
+                    "items": {
+                      "type": "object",
+                      "properties": {
+                        "role": {
+                          "type": "string"
+                        },
+                        "content": {
+                          "type": "object"
+                        }
+                      },
+                      "required": [
+                        "role",
+                        "content"
+                      ]
+                    }
+                  }
+                },
+                "required": [
+                  "title",
+                  "projectId",
+                  "messages"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "title": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "title"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations/{conversationId}": {
+      "get": {
+        "summary": "Get AI conversation",
+        "description": "Fetch a single AI conversation with all its messages",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "title": {
+                      "type": "string"
+                    },
+                    "projectId": {
+                      "type": "string"
+                    },
+                    "messages": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "role": {
+                            "type": "string"
+                          },
+                          "content": {
+                            "type": "object"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "role",
+                          "content"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "title",
+                    "projectId",
+                    "messages"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete AI conversation",
+        "description": "Delete an AI conversation and all its messages",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update AI conversation",
+        "description": "Update the title of an AI conversation",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "title"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations/{conversationId}/messages": {
+      "put": {
+        "summary": "Replace conversation messages",
+        "description": "Replace all messages in a conversation",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "messages": {
+                    "type": "array",
+                    "items": {
+                      "type": "object",
+                      "properties": {
+                        "role": {
+                          "type": "string"
+                        },
+                        "content": {
+                          "type": "object"
+                        }
+                      },
+                      "required": [
+                        "role",
+                        "content"
+                      ]
+                    }
+                  }
+                },
+                "required": [
+                  "messages"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}/messages",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/send-sign-in-code": {
+      "post": {
+        "summary": "Send sign-in code",
+        "description": "Send a code to the user's email address for sign-in.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/magic-link-callback",
+                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/magic-link-callback"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "nonce": {
+                      "type": "string",
+                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
+                    }
+                  },
+                  "required": [
+                    "nonce"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/sign-in": {
+      "post": {
+        "summary": "Sign in with a code",
+        "description": "",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/mfa/sign-in": {
+      "post": {
+        "summary": "MFA sign in",
+        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string"
+                  },
+                  "totp": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "type",
+                  "totp",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/sign-in/check-code": {
+      "post": {
+        "summary": "Check sign in code",
+        "description": "Check if a sign in code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/update": {
+      "post": {
+        "summary": "Update password",
+        "description": "Update the password of the current user, requires the old password",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "old_password": {
+                    "type": "string"
+                  },
+                  "new_password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "old_password",
+                  "new_password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/set": {
+      "post": {
+        "summary": "Set password",
+        "description": "Set a new password for the current user",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/set",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/sign-in": {
+      "post": {
+        "summary": "Sign in with email and password",
+        "description": "Sign in to an account with email and password",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string"
+                  },
+                  "password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/sign-up": {
+      "post": {
+        "summary": "Sign up with email and password",
+        "description": "Create a new account with email and password",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "password": {
+                    "type": "string"
+                  },
+                  "verification_callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/email-verification",
+                    "description": "The base callback URL to construct a verification link for the verification e-mail. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/contact-channels/verify` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "password"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "verification_callback_url": "https://example.com/handler/email-verification"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/sign-up",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/send-reset-code": {
+      "post": {
+        "summary": "Send reset password code",
+        "description": "Send a code to the user's email address for resetting the password.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string"
+                  },
+                  "callback_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset": {
+      "post": {
+        "summary": "Reset password with a code",
+        "description": "Reset password with a code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "password",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset/check-code": {
+      "post": {
+        "summary": "Check reset password code",
+        "description": "Check if a reset password code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/validate-code": {
+      "post": {
+        "summary": "Validate Purchase Code",
+        "description": "Validates a purchase verification code and returns purchase details including available prices.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion"
+                  }
+                },
+                "required": [
+                  "full_code"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "return_url": "https://myapp.com/purchase-success"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "product": {
+                      "type": "object",
+                      "properties": {
+                        "display_name": {
+                          "type": "string"
+                        },
+                        "customer_type": {
+                          "type": "string"
+                        },
+                        "free_trial": {
+                          "type": "array",
+                          "items": {
+                            "type": "number"
+                          }
+                        },
+                        "server_only": {
+                          "type": "boolean",
+                          "default": true
+                        },
+                        "stackable": {
+                          "type": "boolean",
+                          "default": false
+                        },
+                        "prices": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "included_items": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                        }
+                      },
+                      "required": [
+                        "display_name",
+                        "customer_type"
+                      ]
+                    },
+                    "stripe_account_id": {
+                      "type": "string"
+                    },
+                    "project_id": {
+                      "type": "string"
+                    },
+                    "project_logo_url": {
+                      "type": "string"
+                    },
+                    "already_bought_non_stackable": {
+                      "type": "boolean"
+                    },
+                    "conflicting_products": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "product_id": {
+                            "type": "string"
+                          },
+                          "display_name": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "product_id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "test_mode": {
+                      "type": "boolean"
+                    },
+                    "charges_enabled": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "stripe_account_id",
+                    "project_id",
+                    "already_bought_non_stackable",
+                    "conflicting_products",
+                    "test_mode",
+                    "charges_enabled"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/purchase-session": {
+      "post": {
+        "summary": "Create Purchase Session",
+        "description": "Creates a purchase session for completing a purchase.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "price_id": {
+                    "type": "string",
+                    "example": "price_1234567890abcdef",
+                    "description": "The Stack auth price ID to purchase"
+                  },
+                  "quantity": {
+                    "type": "number",
+                    "example": 1,
+                    "description": "The quantity to purchase",
+                    "default": 1
+                  }
+                },
+                "required": [
+                  "full_code",
+                  "price_id"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "price_id": "price_1234567890abcdef",
+                  "quantity": 1
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "client_secret": {
+                      "type": "string",
+                      "example": "1234567890abcdef_secret_xyz123",
+                      "description": "The Stripe client secret for completing the payment"
+                    }
+                  },
+                  "required": [
+                    "client_secret"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/create-purchase-url": {
+      "post": {
+        "summary": "Create Purchase URL",
+        "description": "Creates a secure checkout URL for purchasing a product.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "customer_type": {
+                    "type": "string",
+                    "example": "user",
+                    "description": "The type of customer making the purchase"
+                  },
+                  "customer_id": {
+                    "type": "string",
+                    "example": "user_1234567890abcdef",
+                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
+                  },
+                  "product_id": {
+                    "type": "string",
+                    "example": "prod_premium_monthly",
+                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
+                  },
+                  "product_inline": {
+                    "type": "object",
+                    "properties": {
+                      "display_name": {
+                        "type": "string"
+                      },
+                      "customer_type": {
+                        "type": "string"
+                      },
+                      "free_trial": {
+                        "type": "array",
+                        "items": {
+                          "type": "number"
+                        }
+                      },
+                      "server_only": {
+                        "type": "boolean",
+                        "default": true
+                      },
+                      "stackable": {
+                        "type": "boolean",
+                        "default": false
+                      },
+                      "prices": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "included_items": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                      }
+                    },
+                    "required": [
+                      "display_name",
+                      "customer_type"
+                    ],
+                    "description": "Inline product definition. Either this or product_id should be given."
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
+                  }
+                },
+                "required": [
+                  "customer_type",
+                  "customer_id"
+                ],
+                "example": {
+                  "customer_type": "user",
+                  "customer_id": "user_1234567890abcdef",
+                  "product_id": "prod_premium_monthly",
+                  "return_url": "https://myapp.com/purchase-success"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "url": {
+                      "type": "string",
+                      "description": "The secure checkout URL for completing the purchase"
+                    }
+                  },
+                  "required": [
+                    "url"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
+      "get": {
+        "summary": "Get Item",
+        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
+        "parameters": [
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to retrieve"
+            },
+            "description": "The ID of the item to retrieve",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "credits",
+                      "description": "The ID of the item"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "API Credits",
+                      "description": "The human-readable name of the item"
+                    },
+                    "quantity": {
+                      "type": "number",
+                      "example": 1000,
+                      "description": "The current quantity of the item (can be negative)"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name",
+                    "quantity"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity": {
+      "post": {
+        "summary": "Update Item Quantity",
+        "description": "Updates the quantity of an item for a customer. Can increase or decrease quantities, with optional expiration and negative balance control.",
+        "parameters": [
+          {
+            "name": "allow_negative",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "false",
+              "description": "Whether to allow the quantity to go negative"
+            },
+            "description": "Whether to allow the quantity to go negative",
+            "required": true
+          },
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to update"
+            },
+            "description": "The ID of the item to update",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "delta": {
+                    "type": "number",
+                    "example": 100,
+                    "description": "The amount to change the quantity by (positive to increase, negative to decrease)"
+                  },
+                  "expires_at": {
+                    "type": "string",
+                    "example": "2024-12-31T23:59:59Z",
+                    "description": "Optional expiration date for this quantity change (ISO 8601 format)"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Monthly subscription renewal",
+                    "description": "Optional description for this quantity change"
+                  }
+                },
+                "required": [
+                  "delta"
+                ],
+                "example": {
+                  "delta": 100,
+                  "expires_at": "2024-12-31T23:59:59Z",
+                  "description": "Monthly subscription renewal"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permission-definitions": {
+      "get": {
+        "summary": "List team permission definitions",
+        "description": "Query and filter the permission with team_id, user_id, and permission_id (the equivalent of listing permissions on the Stack dashboard)",
+        "parameters": [],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "description": {
+                            "type": "string",
+                            "example": "Read secret information",
+                            "description": "A human-readable description of the permission"
+                          },
+                          "contained_permission_ids": {
+                            "type": "array",
+                            "items": {
+                              "type": "string",
+                              "example": "read_secret_info",
+                              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                            },
+                            "example": [
+                              "read_public_info"
+                            ],
+                            "description": "The IDs of the permissions that are contained in this permission"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "contained_permission_ids"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a new team permission definition",
+        "description": "Create a new permission definition (the equivalent of creating a new permission on the Stack dashboard)",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "id": {
+                    "type": "string",
+                    "example": "read_secret_info",
+                    "description": "The permission ID used to uniquely identify a permission. Can only contain lowercase letters, numbers, \":\", and \"_\" characters"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Read secret information",
+                    "description": "A human-readable description of the permission"
+                  },
+                  "contained_permission_ids": {
+                    "type": "array",
+                    "items": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "example": [
+                      "read_public_info"
+                    ],
+                    "description": "The IDs of the permissions that are contained in this permission"
+                  }
+                },
+                "required": [
+                  "id"
+                ],
+                "example": {
+                  "id": "read_secret_info",
+                  "description": "Read secret information",
+                  "contained_permission_ids": [
+                    "read_public_info"
+                  ]
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "description": {
+                      "type": "string",
+                      "example": "Read secret information",
+                      "description": "A human-readable description of the permission"
+                    },
+                    "contained_permission_ids": {
+                      "type": "array",
+                      "items": {
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                      },
+                      "example": [
+                        "read_public_info"
+                      ],
+                      "description": "The IDs of the permissions that are contained in this permission"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "contained_permission_ids"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permissions": {
+      "get": {
+        "summary": "List team permissions of a user",
+        "description": "Query and filter the permission with `team_id`, `user_id`, and `permission_id`. Note that this might contain the permissions with the same permission ID across different teams and users. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
+              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
+            },
+            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permissions": {
+      "get": {
+        "summary": "List project permissions",
+        "description": "Query and filter the permission with `user_id` and `permission_id`. `(user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permission-definitions": {
+      "get": {
+        "summary": "List project permission definitions",
+        "description": "Query and filter project permission definitions (the equivalent of listing permissions on the Stack dashboard)",
+        "parameters": [],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "description": {
+                            "type": "string",
+                            "example": "Read secret information",
+                            "description": "A human-readable description of the permission"
+                          },
+                          "contained_permission_ids": {
+                            "type": "array",
+                            "items": {
+                              "type": "string",
+                              "example": "read_secret_info",
+                              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                            },
+                            "example": [
+                              "read_public_info"
+                            ],
+                            "description": "The IDs of the permissions that are contained in this permission"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "contained_permission_ids"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a new project permission definition",
+        "description": "Create a new project permission definition (the equivalent of creating a new permission on the Stack dashboard)",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "id": {
+                    "type": "string",
+                    "example": "read_secret_info",
+                    "description": "The permission ID used to uniquely identify a permission. Can only contain lowercase letters, numbers, \":\", and \"_\" characters"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Read secret information",
+                    "description": "A human-readable description of the permission"
+                  },
+                  "contained_permission_ids": {
+                    "type": "array",
+                    "items": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "example": [
+                      "read_public_info"
+                    ],
+                    "description": "The IDs of the permissions that are contained in this permission"
+                  }
+                },
+                "required": [
+                  "id"
+                ],
+                "example": {
+                  "id": "read_secret_info",
+                  "description": "Read secret information",
+                  "contained_permission_ids": [
+                    "read_public_info"
+                  ]
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "description": {
+                      "type": "string",
+                      "example": "Read secret information",
+                      "description": "A human-readable description of the permission"
+                    },
+                    "contained_permission_ids": {
+                      "type": "array",
+                      "items": {
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                      },
+                      "example": [
+                        "read_public_info"
+                      ],
+                      "description": "The IDs of the permissions that are contained in this permission"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "contained_permission_ids"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permission-definitions/{permission_id}": {
+      "delete": {
+        "summary": "Delete a team permission definition",
+        "description": "Delete a permission definition (the equivalent of deleting a permission on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a team permission definition",
+        "description": "Update a permission definition (the equivalent of updating a permission on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "id": {
+                    "type": "string",
+                    "example": "read_secret_info",
+                    "description": "The permission ID used to uniquely identify a permission. Can only contain lowercase letters, numbers, \":\", and \"_\" characters"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Read secret information",
+                    "description": "A human-readable description of the permission"
+                  },
+                  "contained_permission_ids": {
+                    "type": "array",
+                    "items": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "example": [
+                      "read_public_info"
+                    ],
+                    "description": "The IDs of the permissions that are contained in this permission"
+                  }
+                },
+                "example": {
+                  "id": "read_secret_info",
+                  "description": "Read secret information",
+                  "contained_permission_ids": [
+                    "read_public_info"
+                  ]
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "description": {
+                      "type": "string",
+                      "example": "Read secret information",
+                      "description": "A human-readable description of the permission"
+                    },
+                    "contained_permission_ids": {
+                      "type": "array",
+                      "items": {
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                      },
+                      "example": [
+                        "read_public_info"
+                      ],
+                      "description": "The IDs of the permissions that are contained in this permission"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "contained_permission_ids"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permission-definitions/{permission_id}": {
+      "delete": {
+        "summary": "Delete a project permission definition",
+        "description": "Delete a project permission definition (the equivalent of deleting a permission on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a project permission definition",
+        "description": "Update a project permission definition (the equivalent of updating a permission on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "id": {
+                    "type": "string",
+                    "example": "read_secret_info",
+                    "description": "The permission ID used to uniquely identify a permission. Can only contain lowercase letters, numbers, \":\", and \"_\" characters"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Read secret information",
+                    "description": "A human-readable description of the permission"
+                  },
+                  "contained_permission_ids": {
+                    "type": "array",
+                    "items": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "example": [
+                      "read_public_info"
+                    ],
+                    "description": "The IDs of the permissions that are contained in this permission"
+                  }
+                },
+                "example": {
+                  "id": "read_secret_info",
+                  "description": "Read secret information",
+                  "contained_permission_ids": [
+                    "read_public_info"
+                  ]
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "description": {
+                      "type": "string",
+                      "example": "Read secret information",
+                      "description": "A human-readable description of the permission"
+                    },
+                    "contained_permission_ids": {
+                      "type": "array",
+                      "items": {
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                      },
+                      "example": [
+                        "read_public_info"
+                      ],
+                      "description": "The IDs of the permissions that are contained in this permission"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "contained_permission_ids"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permissions/{user_id}/{permission_id}": {
+      "post": {
+        "summary": "Grant a global permission to a user",
+        "description": "Grant a global permission to a user (the permission must be created first on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Revoke a global permission from a user",
+        "description": "Revoke a global permission from a user",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permissions/{team_id}/{user_id}/{permission_id}": {
+      "post": {
+        "summary": "Grant a team permission to a user",
+        "description": "Grant a team permission to a user (the team permission must be created first on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions/{team_id}/{user_id}/{permission_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "user_id",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Revoke a team permission from a user",
+        "description": "Revoke a team permission from a user",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions/{team_id}/{user_id}/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/projects/current": {
+      "get": {
+        "summary": "Get the current project",
+        "description": "Get the current project information including display name, OAuth providers and authentication methods. Useful for displaying the available login options to the user.",
+        "parameters": [],
+        "tags": [
+          "Projects"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/projects/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+                      "description": "The unique identifier of the project"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "MyMusic",
+                      "description": "Human-readable project display name. This is not a unique identifier."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions": {
+      "get": {
+        "summary": "List sessions",
+        "description": "List all sessions for the current user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string"
+                          },
+                          "created_at": {
+                            "type": "number"
+                          },
+                          "is_impersonation": {
+                            "type": "boolean"
+                          },
+                          "last_used_at": {
+                            "type": "number"
+                          },
+                          "is_current_session": {
+                            "type": "boolean"
+                          },
+                          "last_used_at_end_user_ip_info": {
+                            "type": "object",
+                            "properties": {
+                              "ip": {
+                                "type": "string"
+                              },
+                              "countryCode": {
+                                "type": "string"
+                              },
+                              "regionCode": {
+                                "type": "string"
+                              },
+                              "cityName": {
+                                "type": "string"
+                              },
+                              "latitude": {
+                                "type": "number"
+                              },
+                              "longitude": {
+                                "type": "number"
+                              },
+                              "tzIdentifier": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "ip"
+                            ]
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "created_at",
+                          "is_impersonation"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create session",
+        "description": "Create a new session for a given user. This will return a refresh token that can be used to impersonate the user.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "expires_in_millis": {
+                    "type": "number",
+                    "default": 31536000000
+                  },
+                  "is_impersonation": {
+                    "type": "boolean"
+                  }
+                },
+                "required": [
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "access_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current": {
+      "delete": {
+        "summary": "Sign out of the current session",
+        "description": "Sign out of the current session and invalidate the refresh token",
+        "parameters": [],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/{id}": {
+      "delete": {
+        "summary": "Delete session",
+        "description": "Delete a session by ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current/refresh": {
+      "post": {
+        "summary": "Refresh access token",
+        "description": "Get a new access token using a refresh token",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles": {
+      "get": {
+        "summary": "List team members profiles",
+        "description": "List team members profiles and filter by team ID and user ID",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user": {
+                            "type": "object",
+                            "properties": {
+                              "id": {
+                                "type": "string",
+                                "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                                "description": "The unique identifier of the user"
+                              },
+                              "primary_email": {
+                                "type": "string",
+                                "example": "johndoe@example.com",
+                                "description": "Primary email"
+                              },
+                              "primary_email_verified": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email has been verified to belong to this user"
+                              },
+                              "primary_email_auth_enabled": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                              },
+                              "display_name": {
+                                "type": "string",
+                                "example": "John Doe",
+                                "description": "Human-readable user display name. This is not a unique identifier."
+                              },
+                              "selected_team": {
+                                "type": "object",
+                                "properties": {
+                                  "created_at_millis": {
+                                    "type": "number",
+                                    "example": 1630000000000,
+                                    "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                                  },
+                                  "server_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                                  },
+                                  "id": {
+                                    "type": "string",
+                                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                                    "description": "The unique identifier of the team"
+                                  },
+                                  "display_name": {
+                                    "type": "string",
+                                    "example": "My Team",
+                                    "description": "Human-readable team display name. This is not a unique identifier."
+                                  },
+                                  "profile_image_url": {
+                                    "type": "string",
+                                    "example": "https://example.com/image.jpg",
+                                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                                  },
+                                  "client_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                                  },
+                                  "client_read_only_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                                  }
+                                },
+                                "required": [
+                                  "created_at_millis",
+                                  "id",
+                                  "display_name"
+                                ]
+                              },
+                              "selected_team_id": {
+                                "type": "string",
+                                "example": "team-id",
+                                "description": "ID of the team currently selected by the user"
+                              },
+                              "profile_image_url": {
+                                "type": "string",
+                                "example": "https://example.com/image.jpg",
+                                "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                              },
+                              "signed_up_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "client_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                              },
+                              "client_read_only_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                              },
+                              "server_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                              },
+                              "last_active_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "is_anonymous": {
+                                "type": "boolean"
+                              },
+                              "is_restricted": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                              },
+                              "restricted_reason": {
+                                "type": "object",
+                                "properties": {
+                                  "type": {
+                                    "type": "string"
+                                  }
+                                },
+                                "required": [
+                                  "type"
+                                ],
+                                "example": null,
+                                "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                              },
+                              "restricted_by_admin": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                              },
+                              "restricted_by_admin_reason": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                              },
+                              "restricted_by_admin_private_details": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                              },
+                              "country_code": {
+                                "type": "string",
+                                "example": "US",
+                                "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                              },
+                              "risk_scores": {
+                                "type": "object",
+                                "properties": {
+                                  "sign_up": {
+                                    "type": "object",
+                                    "properties": {
+                                      "bot": {
+                                        "type": "number"
+                                      },
+                                      "free_trial_abuse": {
+                                        "type": "number"
+                                      }
+                                    },
+                                    "required": [
+                                      "bot",
+                                      "free_trial_abuse"
+                                    ]
+                                  }
+                                },
+                                "required": [
+                                  "sign_up"
+                                ],
+                                "example": {
+                                  "sign_up": {
+                                    "bot": 0,
+                                    "free_trial_abuse": 0
+                                  }
+                                },
+                                "description": "User risk scores used for sign-up risk evaluation."
+                              }
+                            },
+                            "required": [
+                              "id",
+                              "primary_email_verified",
+                              "primary_email_auth_enabled",
+                              "signed_up_at_millis",
+                              "last_active_at_millis",
+                              "is_anonymous",
+                              "is_restricted",
+                              "restricted_by_admin",
+                              "risk_scores"
+                            ]
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          }
+                        },
+                        "required": [
+                          "user",
+                          "team_id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams": {
+      "get": {
+        "summary": "List teams",
+        "description": "List all the teams in the project.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+            },
+            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "created_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "created_at_millis",
+                          "id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a team",
+        "description": "Create a new team and optionally add the current user as a member.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "creator_user_id": {
+                    "type": "string",
+                    "example": "me",
+                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "required": [
+                  "display_name"
+                ],
+                "example": {
+                  "display_name": "My Team",
+                  "creator_user_id": "me",
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "created_at_millis",
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations": {
+      "get": {
+        "summary": "List team invitations",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
+            },
+            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "team_display_name": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "recipient_email": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "team_id",
+                          "team_display_name",
+                          "expires_at_millis",
+                          "recipient_email"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams/{team_id}": {
+      "get": {
+        "summary": "Get a team",
+        "description": "Get a team by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "created_at_millis",
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete a team",
+        "description": "Delete a team by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a team",
+        "description": "Update the team information by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "example": {
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "display_name": "My Team",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "created_at_millis",
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/send-code": {
+      "post": {
+        "summary": "Send an email to invite a user to a team",
+        "description": "The user receiving this email can join the team by clicking on the link in the email. If the user does not have an account yet, they will be prompted to create one.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "team_id": {
+                    "type": "string",
+                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                    "description": "The unique identifier of the team"
+                  },
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email of the user to invite."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/team-invitation",
+                    "description": "The base callback URL to construct an invite link with. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/team-invitations/accept` endpoint."
+                  }
+                },
+                "required": [
+                  "team_id",
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "team_id": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/team-invitation"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/send-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success",
+                    "id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}": {
+      "delete": {
+        "summary": "Delete a team invitation",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept": {
+      "post": {
+        "summary": "Accept the team invitation",
+        "description": "Accept invitation and add user to the team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles/{team_id}/{user_id}": {
+      "get": {
+        "summary": "Get a team member profile",
+        "description": "Get a team member profile by user ID",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user": {
+                      "type": "object",
+                      "properties": {
+                        "id": {
+                          "type": "string",
+                          "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                          "description": "The unique identifier of the user"
+                        },
+                        "primary_email": {
+                          "type": "string",
+                          "example": "johndoe@example.com",
+                          "description": "Primary email"
+                        },
+                        "primary_email_verified": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email has been verified to belong to this user"
+                        },
+                        "primary_email_auth_enabled": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "John Doe",
+                          "description": "Human-readable user display name. This is not a unique identifier."
+                        },
+                        "selected_team": {
+                          "type": "object",
+                          "properties": {
+                            "created_at_millis": {
+                              "type": "number",
+                              "example": 1630000000000,
+                              "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                            },
+                            "server_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                            },
+                            "id": {
+                              "type": "string",
+                              "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                              "description": "The unique identifier of the team"
+                            },
+                            "display_name": {
+                              "type": "string",
+                              "example": "My Team",
+                              "description": "Human-readable team display name. This is not a unique identifier."
+                            },
+                            "profile_image_url": {
+                              "type": "string",
+                              "example": "https://example.com/image.jpg",
+                              "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                            },
+                            "client_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                            },
+                            "client_read_only_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                            }
+                          },
+                          "required": [
+                            "created_at_millis",
+                            "id",
+                            "display_name"
+                          ]
+                        },
+                        "selected_team_id": {
+                          "type": "string",
+                          "example": "team-id",
+                          "description": "ID of the team currently selected by the user"
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "signed_up_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                        },
+                        "last_active_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "is_anonymous": {
+                          "type": "boolean"
+                        },
+                        "is_restricted": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                        },
+                        "restricted_reason": {
+                          "type": "object",
+                          "properties": {
+                            "type": {
+                              "type": "string"
+                            }
+                          },
+                          "required": [
+                            "type"
+                          ],
+                          "example": null,
+                          "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                        },
+                        "restricted_by_admin": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                        },
+                        "restricted_by_admin_reason": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                        },
+                        "restricted_by_admin_private_details": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                        },
+                        "country_code": {
+                          "type": "string",
+                          "example": "US",
+                          "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                        },
+                        "risk_scores": {
+                          "type": "object",
+                          "properties": {
+                            "sign_up": {
+                              "type": "object",
+                              "properties": {
+                                "bot": {
+                                  "type": "number"
+                                },
+                                "free_trial_abuse": {
+                                  "type": "number"
+                                }
+                              },
+                              "required": [
+                                "bot",
+                                "free_trial_abuse"
+                              ]
+                            }
+                          },
+                          "required": [
+                            "sign_up"
+                          ],
+                          "example": {
+                            "sign_up": {
+                              "bot": 0,
+                              "free_trial_abuse": 0
+                            }
+                          },
+                          "description": "User risk scores used for sign-up risk evaluation."
+                        }
+                      },
+                      "required": [
+                        "id",
+                        "primary_email_verified",
+                        "primary_email_auth_enabled",
+                        "signed_up_at_millis",
+                        "last_active_at_millis",
+                        "is_anonymous",
+                        "is_restricted",
+                        "restricted_by_admin",
+                        "risk_scores"
+                      ]
+                    },
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "user",
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a team member profile",
+        "description": "Update a team member profile by user ID",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user": {
+                      "type": "object",
+                      "properties": {
+                        "id": {
+                          "type": "string",
+                          "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                          "description": "The unique identifier of the user"
+                        },
+                        "primary_email": {
+                          "type": "string",
+                          "example": "johndoe@example.com",
+                          "description": "Primary email"
+                        },
+                        "primary_email_verified": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email has been verified to belong to this user"
+                        },
+                        "primary_email_auth_enabled": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "John Doe",
+                          "description": "Human-readable user display name. This is not a unique identifier."
+                        },
+                        "selected_team": {
+                          "type": "object",
+                          "properties": {
+                            "created_at_millis": {
+                              "type": "number",
+                              "example": 1630000000000,
+                              "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                            },
+                            "server_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                            },
+                            "id": {
+                              "type": "string",
+                              "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                              "description": "The unique identifier of the team"
+                            },
+                            "display_name": {
+                              "type": "string",
+                              "example": "My Team",
+                              "description": "Human-readable team display name. This is not a unique identifier."
+                            },
+                            "profile_image_url": {
+                              "type": "string",
+                              "example": "https://example.com/image.jpg",
+                              "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                            },
+                            "client_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                            },
+                            "client_read_only_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                            }
+                          },
+                          "required": [
+                            "created_at_millis",
+                            "id",
+                            "display_name"
+                          ]
+                        },
+                        "selected_team_id": {
+                          "type": "string",
+                          "example": "team-id",
+                          "description": "ID of the team currently selected by the user"
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "signed_up_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                        },
+                        "last_active_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "is_anonymous": {
+                          "type": "boolean"
+                        },
+                        "is_restricted": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                        },
+                        "restricted_reason": {
+                          "type": "object",
+                          "properties": {
+                            "type": {
+                              "type": "string"
+                            }
+                          },
+                          "required": [
+                            "type"
+                          ],
+                          "example": null,
+                          "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                        },
+                        "restricted_by_admin": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                        },
+                        "restricted_by_admin_reason": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                        },
+                        "restricted_by_admin_private_details": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                        },
+                        "country_code": {
+                          "type": "string",
+                          "example": "US",
+                          "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                        },
+                        "risk_scores": {
+                          "type": "object",
+                          "properties": {
+                            "sign_up": {
+                              "type": "object",
+                              "properties": {
+                                "bot": {
+                                  "type": "number"
+                                },
+                                "free_trial_abuse": {
+                                  "type": "number"
+                                }
+                              },
+                              "required": [
+                                "bot",
+                                "free_trial_abuse"
+                              ]
+                            }
+                          },
+                          "required": [
+                            "sign_up"
+                          ],
+                          "example": {
+                            "sign_up": {
+                              "bot": 0,
+                              "free_trial_abuse": 0
+                            }
+                          },
+                          "description": "User risk scores used for sign-up risk evaluation."
+                        }
+                      },
+                      "required": [
+                        "id",
+                        "primary_email_verified",
+                        "primary_email_auth_enabled",
+                        "signed_up_at_millis",
+                        "last_active_at_millis",
+                        "is_anonymous",
+                        "is_restricted",
+                        "restricted_by_admin",
+                        "risk_scores"
+                      ]
+                    },
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "user",
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-memberships/{team_id}/{user_id}": {
+      "post": {
+        "summary": "Add a user to a team",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Remove a user from a team",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}/accept": {
+      "post": {
+        "summary": "Accept a team invitation by ID",
+        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/details": {
+      "post": {
+        "summary": "Get team invitation details",
+        "description": "Get additional information about a team invitation code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "team_display_name": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "team_display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/check-code": {
+      "post": {
+        "summary": "Check if a team invitation code is valid",
+        "description": "Check if a team invitation code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users": {
+      "get": {
+        "summary": "List users",
+        "description": "Lists all the users in the project. By default, only fully onboarded users are returned. Restricted users (those who haven't completed onboarding requirements like email verification) are included if `include_restricted` is set to `true`. Anonymous users are included if `include_anonymous` is set to `true` (which also includes restricted users).",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Only return users who are members of the given team"
+            },
+            "description": "Only return users who are members of the given team",
+            "required": false
+          },
+          {
+            "name": "limit",
+            "in": "query",
+            "schema": {
+              "type": "number",
+              "description": "The maximum number of items to return"
+            },
+            "description": "The maximum number of items to return",
+            "required": false
+          },
+          {
+            "name": "cursor",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The cursor to start the result set from."
+            },
+            "description": "The cursor to start the result set from.",
+            "required": false
+          },
+          {
+            "name": "order_by",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The field to sort the results by. Defaults to signed_up_at"
+            },
+            "description": "The field to sort the results by. Defaults to signed_up_at",
+            "required": false
+          },
+          {
+            "name": "desc",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to sort the results in descending order. Defaults to false"
+            },
+            "description": "Whether to sort the results in descending order. Defaults to false",
+            "required": false
+          },
+          {
+            "name": "query",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "A search query to filter the results by. This is a free-text search that is applied to the user's id (exact-match only), display name and primary email."
+            },
+            "description": "A search query to filter the results by. This is a free-text search that is applied to the user's id (exact-match only), display name and primary email.",
+            "required": false
+          },
+          {
+            "name": "include_anonymous",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to include anonymous users in the results. When true, also includes restricted users. Defaults to false"
+            },
+            "description": "Whether to include anonymous users in the results. When true, also includes restricted users. Defaults to false",
+            "required": false
+          },
+          {
+            "name": "only_anonymous",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to return only anonymous users. When true, implies include_anonymous=true. Defaults to false"
+            },
+            "description": "Whether to return only anonymous users. When true, implies include_anonymous=true. Defaults to false",
+            "required": false
+          },
+          {
+            "name": "include_restricted",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to include restricted users in the results. Defaults to false"
+            },
+            "description": "Whether to include restricted users in the results. Defaults to false",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "primary_email": {
+                            "type": "string",
+                            "example": "johndoe@example.com",
+                            "description": "Primary email"
+                          },
+                          "primary_email_verified": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the primary email has been verified to belong to this user"
+                          },
+                          "primary_email_auth_enabled": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable user display name. This is not a unique identifier."
+                          },
+                          "selected_team": {
+                            "type": "object",
+                            "properties": {
+                              "created_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                              },
+                              "server_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                              },
+                              "id": {
+                                "type": "string",
+                                "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                                "description": "The unique identifier of the team"
+                              },
+                              "display_name": {
+                                "type": "string",
+                                "example": "My Team",
+                                "description": "Human-readable team display name. This is not a unique identifier."
+                              },
+                              "profile_image_url": {
+                                "type": "string",
+                                "example": "https://example.com/image.jpg",
+                                "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                              },
+                              "client_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                              },
+                              "client_read_only_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                              }
+                            },
+                            "required": [
+                              "created_at_millis",
+                              "id",
+                              "display_name"
+                            ]
+                          },
+                          "selected_team_id": {
+                            "type": "string",
+                            "example": "team-id",
+                            "description": "ID of the team currently selected by the user"
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "signed_up_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                          },
+                          "last_active_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                          },
+                          "is_anonymous": {
+                            "type": "boolean"
+                          },
+                          "is_restricted": {
+                            "type": "boolean",
+                            "example": false,
+                            "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                          },
+                          "restricted_reason": {
+                            "type": "object",
+                            "properties": {
+                              "type": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "type"
+                            ],
+                            "example": null,
+                            "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                          },
+                          "restricted_by_admin": {
+                            "type": "boolean",
+                            "example": false,
+                            "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                          },
+                          "restricted_by_admin_reason": {
+                            "type": "string",
+                            "example": null,
+                            "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                          },
+                          "restricted_by_admin_private_details": {
+                            "type": "string",
+                            "example": null,
+                            "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                          },
+                          "country_code": {
+                            "type": "string",
+                            "example": "US",
+                            "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                          },
+                          "risk_scores": {
+                            "type": "object",
+                            "properties": {
+                              "sign_up": {
+                                "type": "object",
+                                "properties": {
+                                  "bot": {
+                                    "type": "number"
+                                  },
+                                  "free_trial_abuse": {
+                                    "type": "number"
+                                  }
+                                },
+                                "required": [
+                                  "bot",
+                                  "free_trial_abuse"
+                                ]
+                              }
+                            },
+                            "required": [
+                              "sign_up"
+                            ],
+                            "example": {
+                              "sign_up": {
+                                "bot": 0,
+                                "free_trial_abuse": 0
+                              }
+                            },
+                            "description": "User risk scores used for sign-up risk evaluation."
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "primary_email_verified",
+                          "primary_email_auth_enabled",
+                          "signed_up_at_millis",
+                          "last_active_at_millis",
+                          "is_anonymous",
+                          "is_restricted",
+                          "restricted_by_admin",
+                          "risk_scores"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user",
+        "description": "Creates a new user. E-mail authentication is always enabled, and no password is set, meaning the only way to authenticate the newly created user is through magic link.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "is_anonymous": {
+                    "type": "boolean"
+                  },
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  },
+                  "primary_email_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email has been verified to belong to this user"
+                  },
+                  "primary_email_auth_enabled": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                  },
+                  "password": {
+                    "type": "string",
+                    "example": "my-new-password",
+                    "description": "Sets the user's password. Doing so revokes all current sessions."
+                  },
+                  "password_hash": {
+                    "type": "string",
+                    "description": "If `password` is not given, sets the user's password hash to the given string in Modular Crypt Format (ex.: `$2a$10$VIhIOofSMqGdGlL4wzE//e.77dAQGqNtF/1dT7bqCrVtQuInWy2qi`). Doing so revokes all current sessions."
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "restricted_by_admin": {
+                    "type": "boolean",
+                    "example": false,
+                    "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                  },
+                  "restricted_by_admin_reason": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                  },
+                  "restricted_by_admin_private_details": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                  },
+                  "country_code": {
+                    "type": "string",
+                    "example": "US",
+                    "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                  },
+                  "risk_scores": {
+                    "type": "object",
+                    "properties": {
+                      "sign_up": {
+                        "type": "object",
+                        "properties": {
+                          "bot": {
+                            "type": "number"
+                          },
+                          "free_trial_abuse": {
+                            "type": "number"
+                          }
+                        },
+                        "required": [
+                          "bot",
+                          "free_trial_abuse"
+                        ]
+                      }
+                    },
+                    "required": [
+                      "sign_up"
+                    ]
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "primary_email": "johndoe@example.com",
+                  "primary_email_verified": true,
+                  "primary_email_auth_enabled": true,
+                  "password": "my-new-password",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "restricted_by_admin": false,
+                  "restricted_by_admin_reason": null,
+                  "restricted_by_admin_private_details": null,
+                  "country_code": "US"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users/{user_id}": {
+      "get": {
+        "summary": "Get user",
+        "description": "Gets a user by user ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete user",
+        "description": "Deletes a user. Use this with caution.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update user",
+        "description": "Updates a user. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  },
+                  "primary_email_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email has been verified to belong to this user"
+                  },
+                  "primary_email_auth_enabled": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                  },
+                  "password": {
+                    "type": "string",
+                    "example": "my-new-password",
+                    "description": "Sets the user's password. Doing so revokes all current sessions."
+                  },
+                  "password_hash": {
+                    "type": "string",
+                    "description": "If `password` is not given, sets the user's password hash to the given string in Modular Crypt Format (ex.: `$2a$10$VIhIOofSMqGdGlL4wzE//e.77dAQGqNtF/1dT7bqCrVtQuInWy2qi`). Doing so revokes all current sessions."
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "selected_team_id": {
+                    "type": "string",
+                    "example": "team-id",
+                    "description": "ID of the team currently selected by the user"
+                  },
+                  "is_anonymous": {
+                    "type": "boolean"
+                  },
+                  "restricted_by_admin": {
+                    "type": "boolean",
+                    "example": false,
+                    "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                  },
+                  "restricted_by_admin_reason": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                  },
+                  "restricted_by_admin_private_details": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                  },
+                  "country_code": {
+                    "type": "string",
+                    "example": "US",
+                    "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                  },
+                  "risk_scores": {
+                    "type": "object",
+                    "properties": {
+                      "sign_up": {
+                        "type": "object",
+                        "properties": {
+                          "bot": {
+                            "type": "number"
+                          },
+                          "free_trial_abuse": {
+                            "type": "number"
+                          }
+                        },
+                        "required": [
+                          "bot",
+                          "free_trial_abuse"
+                        ]
+                      }
+                    },
+                    "required": [
+                      "sign_up"
+                    ]
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "primary_email": "johndoe@example.com",
+                  "primary_email_verified": true,
+                  "primary_email_auth_enabled": true,
+                  "password": "my-new-password",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "selected_team_id": "team-id",
+                  "restricted_by_admin": false,
+                  "restricted_by_admin_reason": null,
+                  "restricted_by_admin_private_details": null,
+                  "country_code": "US"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users/me": {
+      "get": {
+        "summary": "Get current user",
+        "description": "Gets the currently authenticated user.",
+        "parameters": [],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete current user",
+        "description": "Deletes the currently authenticated user. Use this with caution.",
+        "parameters": [],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update current user",
+        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  },
+                  "primary_email_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email has been verified to belong to this user"
+                  },
+                  "primary_email_auth_enabled": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                  },
+                  "password": {
+                    "type": "string",
+                    "example": "my-new-password",
+                    "description": "Sets the user's password. Doing so revokes all current sessions."
+                  },
+                  "password_hash": {
+                    "type": "string",
+                    "description": "If `password` is not given, sets the user's password hash to the given string in Modular Crypt Format (ex.: `$2a$10$VIhIOofSMqGdGlL4wzE//e.77dAQGqNtF/1dT7bqCrVtQuInWy2qi`). Doing so revokes all current sessions."
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "selected_team_id": {
+                    "type": "string",
+                    "example": "team-id",
+                    "description": "ID of the team currently selected by the user"
+                  },
+                  "is_anonymous": {
+                    "type": "boolean"
+                  },
+                  "restricted_by_admin": {
+                    "type": "boolean",
+                    "example": false,
+                    "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                  },
+                  "restricted_by_admin_reason": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                  },
+                  "restricted_by_admin_private_details": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                  },
+                  "country_code": {
+                    "type": "string",
+                    "example": "US",
+                    "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                  },
+                  "risk_scores": {
+                    "type": "object",
+                    "properties": {
+                      "sign_up": {
+                        "type": "object",
+                        "properties": {
+                          "bot": {
+                            "type": "number"
+                          },
+                          "free_trial_abuse": {
+                            "type": "number"
+                          }
+                        },
+                        "required": [
+                          "bot",
+                          "free_trial_abuse"
+                        ]
+                      }
+                    },
+                    "required": [
+                      "sign_up"
+                    ]
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "primary_email": "johndoe@example.com",
+                  "primary_email_verified": true,
+                  "primary_email_auth_enabled": true,
+                  "password": "my-new-password",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "selected_team_id": "team-id",
+                  "restricted_by_admin": false,
+                  "restricted_by_admin_reason": null,
+                  "restricted_by_admin_private_details": null,
+                  "country_code": "US"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    }
+  }
+}
\ No newline at end of file
diff --git a/docs-mintlify/openapi/client.json b/docs-mintlify/openapi/client.json
new file mode 100644
index 0000000000..c5c576aaa8
--- /dev/null
+++ b/docs-mintlify/openapi/client.json
@@ -0,0 +1,6566 @@
+{
+  "openapi": "3.1.0",
+  "info": {
+    "title": "Stack REST API",
+    "version": "1.0.0"
+  },
+  "servers": [
+    {
+      "url": "https://api.stack-auth.com/api/v1",
+      "description": "Stack REST API"
+    }
+  ],
+  "paths": {
+    "/": {
+      "get": {
+        "summary": "/api/v1",
+        "description": "Returns a human-readable message with some useful information about the API.",
+        "parameters": [
+          {
+            "name": "X-Stack-Project-Id",
+            "in": "header",
+            "schema": {
+              "type": "string",
+              "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+              "description": "The unique identifier of the project"
+            },
+            "description": "The unique identifier of the project",
+            "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+            "required": false
+          },
+          {
+            "name": "X-Stack-Branch-Id",
+            "in": "header",
+            "schema": {
+              "type": "string",
+              "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+              "description": "The unique identifier of the project"
+            },
+            "description": "The unique identifier of the project",
+            "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+            "required": false
+          },
+          {
+            "name": "X-Stack-Access-Type",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Access-Token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Refresh-Token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Publishable-Client-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Secret-Server-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Super-Secret-Admin-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [],
+        "x-full-url": "https://api.stack-auth.com/api/v1/",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string",
+                  "example": "Welcome to the Stack API endpoint! Please refer to the documentation at https://docs.stack-auth.com/\n\nAuthentication: None"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/anonymous/sign-up": {
+      "post": {
+        "summary": "Sign up anonymously",
+        "description": "Create a new anonymous account with no email",
+        "parameters": [],
+        "tags": [
+          "Anonymous"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/anonymous/sign-up",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys": {
+      "get": {
+        "summary": "List user API keys",
+        "description": "List all user API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  }
+                },
+                "required": [
+                  "description",
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys": {
+      "get": {
+        "summary": "List team API keys",
+        "description": "List all team API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create team API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "team_id": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "description",
+                  "team_id"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get user API key details",
+        "description": "Get details of a specific user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update user API key",
+        "description": "Update an user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "revoked": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get team API key details",
+        "description": "Get details of a specific team API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update team API key",
+        "description": "Update an team API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "revoked": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli": {
+      "post": {
+        "summary": "Initiate CLI authentication",
+        "description": "Create a new CLI authentication session and return polling and login codes",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "expires_in_millis": {
+                    "type": "number",
+                    "default": 7200000
+                  },
+                  "anon_refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "polling_code": {
+                      "type": "string"
+                    },
+                    "login_code": {
+                      "type": "string"
+                    },
+                    "expires_at": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "polling_code",
+                    "login_code",
+                    "expires_at"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli/poll": {
+      "post": {
+        "summary": "Poll CLI authentication status",
+        "description": "Check the status of a CLI authentication session using the polling code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "polling_code": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "polling_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/poll",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
+                  ]
+                }
+              }
+            }
+          },
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli/complete": {
+      "post": {
+        "summary": "Complete CLI authentication",
+        "description": "Inspect, claim, or complete a CLI authentication session",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "login_code": {
+                    "type": "string"
+                  },
+                  "mode": {
+                    "type": "string",
+                    "default": "complete"
+                  },
+                  "refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "login_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/connected-accounts/{user_id}": {
+      "get": {
+        "summary": "List connected accounts",
+        "description": "Retrieves a list of all connected accounts for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Connected Accounts"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/connected-accounts/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "provider": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "provider_account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "provider",
+                          "provider_account_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels": {
+      "get": {
+        "summary": "List contact channels",
+        "description": "Retrieves a list of all contact channels for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the contact channel"
+                          },
+                          "value": {
+                            "type": "string",
+                            "example": "johndoe@example.com",
+                            "description": "The value of the contact channel. For email, this should be a valid email address."
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "email",
+                            "description": "The type of the contact channel. Currently only \"email\" is supported."
+                          },
+                          "used_for_auth": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                          },
+                          "is_verified": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                          },
+                          "is_primary": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "id",
+                          "value",
+                          "type",
+                          "used_for_auth",
+                          "is_verified",
+                          "is_primary"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a contact channel",
+        "description": "Add a new contact channel for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "value": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The value of the contact channel. For email, this should be a valid email address."
+                  },
+                  "type": {
+                    "type": "string",
+                    "example": "email",
+                    "description": "The type of the contact channel. Currently only \"email\" is supported."
+                  },
+                  "used_for_auth": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                  },
+                  "is_primary": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                  }
+                },
+                "required": [
+                  "user_id",
+                  "value",
+                  "type",
+                  "used_for_auth"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                  "value": "johndoe@example.com",
+                  "type": "email",
+                  "used_for_auth": true,
+                  "is_primary": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/verify": {
+      "post": {
+        "summary": "Verify an email",
+        "description": "Verify an email address of a user",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/{user_id}/{contact_channel_id}": {
+      "get": {
+        "summary": "Get a contact channel",
+        "description": "Retrieves a specific contact channel by the user ID and the contact channel ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete a contact channel",
+        "description": "Removes a contact channel for a given user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a contact channel",
+        "description": "Updates an existing contact channel. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "value": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The value of the contact channel. For email, this should be a valid email address."
+                  },
+                  "type": {
+                    "type": "string",
+                    "example": "email",
+                    "description": "The type of the contact channel. Currently only \"email\" is supported."
+                  },
+                  "used_for_auth": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                  },
+                  "is_primary": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                  }
+                },
+                "example": {
+                  "value": "johndoe@example.com",
+                  "type": "email",
+                  "used_for_auth": true,
+                  "is_primary": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/verify/check-code": {
+      "post": {
+        "summary": "Check email verification code",
+        "description": "Check if an email verification code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/{user_id}/{contact_channel_id}/send-verification-code": {
+      "post": {
+        "summary": "Send contact channel verification code",
+        "description": "Send a code to the user's contact channel for verifying the contact channel.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "The user to send the verification code to."
+            },
+            "description": "The user to send the verification code to.",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "The contact channel to send the verification code to."
+            },
+            "description": "The contact channel to send the verification code to.",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/email-verification",
+                    "description": "The base callback URL to construct a verification link for the verification e-mail. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/contact-channels/verify` endpoint."
+                  }
+                },
+                "required": [
+                  "callback_url"
+                ],
+                "example": {
+                  "callback_url": "https://example.com/handler/email-verification"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}/send-verification-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/notification-preference/{user_id}": {
+      "get": {
+        "summary": "List notification preferences",
+        "description": "Get all notification preferences for a user, showing which notification categories are enabled or disabled.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "notification_category_id": {
+                            "type": "string"
+                          },
+                          "notification_category_name": {
+                            "type": "string"
+                          },
+                          "enabled": {
+                            "type": "boolean"
+                          },
+                          "can_disable": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "notification_category_id",
+                          "notification_category_name",
+                          "enabled",
+                          "can_disable"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/notification-preference/{user_id}/{notification_category_id}": {
+      "patch": {
+        "summary": "Update notification preference",
+        "description": "Enable or disable a specific notification category for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "notification_category_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "enabled": {
+                    "type": "boolean"
+                  }
+                },
+                "required": [
+                  "enabled"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}/{notification_category_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "notification_category_id": {
+                      "type": "string"
+                    },
+                    "notification_category_name": {
+                      "type": "string"
+                    },
+                    "enabled": {
+                      "type": "boolean"
+                    },
+                    "can_disable": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "notification_category_id",
+                    "notification_category_name",
+                    "enabled",
+                    "can_disable"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feedback": {
+      "post": {
+        "summary": "Submit support feedback",
+        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "name": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string"
+                  },
+                  "message": {
+                    "type": "string"
+                  },
+                  "feedback_type": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "message"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feature-requests": {
+      "get": {
+        "summary": "Get feature requests",
+        "description": "Fetch all feature requests with upvote status for the current user",
+        "parameters": [],
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "posts": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "content": {
+                            "type": "string"
+                          },
+                          "upvotes": {
+                            "type": "number"
+                          },
+                          "date": {
+                            "type": "string"
+                          },
+                          "postStatus": {
+                            "type": "object",
+                            "properties": {
+                              "name": {
+                                "type": "string"
+                              },
+                              "color": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "name",
+                              "color"
+                            ]
+                          },
+                          "userHasUpvoted": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "upvotes",
+                          "date",
+                          "userHasUpvoted"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "posts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create feature request",
+        "description": "Create a new feature request",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "content": {
+                    "type": "string"
+                  },
+                  "category": {
+                    "type": "string"
+                  },
+                  "tags": {
+                    "type": "array",
+                    "items": {
+                      "type": "string"
+                    }
+                  },
+                  "commentsAllowed": {
+                    "type": "boolean"
+                  },
+                  "customInputValues": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  }
+                },
+                "required": [
+                  "title"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/preview/create-project": {
+      "post": {
+        "summary": "Create a preview project",
+        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "project_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "project_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feature-requests/{featureRequestId}/upvote": {
+      "post": {
+        "summary": "Toggle upvote on feature request",
+        "description": "Toggle upvote on a feature request for the current user",
+        "parameters": [
+          {
+            "name": "featureRequestId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests/{featureRequestId}/upvote",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "upvoted": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers": {
+      "get": {
+        "summary": "List OAuth providers",
+        "description": "Retrieves a list of all OAuth providers for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the OAuth provider"
+                          },
+                          "email": {
+                            "type": "string",
+                            "example": "test@gmail.com",
+                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                          },
+                          "provider_config_id": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                          },
+                          "allow_sign_in": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                          },
+                          "allow_connected_accounts": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "id",
+                          "provider_config_id",
+                          "type",
+                          "allow_sign_in",
+                          "allow_connected_accounts"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers/{user_id}/{provider_id}": {
+      "get": {
+        "summary": "Get an OAuth provider",
+        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete an OAuth provider",
+        "description": "Removes an OAuth provider for a given user.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update an OAuth provider",
+        "description": "Updates an existing OAuth provider for a user.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  }
+                },
+                "example": {
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/token": {
+      "post": {
+        "summary": "OAuth token endpoints",
+        "description": "This endpoint is used to exchange an authorization code or refresh token for an access token.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "grant_type": {
+                    "type": "string"
+                  },
+                  "client_id": {
+                    "type": "string"
+                  },
+                  "client_secret": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "grant_type"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/token",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/cross-domain/authorize": {
+      "post": {
+        "summary": "Create cross-domain auth handoff redirect",
+        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
+        "parameters": [
+          {
+            "name": "x-stack-publishable-client-key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "redirect_uri": {
+                    "type": "string"
+                  },
+                  "state": {
+                    "type": "string"
+                  },
+                  "code_challenge": {
+                    "type": "string"
+                  },
+                  "code_challenge_method": {
+                    "type": "string",
+                    "default": "S256"
+                  },
+                  "after_callback_redirect_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "redirect_uri",
+                  "state",
+                  "code_challenge"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "redirect_url": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "redirect_url"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/authorize/{provider_id}": {
+      "get": {
+        "summary": "OAuth authorize endpoint",
+        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+        "parameters": [
+          {
+            "name": "type",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "authenticate"
+            },
+            "required": false
+          },
+          {
+            "name": "token",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": ""
+            },
+            "required": false
+          },
+          {
+            "name": "provider_scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "error_redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "after_callback_redirect_url",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "stack_response_mode",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "redirect"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_token",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_phase",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_unavailable",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "client_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "client_secret",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "state",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "grant_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge_method",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "response_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "location": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "location"
+                  ]
+                }
+              }
+            }
+          },
+          "307": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations": {
+      "get": {
+        "summary": "List AI conversations",
+        "description": "List AI conversations for the current user filtered by project",
+        "parameters": [
+          {
+            "name": "projectId",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "conversations": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "projectId": {
+                            "type": "string"
+                          },
+                          "updatedAt": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "projectId",
+                          "updatedAt"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "conversations"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create AI conversation",
+        "description": "Create a new AI conversation with optional initial messages",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "projectId": {
+                    "type": "string"
+                  },
+                  "messages": {
+                    "type": "array",
+                    "items": {
+                      "type": "object",
+                      "properties": {
+                        "role": {
+                          "type": "string"
+                        },
+                        "content": {
+                          "type": "object"
+                        }
+                      },
+                      "required": [
+                        "role",
+                        "content"
+                      ]
+                    }
+                  }
+                },
+                "required": [
+                  "title",
+                  "projectId",
+                  "messages"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "title": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "title"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations/{conversationId}": {
+      "get": {
+        "summary": "Get AI conversation",
+        "description": "Fetch a single AI conversation with all its messages",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "title": {
+                      "type": "string"
+                    },
+                    "projectId": {
+                      "type": "string"
+                    },
+                    "messages": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "role": {
+                            "type": "string"
+                          },
+                          "content": {
+                            "type": "object"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "role",
+                          "content"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "title",
+                    "projectId",
+                    "messages"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete AI conversation",
+        "description": "Delete an AI conversation and all its messages",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update AI conversation",
+        "description": "Update the title of an AI conversation",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "title"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations/{conversationId}/messages": {
+      "put": {
+        "summary": "Replace conversation messages",
+        "description": "Replace all messages in a conversation",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "messages": {
+                    "type": "array",
+                    "items": {
+                      "type": "object",
+                      "properties": {
+                        "role": {
+                          "type": "string"
+                        },
+                        "content": {
+                          "type": "object"
+                        }
+                      },
+                      "required": [
+                        "role",
+                        "content"
+                      ]
+                    }
+                  }
+                },
+                "required": [
+                  "messages"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}/messages",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/send-sign-in-code": {
+      "post": {
+        "summary": "Send sign-in code",
+        "description": "Send a code to the user's email address for sign-in.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/magic-link-callback",
+                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/magic-link-callback"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "nonce": {
+                      "type": "string",
+                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
+                    }
+                  },
+                  "required": [
+                    "nonce"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/sign-in": {
+      "post": {
+        "summary": "Sign in with a code",
+        "description": "",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/mfa/sign-in": {
+      "post": {
+        "summary": "MFA sign in",
+        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string"
+                  },
+                  "totp": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "type",
+                  "totp",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/sign-in/check-code": {
+      "post": {
+        "summary": "Check sign in code",
+        "description": "Check if a sign in code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/update": {
+      "post": {
+        "summary": "Update password",
+        "description": "Update the password of the current user, requires the old password",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "old_password": {
+                    "type": "string"
+                  },
+                  "new_password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "old_password",
+                  "new_password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/set": {
+      "post": {
+        "summary": "Set password",
+        "description": "Set a new password for the current user",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/set",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/sign-in": {
+      "post": {
+        "summary": "Sign in with email and password",
+        "description": "Sign in to an account with email and password",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string"
+                  },
+                  "password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/sign-up": {
+      "post": {
+        "summary": "Sign up with email and password",
+        "description": "Create a new account with email and password",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "password": {
+                    "type": "string"
+                  },
+                  "verification_callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/email-verification",
+                    "description": "The base callback URL to construct a verification link for the verification e-mail. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/contact-channels/verify` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "password"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "verification_callback_url": "https://example.com/handler/email-verification"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/sign-up",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/send-reset-code": {
+      "post": {
+        "summary": "Send reset password code",
+        "description": "Send a code to the user's email address for resetting the password.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string"
+                  },
+                  "callback_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset": {
+      "post": {
+        "summary": "Reset password with a code",
+        "description": "Reset password with a code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "password",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset/check-code": {
+      "post": {
+        "summary": "Check reset password code",
+        "description": "Check if a reset password code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/validate-code": {
+      "post": {
+        "summary": "Validate Purchase Code",
+        "description": "Validates a purchase verification code and returns purchase details including available prices.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion"
+                  }
+                },
+                "required": [
+                  "full_code"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "return_url": "https://myapp.com/purchase-success"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "product": {
+                      "type": "object",
+                      "properties": {
+                        "display_name": {
+                          "type": "string"
+                        },
+                        "customer_type": {
+                          "type": "string"
+                        },
+                        "free_trial": {
+                          "type": "array",
+                          "items": {
+                            "type": "number"
+                          }
+                        },
+                        "server_only": {
+                          "type": "boolean",
+                          "default": true
+                        },
+                        "stackable": {
+                          "type": "boolean",
+                          "default": false
+                        },
+                        "prices": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "included_items": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                        }
+                      },
+                      "required": [
+                        "display_name",
+                        "customer_type"
+                      ]
+                    },
+                    "stripe_account_id": {
+                      "type": "string"
+                    },
+                    "project_id": {
+                      "type": "string"
+                    },
+                    "project_logo_url": {
+                      "type": "string"
+                    },
+                    "already_bought_non_stackable": {
+                      "type": "boolean"
+                    },
+                    "conflicting_products": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "product_id": {
+                            "type": "string"
+                          },
+                          "display_name": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "product_id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "test_mode": {
+                      "type": "boolean"
+                    },
+                    "charges_enabled": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "stripe_account_id",
+                    "project_id",
+                    "already_bought_non_stackable",
+                    "conflicting_products",
+                    "test_mode",
+                    "charges_enabled"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/purchase-session": {
+      "post": {
+        "summary": "Create Purchase Session",
+        "description": "Creates a purchase session for completing a purchase.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "price_id": {
+                    "type": "string",
+                    "example": "price_1234567890abcdef",
+                    "description": "The Stack auth price ID to purchase"
+                  },
+                  "quantity": {
+                    "type": "number",
+                    "example": 1,
+                    "description": "The quantity to purchase",
+                    "default": 1
+                  }
+                },
+                "required": [
+                  "full_code",
+                  "price_id"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "price_id": "price_1234567890abcdef",
+                  "quantity": 1
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "client_secret": {
+                      "type": "string",
+                      "example": "1234567890abcdef_secret_xyz123",
+                      "description": "The Stripe client secret for completing the payment"
+                    }
+                  },
+                  "required": [
+                    "client_secret"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/create-purchase-url": {
+      "post": {
+        "summary": "Create Purchase URL",
+        "description": "Creates a secure checkout URL for purchasing a product.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "customer_type": {
+                    "type": "string",
+                    "example": "user",
+                    "description": "The type of customer making the purchase"
+                  },
+                  "customer_id": {
+                    "type": "string",
+                    "example": "user_1234567890abcdef",
+                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
+                  },
+                  "product_id": {
+                    "type": "string",
+                    "example": "prod_premium_monthly",
+                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
+                  },
+                  "product_inline": {
+                    "type": "object",
+                    "properties": {
+                      "display_name": {
+                        "type": "string"
+                      },
+                      "customer_type": {
+                        "type": "string"
+                      },
+                      "free_trial": {
+                        "type": "array",
+                        "items": {
+                          "type": "number"
+                        }
+                      },
+                      "server_only": {
+                        "type": "boolean",
+                        "default": true
+                      },
+                      "stackable": {
+                        "type": "boolean",
+                        "default": false
+                      },
+                      "prices": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "included_items": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                      }
+                    },
+                    "required": [
+                      "display_name",
+                      "customer_type"
+                    ],
+                    "description": "Inline product definition. Either this or product_id should be given."
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
+                  }
+                },
+                "required": [
+                  "customer_type",
+                  "customer_id"
+                ],
+                "example": {
+                  "customer_type": "user",
+                  "customer_id": "user_1234567890abcdef",
+                  "product_id": "prod_premium_monthly",
+                  "return_url": "https://myapp.com/purchase-success"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "url": {
+                      "type": "string",
+                      "description": "The secure checkout URL for completing the purchase"
+                    }
+                  },
+                  "required": [
+                    "url"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
+      "get": {
+        "summary": "Get Item",
+        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
+        "parameters": [
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to retrieve"
+            },
+            "description": "The ID of the item to retrieve",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "credits",
+                      "description": "The ID of the item"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "API Credits",
+                      "description": "The human-readable name of the item"
+                    },
+                    "quantity": {
+                      "type": "number",
+                      "example": 1000,
+                      "description": "The current quantity of the item (can be negative)"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name",
+                    "quantity"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permissions": {
+      "get": {
+        "summary": "List team permissions",
+        "description": "List team permissions of the current user. `user_id=me` must be set for client requests. Note that this might contain the permissions with the same permission ID across different teams. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
+              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
+            },
+            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permissions": {
+      "get": {
+        "summary": "List project permissions",
+        "description": "List global permissions of the current user. `user_id=me` must be set for client requests. `(user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/projects/current": {
+      "get": {
+        "summary": "Get the current project",
+        "description": "Get the current project information including display name, OAuth providers and authentication methods. Useful for displaying the available login options to the user.",
+        "parameters": [],
+        "tags": [
+          "Projects"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/projects/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+                      "description": "The unique identifier of the project"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "MyMusic",
+                      "description": "Human-readable project display name. This is not a unique identifier."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions": {
+      "get": {
+        "summary": "List sessions",
+        "description": "List all sessions for the current user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string"
+                          },
+                          "created_at": {
+                            "type": "number"
+                          },
+                          "is_impersonation": {
+                            "type": "boolean"
+                          },
+                          "last_used_at": {
+                            "type": "number"
+                          },
+                          "is_current_session": {
+                            "type": "boolean"
+                          },
+                          "last_used_at_end_user_ip_info": {
+                            "type": "object",
+                            "properties": {
+                              "ip": {
+                                "type": "string"
+                              },
+                              "countryCode": {
+                                "type": "string"
+                              },
+                              "regionCode": {
+                                "type": "string"
+                              },
+                              "cityName": {
+                                "type": "string"
+                              },
+                              "latitude": {
+                                "type": "number"
+                              },
+                              "longitude": {
+                                "type": "number"
+                              },
+                              "tzIdentifier": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "ip"
+                            ]
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "created_at",
+                          "is_impersonation"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current": {
+      "delete": {
+        "summary": "Sign out of the current session",
+        "description": "Sign out of the current session and invalidate the refresh token",
+        "parameters": [],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/{id}": {
+      "delete": {
+        "summary": "Delete session",
+        "description": "Delete a session by ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current/refresh": {
+      "post": {
+        "summary": "Refresh access token",
+        "description": "Get a new access token using a refresh token",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles": {
+      "get": {
+        "summary": "List team members profiles",
+        "description": "List team members profiles. You always need to specify a `team_id` that your are a member of on the client. You can always filter for your own profile by setting `me` as the `user_id` in the path parameters. If you want list all the profiles in a team, you need to have the `$read_members` permission in that team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          }
+                        },
+                        "required": [
+                          "team_id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams": {
+      "get": {
+        "summary": "List teams",
+        "description": "List all the teams that the current user is a member of. `user_id=me` must be passed in the query parameters.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+            },
+            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a team",
+        "description": "Create a new team and optionally add the current user as a member.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "creator_user_id": {
+                    "type": "string",
+                    "example": "me",
+                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "required": [
+                  "display_name"
+                ],
+                "example": {
+                  "display_name": "My Team",
+                  "creator_user_id": "me",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations": {
+      "get": {
+        "summary": "List team invitations",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
+            },
+            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "team_display_name": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "recipient_email": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "team_id",
+                          "team_display_name",
+                          "expires_at_millis",
+                          "recipient_email"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams/{team_id}": {
+      "get": {
+        "summary": "Get a team",
+        "description": "Get a team that the current user is a member of.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete a team",
+        "description": "Delete a team. Only allowed if the current user is a member of the team and has the `$delete_team` permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a team",
+        "description": "Update the team information. Only allowed if the current user is a member of the team and has the `$update_team` permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "example": {
+                  "display_name": "My Team",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/send-code": {
+      "post": {
+        "summary": "Send an email to invite a user to a team",
+        "description": "The user receiving this email can join the team by clicking on the link in the email. If the user does not have an account yet, they will be prompted to create one.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "team_id": {
+                    "type": "string",
+                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                    "description": "The unique identifier of the team"
+                  },
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email of the user to invite."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/team-invitation",
+                    "description": "The base callback URL to construct an invite link with. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/team-invitations/accept` endpoint."
+                  }
+                },
+                "required": [
+                  "team_id",
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "team_id": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/team-invitation"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/send-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success",
+                    "id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}": {
+      "delete": {
+        "summary": "Delete a team invitation",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept": {
+      "post": {
+        "summary": "Accept the team invitation",
+        "description": "Accept invitation and add user to the team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles/{team_id}/{user_id}": {
+      "get": {
+        "summary": "Get a team member profile",
+        "description": "Get a team member profile. you can always get your own profile by setting `me` as the `user_id` in the path parameters on the client. If you want to get someone else's profile in a team, you need to have the `$read_members` permission in that team.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update your team member profile",
+        "description": "Update your own team member profile. `user_id` must be `me` in the path parameters on the client.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-memberships/{team_id}/{user_id}": {
+      "delete": {
+        "summary": "Remove a user from a team",
+        "description": "All the users are allowed to remove themselves from a team (`user_id=me`). Only the users who have the `$remove_members` permission are allowed to remove other users from a team. `team_id` is must an ID of a team that the user is a member of.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}/accept": {
+      "post": {
+        "summary": "Accept a team invitation by ID",
+        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/details": {
+      "post": {
+        "summary": "Get team invitation details",
+        "description": "Get additional information about a team invitation code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "team_display_name": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "team_display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/check-code": {
+      "post": {
+        "summary": "Check if a team invitation code is valid",
+        "description": "Check if a team invitation code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users/me": {
+      "get": {
+        "summary": "Get current user",
+        "description": "Gets the currently authenticated user.",
+        "parameters": [],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "signed_up_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete current user",
+        "description": "Deletes the currently authenticated user. Use this with caution.",
+        "parameters": [],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update current user",
+        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "selected_team_id": {
+                    "type": "string",
+                    "example": "team-id",
+                    "description": "ID of the team currently selected by the user"
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "selected_team_id": "team-id",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "primary_email": "johndoe@example.com"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "signed_up_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    }
+  }
+}
\ No newline at end of file
diff --git a/docs-mintlify/openapi/server.json b/docs-mintlify/openapi/server.json
new file mode 100644
index 0000000000..7267bd8a2c
--- /dev/null
+++ b/docs-mintlify/openapi/server.json
@@ -0,0 +1,10275 @@
+{
+  "openapi": "3.1.0",
+  "info": {
+    "title": "Stack REST API",
+    "version": "1.0.0"
+  },
+  "servers": [
+    {
+      "url": "https://api.stack-auth.com/api/v1",
+      "description": "Stack REST API"
+    }
+  ],
+  "paths": {
+    "/": {
+      "get": {
+        "summary": "/api/v1",
+        "description": "Returns a human-readable message with some useful information about the API.",
+        "parameters": [
+          {
+            "name": "X-Stack-Project-Id",
+            "in": "header",
+            "schema": {
+              "type": "string",
+              "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+              "description": "The unique identifier of the project"
+            },
+            "description": "The unique identifier of the project",
+            "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+            "required": false
+          },
+          {
+            "name": "X-Stack-Branch-Id",
+            "in": "header",
+            "schema": {
+              "type": "string",
+              "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+              "description": "The unique identifier of the project"
+            },
+            "description": "The unique identifier of the project",
+            "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+            "required": false
+          },
+          {
+            "name": "X-Stack-Access-Type",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Access-Token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Refresh-Token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Publishable-Client-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Secret-Server-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "X-Stack-Super-Secret-Admin-Key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [],
+        "x-full-url": "https://api.stack-auth.com/api/v1/",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string",
+                  "example": "Welcome to the Stack API endpoint! Please refer to the documentation at https://docs.stack-auth.com/\n\nAuthentication: None"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/anonymous/sign-up": {
+      "post": {
+        "summary": "Sign up anonymously",
+        "description": "Create a new anonymous account with no email",
+        "parameters": [],
+        "tags": [
+          "Anonymous"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/anonymous/sign-up",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys": {
+      "get": {
+        "summary": "List user API keys",
+        "description": "List all user API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  }
+                },
+                "required": [
+                  "description",
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys": {
+      "get": {
+        "summary": "List team API keys",
+        "description": "List all team API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create team API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "team_id": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "description",
+                  "team_id"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get user API key details",
+        "description": "Get details of a specific user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update user API key",
+        "description": "Update an user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "revoked": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys/check": {
+      "post": {
+        "summary": "Check team API key validity",
+        "description": "Validate a team API key",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "api_key": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "api_key"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/check",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys/check": {
+      "post": {
+        "summary": "Check user API key validity",
+        "description": "Validate a user API key",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "api_key": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "api_key"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/check",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get team API key details",
+        "description": "Get details of a specific team API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update team API key",
+        "description": "Update an team API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "revoked": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "team_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "value",
+                    "type",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli": {
+      "post": {
+        "summary": "Initiate CLI authentication",
+        "description": "Create a new CLI authentication session and return polling and login codes",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "expires_in_millis": {
+                    "type": "number",
+                    "default": 7200000
+                  },
+                  "anon_refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "polling_code": {
+                      "type": "string"
+                    },
+                    "login_code": {
+                      "type": "string"
+                    },
+                    "expires_at": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "polling_code",
+                    "login_code",
+                    "expires_at"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli/poll": {
+      "post": {
+        "summary": "Poll CLI authentication status",
+        "description": "Check the status of a CLI authentication session using the polling code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "polling_code": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "polling_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/poll",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
+                  ]
+                }
+              }
+            }
+          },
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/cli/complete": {
+      "post": {
+        "summary": "Complete CLI authentication",
+        "description": "Inspect, claim, or complete a CLI authentication session",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "login_code": {
+                    "type": "string"
+                  },
+                  "mode": {
+                    "type": "string",
+                    "default": "complete"
+                  },
+                  "refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "login_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/connected-accounts/{user_id}": {
+      "get": {
+        "summary": "List connected accounts",
+        "description": "Retrieves a list of all connected accounts for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Connected Accounts"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/connected-accounts/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "provider": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "provider_account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "provider",
+                          "provider_account_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels": {
+      "get": {
+        "summary": "List contact channels",
+        "description": "Retrieves a list of all contact channels for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the contact channel"
+                          },
+                          "value": {
+                            "type": "string",
+                            "example": "johndoe@example.com",
+                            "description": "The value of the contact channel. For email, this should be a valid email address."
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "email",
+                            "description": "The type of the contact channel. Currently only \"email\" is supported."
+                          },
+                          "used_for_auth": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                          },
+                          "is_verified": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                          },
+                          "is_primary": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "id",
+                          "value",
+                          "type",
+                          "used_for_auth",
+                          "is_verified",
+                          "is_primary"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a contact channel",
+        "description": "Add a new contact channel for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "is_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "value": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The value of the contact channel. For email, this should be a valid email address."
+                  },
+                  "type": {
+                    "type": "string",
+                    "example": "email",
+                    "description": "The type of the contact channel. Currently only \"email\" is supported."
+                  },
+                  "used_for_auth": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                  },
+                  "is_primary": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                  }
+                },
+                "required": [
+                  "user_id",
+                  "value",
+                  "type",
+                  "used_for_auth"
+                ],
+                "example": {
+                  "is_verified": true,
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                  "value": "johndoe@example.com",
+                  "type": "email",
+                  "used_for_auth": true,
+                  "is_primary": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/verify": {
+      "post": {
+        "summary": "Verify an email",
+        "description": "Verify an email address of a user",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/{user_id}/{contact_channel_id}": {
+      "get": {
+        "summary": "Get a contact channel",
+        "description": "Retrieves a specific contact channel by the user ID and the contact channel ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete a contact channel",
+        "description": "Removes a contact channel for a given user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a contact channel",
+        "description": "Updates an existing contact channel. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "the user that the contact channel belongs to"
+            },
+            "description": "the user that the contact channel belongs to",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "the target contact channel"
+            },
+            "description": "the target contact channel",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "is_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                  },
+                  "value": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The value of the contact channel. For email, this should be a valid email address."
+                  },
+                  "type": {
+                    "type": "string",
+                    "example": "email",
+                    "description": "The type of the contact channel. Currently only \"email\" is supported."
+                  },
+                  "used_for_auth": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                  },
+                  "is_primary": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                  }
+                },
+                "example": {
+                  "is_verified": true,
+                  "value": "johndoe@example.com",
+                  "type": "email",
+                  "used_for_auth": true,
+                  "is_primary": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the contact channel"
+                    },
+                    "value": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "The value of the contact channel. For email, this should be a valid email address."
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "email",
+                      "description": "The type of the contact channel. Currently only \"email\" is supported."
+                    },
+                    "used_for_auth": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is used for authentication. If this is set to `true`, the user will be able to sign in with the contact channel with password or OTP."
+                    },
+                    "is_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel has been verified. If this is set to `true`, the contact channel has been verified to belong to the user."
+                    },
+                    "is_primary": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the contact channel is the primary contact channel. If this is set to `true`, it will be used for authentication and notifications by default."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "value",
+                    "type",
+                    "used_for_auth",
+                    "is_verified",
+                    "is_primary"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/verify/check-code": {
+      "post": {
+        "summary": "Check email verification code",
+        "description": "Check if an email verification code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/contact-channels/{user_id}/{contact_channel_id}/send-verification-code": {
+      "post": {
+        "summary": "Send contact channel verification code",
+        "description": "Send a code to the user's contact channel for verifying the contact channel.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "The user to send the verification code to."
+            },
+            "description": "The user to send the verification code to.",
+            "required": true
+          },
+          {
+            "name": "contact_channel_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+              "description": "The contact channel to send the verification code to."
+            },
+            "description": "The contact channel to send the verification code to.",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/email-verification",
+                    "description": "The base callback URL to construct a verification link for the verification e-mail. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/contact-channels/verify` endpoint."
+                  }
+                },
+                "required": [
+                  "callback_url"
+                ],
+                "example": {
+                  "callback_url": "https://example.com/handler/email-verification"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/{user_id}/{contact_channel_id}/send-verification-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/data-vault/stores/{id}/set": {
+      "post": {
+        "summary": "Store encrypted value in data vault",
+        "description": "Stores a hashed key and encrypted value in the data vault for a specific store",
+        "parameters": [
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "hashed_key": {
+                    "type": "string"
+                  },
+                  "encrypted_value": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "hashed_key",
+                  "encrypted_value"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "DataVault"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/set",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/data-vault/stores/{id}/get": {
+      "post": {
+        "summary": "Retrieve encrypted value from data vault",
+        "description": "Retrieves and decrypts a value from the data vault using a hashed key",
+        "parameters": [
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "hashed_key": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "hashed_key"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "DataVault"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/get",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "encrypted_value": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "encrypted_value"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/send-email": {
+      "post": {
+        "summary": "Send email",
+        "description": "Send an email to a list of users. The content field should contain either {html} for HTML emails, {template_id, variables} for template-based emails, or {draft_id} for a draft email.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/send-email",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "results": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "user_id"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "results"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/outbox": {
+      "get": {
+        "summary": "List email outbox",
+        "description": "Lists all emails in the outbox with optional filtering by status or simple_status.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "limit",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The maximum number of items to return. Maximum allowed is 100"
+            },
+            "description": "The maximum number of items to return. Maximum allowed is 100",
+            "required": false
+          },
+          {
+            "name": "cursor",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The cursor to start the result set from (email ID)"
+            },
+            "description": "The cursor to start the result set from (email ID)",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object"
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/capacity-boost": {
+      "post": {
+        "summary": "Activate email capacity boost",
+        "description": "Temporarily increases email capacity by 4x for 4 hours.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/capacity-boost",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "expires_at": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "expires_at"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/delivery-info": {
+      "get": {
+        "summary": "Get email delivery info",
+        "description": "Returns delivery statistics and capacity information for the current tenancy.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/delivery-info",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "stats": {
+                      "type": "object",
+                      "properties": {
+                        "hour": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        },
+                        "day": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        },
+                        "week": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        },
+                        "month": {
+                          "type": "object",
+                          "properties": {
+                            "sent": {
+                              "type": "number"
+                            },
+                            "bounced": {
+                              "type": "number"
+                            },
+                            "marked_as_spam": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "sent",
+                            "bounced",
+                            "marked_as_spam"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "hour",
+                        "day",
+                        "week",
+                        "month"
+                      ]
+                    },
+                    "capacity": {
+                      "type": "object",
+                      "properties": {
+                        "rate_per_second": {
+                          "type": "number"
+                        },
+                        "boost_multiplier": {
+                          "type": "number"
+                        },
+                        "penalty_factor": {
+                          "type": "number"
+                        },
+                        "is_boost_active": {
+                          "type": "boolean"
+                        },
+                        "boost_expires_at": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "rate_per_second",
+                        "boost_multiplier",
+                        "penalty_factor",
+                        "is_boost_active"
+                      ]
+                    }
+                  },
+                  "required": [
+                    "stats",
+                    "capacity"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/outbox/{id}": {
+      "get": {
+        "summary": "Get email outbox entry",
+        "description": "Gets a single email from the outbox by ID.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update email outbox entry",
+        "description": "Updates an email in the outbox. Can be used to edit email content, pause/resume, or cancel emails. Only emails in editable states (`paused`, `preparing`, `rendering`, `render-error`, `scheduled`, `queued`, `server-error`) can be modified.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "tsx_source": {
+                    "type": "string"
+                  },
+                  "theme_id": {
+                    "type": "string"
+                  },
+                  "to": {
+                    "type": "object"
+                  },
+                  "variables": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  },
+                  "skip_deliverability_check": {
+                    "type": "boolean"
+                  },
+                  "scheduled_at_millis": {
+                    "type": "number"
+                  },
+                  "is_paused": {
+                    "type": "boolean"
+                  },
+                  "cancel": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/notification-preference/{user_id}": {
+      "get": {
+        "summary": "List notification preferences",
+        "description": "Get all notification preferences for a user, showing which notification categories are enabled or disabled.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "notification_category_id": {
+                            "type": "string"
+                          },
+                          "notification_category_name": {
+                            "type": "string"
+                          },
+                          "enabled": {
+                            "type": "boolean"
+                          },
+                          "can_disable": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "notification_category_id",
+                          "notification_category_name",
+                          "enabled",
+                          "can_disable"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/notification-preference/{user_id}/{notification_category_id}": {
+      "patch": {
+        "summary": "Update notification preference",
+        "description": "Enable or disable a specific notification category for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "notification_category_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "enabled": {
+                    "type": "boolean"
+                  }
+                },
+                "required": [
+                  "enabled"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}/{notification_category_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "notification_category_id": {
+                      "type": "string"
+                    },
+                    "notification_category_name": {
+                      "type": "string"
+                    },
+                    "enabled": {
+                      "type": "boolean"
+                    },
+                    "can_disable": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "notification_category_id",
+                    "notification_category_name",
+                    "enabled",
+                    "can_disable"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feedback": {
+      "post": {
+        "summary": "Submit support feedback",
+        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "name": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string"
+                  },
+                  "message": {
+                    "type": "string"
+                  },
+                  "feedback_type": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "message"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feature-requests": {
+      "get": {
+        "summary": "Get feature requests",
+        "description": "Fetch all feature requests with upvote status for the current user",
+        "parameters": [],
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "posts": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "content": {
+                            "type": "string"
+                          },
+                          "upvotes": {
+                            "type": "number"
+                          },
+                          "date": {
+                            "type": "string"
+                          },
+                          "postStatus": {
+                            "type": "object",
+                            "properties": {
+                              "name": {
+                                "type": "string"
+                              },
+                              "color": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "name",
+                              "color"
+                            ]
+                          },
+                          "userHasUpvoted": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "upvotes",
+                          "date",
+                          "userHasUpvoted"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "posts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create feature request",
+        "description": "Create a new feature request",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "content": {
+                    "type": "string"
+                  },
+                  "category": {
+                    "type": "string"
+                  },
+                  "tags": {
+                    "type": "array",
+                    "items": {
+                      "type": "string"
+                    }
+                  },
+                  "commentsAllowed": {
+                    "type": "boolean"
+                  },
+                  "customInputValues": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  }
+                },
+                "required": [
+                  "title"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/preview/create-project": {
+      "post": {
+        "summary": "Create a preview project",
+        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "project_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "project_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/feature-requests/{featureRequestId}/upvote": {
+      "post": {
+        "summary": "Toggle upvote on feature request",
+        "description": "Toggle upvote on a feature request for the current user",
+        "parameters": [
+          {
+            "name": "featureRequestId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Internal"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests/{featureRequestId}/upvote",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "upvoted": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers": {
+      "get": {
+        "summary": "List OAuth providers",
+        "description": "Retrieves a list of all OAuth providers for a user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the OAuth provider"
+                          },
+                          "email": {
+                            "type": "string",
+                            "example": "test@gmail.com",
+                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                          },
+                          "provider_config_id": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                          },
+                          "allow_sign_in": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                          },
+                          "allow_connected_accounts": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                          }
+                        },
+                        "required": [
+                          "account_id",
+                          "user_id",
+                          "id",
+                          "provider_config_id",
+                          "type",
+                          "allow_sign_in",
+                          "allow_connected_accounts"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create an OAuth provider",
+        "description": "Add a new OAuth provider for a user.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "provider_config_id": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string",
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  },
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  }
+                },
+                "required": [
+                  "user_id",
+                  "provider_config_id",
+                  "allow_sign_in",
+                  "allow_connected_accounts",
+                  "account_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                  "email": "test@gmail.com",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true,
+                  "account_id": "google-account-id-12345"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers/{user_id}/{provider_id}": {
+      "get": {
+        "summary": "Get an OAuth provider",
+        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete an OAuth provider",
+        "description": "Removes an OAuth provider for a given user.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update an OAuth provider",
+        "description": "Updates an existing OAuth provider. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  },
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  }
+                },
+                "example": {
+                  "email": "test@gmail.com",
+                  "account_id": "google-account-id-12345",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/token": {
+      "post": {
+        "summary": "OAuth token endpoints",
+        "description": "This endpoint is used to exchange an authorization code or refresh token for an access token.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "grant_type": {
+                    "type": "string"
+                  },
+                  "client_id": {
+                    "type": "string"
+                  },
+                  "client_secret": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "grant_type"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/token",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/cross-domain/authorize": {
+      "post": {
+        "summary": "Create cross-domain auth handoff redirect",
+        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
+        "parameters": [
+          {
+            "name": "x-stack-publishable-client-key",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "redirect_uri": {
+                    "type": "string"
+                  },
+                  "state": {
+                    "type": "string"
+                  },
+                  "code_challenge": {
+                    "type": "string"
+                  },
+                  "code_challenge_method": {
+                    "type": "string",
+                    "default": "S256"
+                  },
+                  "after_callback_redirect_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "redirect_uri",
+                  "state",
+                  "code_challenge"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "redirect_url": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "redirect_url"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/oauth/authorize/{provider_id}": {
+      "get": {
+        "summary": "OAuth authorize endpoint",
+        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+        "parameters": [
+          {
+            "name": "type",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "authenticate"
+            },
+            "required": false
+          },
+          {
+            "name": "token",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": ""
+            },
+            "required": false
+          },
+          {
+            "name": "provider_scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "error_redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "after_callback_redirect_url",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "stack_response_mode",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "redirect"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_token",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_phase",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_unavailable",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "client_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "client_secret",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "state",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "grant_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge_method",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "response_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "location": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "location"
+                  ]
+                }
+              }
+            }
+          },
+          "307": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations": {
+      "get": {
+        "summary": "List AI conversations",
+        "description": "List AI conversations for the current user filtered by project",
+        "parameters": [
+          {
+            "name": "projectId",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "conversations": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "projectId": {
+                            "type": "string"
+                          },
+                          "updatedAt": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "projectId",
+                          "updatedAt"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "conversations"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create AI conversation",
+        "description": "Create a new AI conversation with optional initial messages",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "projectId": {
+                    "type": "string"
+                  },
+                  "messages": {
+                    "type": "array",
+                    "items": {
+                      "type": "object",
+                      "properties": {
+                        "role": {
+                          "type": "string"
+                        },
+                        "content": {
+                          "type": "object"
+                        }
+                      },
+                      "required": [
+                        "role",
+                        "content"
+                      ]
+                    }
+                  }
+                },
+                "required": [
+                  "title",
+                  "projectId",
+                  "messages"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "title": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "title"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations/{conversationId}": {
+      "get": {
+        "summary": "Get AI conversation",
+        "description": "Fetch a single AI conversation with all its messages",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "title": {
+                      "type": "string"
+                    },
+                    "projectId": {
+                      "type": "string"
+                    },
+                    "messages": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "role": {
+                            "type": "string"
+                          },
+                          "content": {
+                            "type": "object"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "role",
+                          "content"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "title",
+                    "projectId",
+                    "messages"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete AI conversation",
+        "description": "Delete an AI conversation and all its messages",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update AI conversation",
+        "description": "Update the title of an AI conversation",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "title"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations/{conversationId}/messages": {
+      "put": {
+        "summary": "Replace conversation messages",
+        "description": "Replace all messages in a conversation",
+        "parameters": [
+          {
+            "name": "conversationId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "messages": {
+                    "type": "array",
+                    "items": {
+                      "type": "object",
+                      "properties": {
+                        "role": {
+                          "type": "string"
+                        },
+                        "content": {
+                          "type": "object"
+                        }
+                      },
+                      "required": [
+                        "role",
+                        "content"
+                      ]
+                    }
+                  }
+                },
+                "required": [
+                  "messages"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations/{conversationId}/messages",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/send-sign-in-code": {
+      "post": {
+        "summary": "Send sign-in code",
+        "description": "Send a code to the user's email address for sign-in.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/magic-link-callback",
+                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/magic-link-callback"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "nonce": {
+                      "type": "string",
+                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
+                    }
+                  },
+                  "required": [
+                    "nonce"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/sign-in": {
+      "post": {
+        "summary": "Sign in with a code",
+        "description": "",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/mfa/sign-in": {
+      "post": {
+        "summary": "MFA sign in",
+        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string"
+                  },
+                  "totp": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "type",
+                  "totp",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/sign-in/check-code": {
+      "post": {
+        "summary": "Check sign in code",
+        "description": "Check if a sign in code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/update": {
+      "post": {
+        "summary": "Update password",
+        "description": "Update the password of the current user, requires the old password",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "old_password": {
+                    "type": "string"
+                  },
+                  "new_password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "old_password",
+                  "new_password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/set": {
+      "post": {
+        "summary": "Set password",
+        "description": "Set a new password for the current user",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/set",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/sign-in": {
+      "post": {
+        "summary": "Sign in with email and password",
+        "description": "Sign in to an account with email and password",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string"
+                  },
+                  "password": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "password"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/sign-up": {
+      "post": {
+        "summary": "Sign up with email and password",
+        "description": "Create a new account with email and password",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "password": {
+                    "type": "string"
+                  },
+                  "verification_callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/email-verification",
+                    "description": "The base callback URL to construct a verification link for the verification e-mail. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/contact-channels/verify` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "password"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "verification_callback_url": "https://example.com/handler/email-verification"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/sign-up",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token",
+                    "refresh_token",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/send-reset-code": {
+      "post": {
+        "summary": "Send reset password code",
+        "description": "Send a code to the user's email address for resetting the password.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string"
+                  },
+                  "callback_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset": {
+      "post": {
+        "summary": "Reset password with a code",
+        "description": "Reset password with a code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "password",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset/check-code": {
+      "post": {
+        "summary": "Check reset password code",
+        "description": "Check if a reset password code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/validate-code": {
+      "post": {
+        "summary": "Validate Purchase Code",
+        "description": "Validates a purchase verification code and returns purchase details including available prices.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion"
+                  }
+                },
+                "required": [
+                  "full_code"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "return_url": "https://myapp.com/purchase-success"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "product": {
+                      "type": "object",
+                      "properties": {
+                        "display_name": {
+                          "type": "string"
+                        },
+                        "customer_type": {
+                          "type": "string"
+                        },
+                        "free_trial": {
+                          "type": "array",
+                          "items": {
+                            "type": "number"
+                          }
+                        },
+                        "server_only": {
+                          "type": "boolean",
+                          "default": true
+                        },
+                        "stackable": {
+                          "type": "boolean",
+                          "default": false
+                        },
+                        "prices": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "included_items": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                        }
+                      },
+                      "required": [
+                        "display_name",
+                        "customer_type"
+                      ]
+                    },
+                    "stripe_account_id": {
+                      "type": "string"
+                    },
+                    "project_id": {
+                      "type": "string"
+                    },
+                    "project_logo_url": {
+                      "type": "string"
+                    },
+                    "already_bought_non_stackable": {
+                      "type": "boolean"
+                    },
+                    "conflicting_products": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "product_id": {
+                            "type": "string"
+                          },
+                          "display_name": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "product_id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "test_mode": {
+                      "type": "boolean"
+                    },
+                    "charges_enabled": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "stripe_account_id",
+                    "project_id",
+                    "already_bought_non_stackable",
+                    "conflicting_products",
+                    "test_mode",
+                    "charges_enabled"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/purchase-session": {
+      "post": {
+        "summary": "Create Purchase Session",
+        "description": "Creates a purchase session for completing a purchase.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "price_id": {
+                    "type": "string",
+                    "example": "price_1234567890abcdef",
+                    "description": "The Stack auth price ID to purchase"
+                  },
+                  "quantity": {
+                    "type": "number",
+                    "example": 1,
+                    "description": "The quantity to purchase",
+                    "default": 1
+                  }
+                },
+                "required": [
+                  "full_code",
+                  "price_id"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "price_id": "price_1234567890abcdef",
+                  "quantity": 1
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "client_secret": {
+                      "type": "string",
+                      "example": "1234567890abcdef_secret_xyz123",
+                      "description": "The Stripe client secret for completing the payment"
+                    }
+                  },
+                  "required": [
+                    "client_secret"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/create-purchase-url": {
+      "post": {
+        "summary": "Create Purchase URL",
+        "description": "Creates a secure checkout URL for purchasing a product.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "customer_type": {
+                    "type": "string",
+                    "example": "user",
+                    "description": "The type of customer making the purchase"
+                  },
+                  "customer_id": {
+                    "type": "string",
+                    "example": "user_1234567890abcdef",
+                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
+                  },
+                  "product_id": {
+                    "type": "string",
+                    "example": "prod_premium_monthly",
+                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
+                  },
+                  "product_inline": {
+                    "type": "object",
+                    "properties": {
+                      "display_name": {
+                        "type": "string"
+                      },
+                      "customer_type": {
+                        "type": "string"
+                      },
+                      "free_trial": {
+                        "type": "array",
+                        "items": {
+                          "type": "number"
+                        }
+                      },
+                      "server_only": {
+                        "type": "boolean",
+                        "default": true
+                      },
+                      "stackable": {
+                        "type": "boolean",
+                        "default": false
+                      },
+                      "prices": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "included_items": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                      }
+                    },
+                    "required": [
+                      "display_name",
+                      "customer_type"
+                    ],
+                    "description": "Inline product definition. Either this or product_id should be given."
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
+                  }
+                },
+                "required": [
+                  "customer_type",
+                  "customer_id"
+                ],
+                "example": {
+                  "customer_type": "user",
+                  "customer_id": "user_1234567890abcdef",
+                  "product_id": "prod_premium_monthly",
+                  "return_url": "https://myapp.com/purchase-success"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "url": {
+                      "type": "string",
+                      "description": "The secure checkout URL for completing the purchase"
+                    }
+                  },
+                  "required": [
+                    "url"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
+      "get": {
+        "summary": "Get Item",
+        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
+        "parameters": [
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to retrieve"
+            },
+            "description": "The ID of the item to retrieve",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "credits",
+                      "description": "The ID of the item"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "API Credits",
+                      "description": "The human-readable name of the item"
+                    },
+                    "quantity": {
+                      "type": "number",
+                      "example": 1000,
+                      "description": "The current quantity of the item (can be negative)"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name",
+                    "quantity"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity": {
+      "post": {
+        "summary": "Update Item Quantity",
+        "description": "Updates the quantity of an item for a customer. Can increase or decrease quantities, with optional expiration and negative balance control.",
+        "parameters": [
+          {
+            "name": "allow_negative",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "false",
+              "description": "Whether to allow the quantity to go negative"
+            },
+            "description": "Whether to allow the quantity to go negative",
+            "required": true
+          },
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to update"
+            },
+            "description": "The ID of the item to update",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "delta": {
+                    "type": "number",
+                    "example": 100,
+                    "description": "The amount to change the quantity by (positive to increase, negative to decrease)"
+                  },
+                  "expires_at": {
+                    "type": "string",
+                    "example": "2024-12-31T23:59:59Z",
+                    "description": "Optional expiration date for this quantity change (ISO 8601 format)"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Monthly subscription renewal",
+                    "description": "Optional description for this quantity change"
+                  }
+                },
+                "required": [
+                  "delta"
+                ],
+                "example": {
+                  "delta": 100,
+                  "expires_at": "2024-12-31T23:59:59Z",
+                  "description": "Monthly subscription renewal"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permissions": {
+      "get": {
+        "summary": "List team permissions of a user",
+        "description": "Query and filter the permission with `team_id`, `user_id`, and `permission_id`. Note that this might contain the permissions with the same permission ID across different teams and users. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
+              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
+            },
+            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permissions": {
+      "get": {
+        "summary": "List project permissions",
+        "description": "Query and filter the permission with `user_id` and `permission_id`. `(user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/project-permissions/{user_id}/{permission_id}": {
+      "post": {
+        "summary": "Grant a global permission to a user",
+        "description": "Grant a global permission to a user (the permission must be created first on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Revoke a global permission from a user",
+        "description": "Revoke a global permission from a user",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-permissions/{team_id}/{user_id}/{permission_id}": {
+      "post": {
+        "summary": "Grant a team permission to a user",
+        "description": "Grant a team permission to a user (the team permission must be created first on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions/{team_id}/{user_id}/{permission_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "user_id",
+                    "team_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Revoke a team permission from a user",
+        "description": "Revoke a team permission from a user",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions/{team_id}/{user_id}/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/projects/current": {
+      "get": {
+        "summary": "Get the current project",
+        "description": "Get the current project information including display name, OAuth providers and authentication methods. Useful for displaying the available login options to the user.",
+        "parameters": [],
+        "tags": [
+          "Projects"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/projects/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+                      "description": "The unique identifier of the project"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "MyMusic",
+                      "description": "Human-readable project display name. This is not a unique identifier."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions": {
+      "get": {
+        "summary": "List sessions",
+        "description": "List all sessions for the current user.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string"
+                          },
+                          "created_at": {
+                            "type": "number"
+                          },
+                          "is_impersonation": {
+                            "type": "boolean"
+                          },
+                          "last_used_at": {
+                            "type": "number"
+                          },
+                          "is_current_session": {
+                            "type": "boolean"
+                          },
+                          "last_used_at_end_user_ip_info": {
+                            "type": "object",
+                            "properties": {
+                              "ip": {
+                                "type": "string"
+                              },
+                              "countryCode": {
+                                "type": "string"
+                              },
+                              "regionCode": {
+                                "type": "string"
+                              },
+                              "cityName": {
+                                "type": "string"
+                              },
+                              "latitude": {
+                                "type": "number"
+                              },
+                              "longitude": {
+                                "type": "number"
+                              },
+                              "tzIdentifier": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "ip"
+                            ]
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "created_at",
+                          "is_impersonation"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create session",
+        "description": "Create a new session for a given user. This will return a refresh token that can be used to impersonate the user.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "expires_in_millis": {
+                    "type": "number",
+                    "default": 31536000000
+                  },
+                  "is_impersonation": {
+                    "type": "boolean"
+                  }
+                },
+                "required": [
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string"
+                    },
+                    "access_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current": {
+      "delete": {
+        "summary": "Sign out of the current session",
+        "description": "Sign out of the current session and invalidate the refresh token",
+        "parameters": [],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/{id}": {
+      "delete": {
+        "summary": "Delete session",
+        "description": "Delete a session by ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current/refresh": {
+      "post": {
+        "summary": "Refresh access token",
+        "description": "Get a new access token using a refresh token",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles": {
+      "get": {
+        "summary": "List team members profiles",
+        "description": "List team members profiles and filter by team ID and user ID",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user": {
+                            "type": "object",
+                            "properties": {
+                              "id": {
+                                "type": "string",
+                                "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                                "description": "The unique identifier of the user"
+                              },
+                              "primary_email": {
+                                "type": "string",
+                                "example": "johndoe@example.com",
+                                "description": "Primary email"
+                              },
+                              "primary_email_verified": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email has been verified to belong to this user"
+                              },
+                              "primary_email_auth_enabled": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                              },
+                              "display_name": {
+                                "type": "string",
+                                "example": "John Doe",
+                                "description": "Human-readable user display name. This is not a unique identifier."
+                              },
+                              "selected_team": {
+                                "type": "object",
+                                "properties": {
+                                  "created_at_millis": {
+                                    "type": "number",
+                                    "example": 1630000000000,
+                                    "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                                  },
+                                  "server_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                                  },
+                                  "id": {
+                                    "type": "string",
+                                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                                    "description": "The unique identifier of the team"
+                                  },
+                                  "display_name": {
+                                    "type": "string",
+                                    "example": "My Team",
+                                    "description": "Human-readable team display name. This is not a unique identifier."
+                                  },
+                                  "profile_image_url": {
+                                    "type": "string",
+                                    "example": "https://example.com/image.jpg",
+                                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                                  },
+                                  "client_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                                  },
+                                  "client_read_only_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                                  }
+                                },
+                                "required": [
+                                  "created_at_millis",
+                                  "id",
+                                  "display_name"
+                                ]
+                              },
+                              "selected_team_id": {
+                                "type": "string",
+                                "example": "team-id",
+                                "description": "ID of the team currently selected by the user"
+                              },
+                              "profile_image_url": {
+                                "type": "string",
+                                "example": "https://example.com/image.jpg",
+                                "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                              },
+                              "signed_up_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "client_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                              },
+                              "client_read_only_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                              },
+                              "server_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                              },
+                              "last_active_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "is_anonymous": {
+                                "type": "boolean"
+                              },
+                              "is_restricted": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                              },
+                              "restricted_reason": {
+                                "type": "object",
+                                "properties": {
+                                  "type": {
+                                    "type": "string"
+                                  }
+                                },
+                                "required": [
+                                  "type"
+                                ],
+                                "example": null,
+                                "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                              },
+                              "restricted_by_admin": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                              },
+                              "restricted_by_admin_reason": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                              },
+                              "restricted_by_admin_private_details": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                              },
+                              "country_code": {
+                                "type": "string",
+                                "example": "US",
+                                "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                              },
+                              "risk_scores": {
+                                "type": "object",
+                                "properties": {
+                                  "sign_up": {
+                                    "type": "object",
+                                    "properties": {
+                                      "bot": {
+                                        "type": "number"
+                                      },
+                                      "free_trial_abuse": {
+                                        "type": "number"
+                                      }
+                                    },
+                                    "required": [
+                                      "bot",
+                                      "free_trial_abuse"
+                                    ]
+                                  }
+                                },
+                                "required": [
+                                  "sign_up"
+                                ],
+                                "example": {
+                                  "sign_up": {
+                                    "bot": 0,
+                                    "free_trial_abuse": 0
+                                  }
+                                },
+                                "description": "User risk scores used for sign-up risk evaluation."
+                              }
+                            },
+                            "required": [
+                              "id",
+                              "primary_email_verified",
+                              "primary_email_auth_enabled",
+                              "signed_up_at_millis",
+                              "last_active_at_millis",
+                              "is_anonymous",
+                              "is_restricted",
+                              "restricted_by_admin",
+                              "risk_scores"
+                            ]
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          }
+                        },
+                        "required": [
+                          "user",
+                          "team_id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams": {
+      "get": {
+        "summary": "List teams",
+        "description": "List all the teams in the project.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+            },
+            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "created_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "created_at_millis",
+                          "id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a team",
+        "description": "Create a new team and optionally add the current user as a member.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "creator_user_id": {
+                    "type": "string",
+                    "example": "me",
+                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "required": [
+                  "display_name"
+                ],
+                "example": {
+                  "display_name": "My Team",
+                  "creator_user_id": "me",
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "created_at_millis",
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations": {
+      "get": {
+        "summary": "List team invitations",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
+            },
+            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "team_display_name": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "recipient_email": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "team_id",
+                          "team_display_name",
+                          "expires_at_millis",
+                          "recipient_email"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams/{team_id}": {
+      "get": {
+        "summary": "Get a team",
+        "description": "Get a team by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "created_at_millis",
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete a team",
+        "description": "Delete a team by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a team",
+        "description": "Update the team information by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "example": {
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "display_name": "My Team",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    }
+                  },
+                  "required": [
+                    "created_at_millis",
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/send-code": {
+      "post": {
+        "summary": "Send an email to invite a user to a team",
+        "description": "The user receiving this email can join the team by clicking on the link in the email. If the user does not have an account yet, they will be prompted to create one.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "team_id": {
+                    "type": "string",
+                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                    "description": "The unique identifier of the team"
+                  },
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email of the user to invite."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/team-invitation",
+                    "description": "The base callback URL to construct an invite link with. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/team-invitations/accept` endpoint."
+                  }
+                },
+                "required": [
+                  "team_id",
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "team_id": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/team-invitation"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/send-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "success",
+                    "id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}": {
+      "delete": {
+        "summary": "Delete a team invitation",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept": {
+      "post": {
+        "summary": "Accept the team invitation",
+        "description": "Accept invitation and add user to the team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles/{team_id}/{user_id}": {
+      "get": {
+        "summary": "Get a team member profile",
+        "description": "Get a team member profile by user ID",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user": {
+                      "type": "object",
+                      "properties": {
+                        "id": {
+                          "type": "string",
+                          "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                          "description": "The unique identifier of the user"
+                        },
+                        "primary_email": {
+                          "type": "string",
+                          "example": "johndoe@example.com",
+                          "description": "Primary email"
+                        },
+                        "primary_email_verified": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email has been verified to belong to this user"
+                        },
+                        "primary_email_auth_enabled": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "John Doe",
+                          "description": "Human-readable user display name. This is not a unique identifier."
+                        },
+                        "selected_team": {
+                          "type": "object",
+                          "properties": {
+                            "created_at_millis": {
+                              "type": "number",
+                              "example": 1630000000000,
+                              "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                            },
+                            "server_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                            },
+                            "id": {
+                              "type": "string",
+                              "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                              "description": "The unique identifier of the team"
+                            },
+                            "display_name": {
+                              "type": "string",
+                              "example": "My Team",
+                              "description": "Human-readable team display name. This is not a unique identifier."
+                            },
+                            "profile_image_url": {
+                              "type": "string",
+                              "example": "https://example.com/image.jpg",
+                              "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                            },
+                            "client_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                            },
+                            "client_read_only_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                            }
+                          },
+                          "required": [
+                            "created_at_millis",
+                            "id",
+                            "display_name"
+                          ]
+                        },
+                        "selected_team_id": {
+                          "type": "string",
+                          "example": "team-id",
+                          "description": "ID of the team currently selected by the user"
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "signed_up_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                        },
+                        "last_active_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "is_anonymous": {
+                          "type": "boolean"
+                        },
+                        "is_restricted": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                        },
+                        "restricted_reason": {
+                          "type": "object",
+                          "properties": {
+                            "type": {
+                              "type": "string"
+                            }
+                          },
+                          "required": [
+                            "type"
+                          ],
+                          "example": null,
+                          "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                        },
+                        "restricted_by_admin": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                        },
+                        "restricted_by_admin_reason": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                        },
+                        "restricted_by_admin_private_details": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                        },
+                        "country_code": {
+                          "type": "string",
+                          "example": "US",
+                          "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                        },
+                        "risk_scores": {
+                          "type": "object",
+                          "properties": {
+                            "sign_up": {
+                              "type": "object",
+                              "properties": {
+                                "bot": {
+                                  "type": "number"
+                                },
+                                "free_trial_abuse": {
+                                  "type": "number"
+                                }
+                              },
+                              "required": [
+                                "bot",
+                                "free_trial_abuse"
+                              ]
+                            }
+                          },
+                          "required": [
+                            "sign_up"
+                          ],
+                          "example": {
+                            "sign_up": {
+                              "bot": 0,
+                              "free_trial_abuse": 0
+                            }
+                          },
+                          "description": "User risk scores used for sign-up risk evaluation."
+                        }
+                      },
+                      "required": [
+                        "id",
+                        "primary_email_verified",
+                        "primary_email_auth_enabled",
+                        "signed_up_at_millis",
+                        "last_active_at_millis",
+                        "is_anonymous",
+                        "is_restricted",
+                        "restricted_by_admin",
+                        "risk_scores"
+                      ]
+                    },
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "user",
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a team member profile",
+        "description": "Update a team member profile by user ID",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user": {
+                      "type": "object",
+                      "properties": {
+                        "id": {
+                          "type": "string",
+                          "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                          "description": "The unique identifier of the user"
+                        },
+                        "primary_email": {
+                          "type": "string",
+                          "example": "johndoe@example.com",
+                          "description": "Primary email"
+                        },
+                        "primary_email_verified": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email has been verified to belong to this user"
+                        },
+                        "primary_email_auth_enabled": {
+                          "type": "boolean",
+                          "example": true,
+                          "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "John Doe",
+                          "description": "Human-readable user display name. This is not a unique identifier."
+                        },
+                        "selected_team": {
+                          "type": "object",
+                          "properties": {
+                            "created_at_millis": {
+                              "type": "number",
+                              "example": 1630000000000,
+                              "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                            },
+                            "server_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                            },
+                            "id": {
+                              "type": "string",
+                              "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                              "description": "The unique identifier of the team"
+                            },
+                            "display_name": {
+                              "type": "string",
+                              "example": "My Team",
+                              "description": "Human-readable team display name. This is not a unique identifier."
+                            },
+                            "profile_image_url": {
+                              "type": "string",
+                              "example": "https://example.com/image.jpg",
+                              "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                            },
+                            "client_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                            },
+                            "client_read_only_metadata": {
+                              "type": "object",
+                              "example": {
+                                "key": "value"
+                              },
+                              "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                            }
+                          },
+                          "required": [
+                            "created_at_millis",
+                            "id",
+                            "display_name"
+                          ]
+                        },
+                        "selected_team_id": {
+                          "type": "string",
+                          "example": "team-id",
+                          "description": "ID of the team currently selected by the user"
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "signed_up_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                        },
+                        "last_active_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                        },
+                        "is_anonymous": {
+                          "type": "boolean"
+                        },
+                        "is_restricted": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                        },
+                        "restricted_reason": {
+                          "type": "object",
+                          "properties": {
+                            "type": {
+                              "type": "string"
+                            }
+                          },
+                          "required": [
+                            "type"
+                          ],
+                          "example": null,
+                          "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                        },
+                        "restricted_by_admin": {
+                          "type": "boolean",
+                          "example": false,
+                          "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                        },
+                        "restricted_by_admin_reason": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                        },
+                        "restricted_by_admin_private_details": {
+                          "type": "string",
+                          "example": null,
+                          "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                        },
+                        "country_code": {
+                          "type": "string",
+                          "example": "US",
+                          "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                        },
+                        "risk_scores": {
+                          "type": "object",
+                          "properties": {
+                            "sign_up": {
+                              "type": "object",
+                              "properties": {
+                                "bot": {
+                                  "type": "number"
+                                },
+                                "free_trial_abuse": {
+                                  "type": "number"
+                                }
+                              },
+                              "required": [
+                                "bot",
+                                "free_trial_abuse"
+                              ]
+                            }
+                          },
+                          "required": [
+                            "sign_up"
+                          ],
+                          "example": {
+                            "sign_up": {
+                              "bot": 0,
+                              "free_trial_abuse": 0
+                            }
+                          },
+                          "description": "User risk scores used for sign-up risk evaluation."
+                        }
+                      },
+                      "required": [
+                        "id",
+                        "primary_email_verified",
+                        "primary_email_auth_enabled",
+                        "signed_up_at_millis",
+                        "last_active_at_millis",
+                        "is_anonymous",
+                        "is_restricted",
+                        "restricted_by_admin",
+                        "risk_scores"
+                      ]
+                    },
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "user",
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-memberships/{team_id}/{user_id}": {
+      "post": {
+        "summary": "Add a user to a team",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Remove a user from a team",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}/accept": {
+      "post": {
+        "summary": "Accept a team invitation by ID",
+        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/details": {
+      "post": {
+        "summary": "Get team invitation details",
+        "description": "Get additional information about a team invitation code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "team_display_name": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "team_display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/check-code": {
+      "post": {
+        "summary": "Check if a team invitation code is valid",
+        "description": "Check if a team invitation code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users": {
+      "get": {
+        "summary": "List users",
+        "description": "Lists all the users in the project. By default, only fully onboarded users are returned. Restricted users (those who haven't completed onboarding requirements like email verification) are included if `include_restricted` is set to `true`. Anonymous users are included if `include_anonymous` is set to `true` (which also includes restricted users).",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Only return users who are members of the given team"
+            },
+            "description": "Only return users who are members of the given team",
+            "required": false
+          },
+          {
+            "name": "limit",
+            "in": "query",
+            "schema": {
+              "type": "number",
+              "description": "The maximum number of items to return"
+            },
+            "description": "The maximum number of items to return",
+            "required": false
+          },
+          {
+            "name": "cursor",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The cursor to start the result set from."
+            },
+            "description": "The cursor to start the result set from.",
+            "required": false
+          },
+          {
+            "name": "order_by",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The field to sort the results by. Defaults to signed_up_at"
+            },
+            "description": "The field to sort the results by. Defaults to signed_up_at",
+            "required": false
+          },
+          {
+            "name": "desc",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to sort the results in descending order. Defaults to false"
+            },
+            "description": "Whether to sort the results in descending order. Defaults to false",
+            "required": false
+          },
+          {
+            "name": "query",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "A search query to filter the results by. This is a free-text search that is applied to the user's id (exact-match only), display name and primary email."
+            },
+            "description": "A search query to filter the results by. This is a free-text search that is applied to the user's id (exact-match only), display name and primary email.",
+            "required": false
+          },
+          {
+            "name": "include_anonymous",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to include anonymous users in the results. When true, also includes restricted users. Defaults to false"
+            },
+            "description": "Whether to include anonymous users in the results. When true, also includes restricted users. Defaults to false",
+            "required": false
+          },
+          {
+            "name": "only_anonymous",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to return only anonymous users. When true, implies include_anonymous=true. Defaults to false"
+            },
+            "description": "Whether to return only anonymous users. When true, implies include_anonymous=true. Defaults to false",
+            "required": false
+          },
+          {
+            "name": "include_restricted",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "Whether to include restricted users in the results. Defaults to false"
+            },
+            "description": "Whether to include restricted users in the results. Defaults to false",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "primary_email": {
+                            "type": "string",
+                            "example": "johndoe@example.com",
+                            "description": "Primary email"
+                          },
+                          "primary_email_verified": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the primary email has been verified to belong to this user"
+                          },
+                          "primary_email_auth_enabled": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable user display name. This is not a unique identifier."
+                          },
+                          "selected_team": {
+                            "type": "object",
+                            "properties": {
+                              "created_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                              },
+                              "server_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                              },
+                              "id": {
+                                "type": "string",
+                                "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                                "description": "The unique identifier of the team"
+                              },
+                              "display_name": {
+                                "type": "string",
+                                "example": "My Team",
+                                "description": "Human-readable team display name. This is not a unique identifier."
+                              },
+                              "profile_image_url": {
+                                "type": "string",
+                                "example": "https://example.com/image.jpg",
+                                "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                              },
+                              "client_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                              },
+                              "client_read_only_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                              }
+                            },
+                            "required": [
+                              "created_at_millis",
+                              "id",
+                              "display_name"
+                            ]
+                          },
+                          "selected_team_id": {
+                            "type": "string",
+                            "example": "team-id",
+                            "description": "ID of the team currently selected by the user"
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "signed_up_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                          },
+                          "last_active_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                          },
+                          "is_anonymous": {
+                            "type": "boolean"
+                          },
+                          "is_restricted": {
+                            "type": "boolean",
+                            "example": false,
+                            "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                          },
+                          "restricted_reason": {
+                            "type": "object",
+                            "properties": {
+                              "type": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "type"
+                            ],
+                            "example": null,
+                            "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                          },
+                          "restricted_by_admin": {
+                            "type": "boolean",
+                            "example": false,
+                            "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                          },
+                          "restricted_by_admin_reason": {
+                            "type": "string",
+                            "example": null,
+                            "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                          },
+                          "restricted_by_admin_private_details": {
+                            "type": "string",
+                            "example": null,
+                            "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                          },
+                          "country_code": {
+                            "type": "string",
+                            "example": "US",
+                            "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                          },
+                          "risk_scores": {
+                            "type": "object",
+                            "properties": {
+                              "sign_up": {
+                                "type": "object",
+                                "properties": {
+                                  "bot": {
+                                    "type": "number"
+                                  },
+                                  "free_trial_abuse": {
+                                    "type": "number"
+                                  }
+                                },
+                                "required": [
+                                  "bot",
+                                  "free_trial_abuse"
+                                ]
+                              }
+                            },
+                            "required": [
+                              "sign_up"
+                            ],
+                            "example": {
+                              "sign_up": {
+                                "bot": 0,
+                                "free_trial_abuse": 0
+                              }
+                            },
+                            "description": "User risk scores used for sign-up risk evaluation."
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "primary_email_verified",
+                          "primary_email_auth_enabled",
+                          "signed_up_at_millis",
+                          "last_active_at_millis",
+                          "is_anonymous",
+                          "is_restricted",
+                          "restricted_by_admin",
+                          "risk_scores"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user",
+        "description": "Creates a new user. E-mail authentication is always enabled, and no password is set, meaning the only way to authenticate the newly created user is through magic link.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "is_anonymous": {
+                    "type": "boolean"
+                  },
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  },
+                  "primary_email_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email has been verified to belong to this user"
+                  },
+                  "primary_email_auth_enabled": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                  },
+                  "password": {
+                    "type": "string",
+                    "example": "my-new-password",
+                    "description": "Sets the user's password. Doing so revokes all current sessions."
+                  },
+                  "password_hash": {
+                    "type": "string",
+                    "description": "If `password` is not given, sets the user's password hash to the given string in Modular Crypt Format (ex.: `$2a$10$VIhIOofSMqGdGlL4wzE//e.77dAQGqNtF/1dT7bqCrVtQuInWy2qi`). Doing so revokes all current sessions."
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "restricted_by_admin": {
+                    "type": "boolean",
+                    "example": false,
+                    "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                  },
+                  "restricted_by_admin_reason": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                  },
+                  "restricted_by_admin_private_details": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                  },
+                  "country_code": {
+                    "type": "string",
+                    "example": "US",
+                    "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                  },
+                  "risk_scores": {
+                    "type": "object",
+                    "properties": {
+                      "sign_up": {
+                        "type": "object",
+                        "properties": {
+                          "bot": {
+                            "type": "number"
+                          },
+                          "free_trial_abuse": {
+                            "type": "number"
+                          }
+                        },
+                        "required": [
+                          "bot",
+                          "free_trial_abuse"
+                        ]
+                      }
+                    },
+                    "required": [
+                      "sign_up"
+                    ]
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "primary_email": "johndoe@example.com",
+                  "primary_email_verified": true,
+                  "primary_email_auth_enabled": true,
+                  "password": "my-new-password",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "restricted_by_admin": false,
+                  "restricted_by_admin_reason": null,
+                  "restricted_by_admin_private_details": null,
+                  "country_code": "US"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users/{user_id}": {
+      "get": {
+        "summary": "Get user",
+        "description": "Gets a user by user ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete user",
+        "description": "Deletes a user. Use this with caution.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update user",
+        "description": "Updates a user. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  },
+                  "primary_email_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email has been verified to belong to this user"
+                  },
+                  "primary_email_auth_enabled": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                  },
+                  "password": {
+                    "type": "string",
+                    "example": "my-new-password",
+                    "description": "Sets the user's password. Doing so revokes all current sessions."
+                  },
+                  "password_hash": {
+                    "type": "string",
+                    "description": "If `password` is not given, sets the user's password hash to the given string in Modular Crypt Format (ex.: `$2a$10$VIhIOofSMqGdGlL4wzE//e.77dAQGqNtF/1dT7bqCrVtQuInWy2qi`). Doing so revokes all current sessions."
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "selected_team_id": {
+                    "type": "string",
+                    "example": "team-id",
+                    "description": "ID of the team currently selected by the user"
+                  },
+                  "is_anonymous": {
+                    "type": "boolean"
+                  },
+                  "restricted_by_admin": {
+                    "type": "boolean",
+                    "example": false,
+                    "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                  },
+                  "restricted_by_admin_reason": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                  },
+                  "restricted_by_admin_private_details": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                  },
+                  "country_code": {
+                    "type": "string",
+                    "example": "US",
+                    "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                  },
+                  "risk_scores": {
+                    "type": "object",
+                    "properties": {
+                      "sign_up": {
+                        "type": "object",
+                        "properties": {
+                          "bot": {
+                            "type": "number"
+                          },
+                          "free_trial_abuse": {
+                            "type": "number"
+                          }
+                        },
+                        "required": [
+                          "bot",
+                          "free_trial_abuse"
+                        ]
+                      }
+                    },
+                    "required": [
+                      "sign_up"
+                    ]
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "primary_email": "johndoe@example.com",
+                  "primary_email_verified": true,
+                  "primary_email_auth_enabled": true,
+                  "password": "my-new-password",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "selected_team_id": "team-id",
+                  "restricted_by_admin": false,
+                  "restricted_by_admin_reason": null,
+                  "restricted_by_admin_private_details": null,
+                  "country_code": "US"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/users/me": {
+      "get": {
+        "summary": "Get current user",
+        "description": "Gets the currently authenticated user.",
+        "parameters": [],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete current user",
+        "description": "Deletes the currently authenticated user. Use this with caution.",
+        "parameters": [],
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update current user",
+        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "John Doe",
+                    "description": "Human-readable user display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                  },
+                  "primary_email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "Primary email"
+                  },
+                  "primary_email_verified": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email has been verified to belong to this user"
+                  },
+                  "primary_email_auth_enabled": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                  },
+                  "password": {
+                    "type": "string",
+                    "example": "my-new-password",
+                    "description": "Sets the user's password. Doing so revokes all current sessions."
+                  },
+                  "password_hash": {
+                    "type": "string",
+                    "description": "If `password` is not given, sets the user's password hash to the given string in Modular Crypt Format (ex.: `$2a$10$VIhIOofSMqGdGlL4wzE//e.77dAQGqNtF/1dT7bqCrVtQuInWy2qi`). Doing so revokes all current sessions."
+                  },
+                  "totp_secret_base64": {
+                    "type": "string",
+                    "example": "dG90cC1zZWNyZXQ=",
+                    "description": "Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA."
+                  },
+                  "selected_team_id": {
+                    "type": "string",
+                    "example": "team-id",
+                    "description": "ID of the team currently selected by the user"
+                  },
+                  "is_anonymous": {
+                    "type": "boolean"
+                  },
+                  "restricted_by_admin": {
+                    "type": "boolean",
+                    "example": false,
+                    "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                  },
+                  "restricted_by_admin_reason": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                  },
+                  "restricted_by_admin_private_details": {
+                    "type": "string",
+                    "example": null,
+                    "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                  },
+                  "country_code": {
+                    "type": "string",
+                    "example": "US",
+                    "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                  },
+                  "risk_scores": {
+                    "type": "object",
+                    "properties": {
+                      "sign_up": {
+                        "type": "object",
+                        "properties": {
+                          "bot": {
+                            "type": "number"
+                          },
+                          "free_trial_abuse": {
+                            "type": "number"
+                          }
+                        },
+                        "required": [
+                          "bot",
+                          "free_trial_abuse"
+                        ]
+                      }
+                    },
+                    "required": [
+                      "sign_up"
+                    ]
+                  }
+                },
+                "example": {
+                  "display_name": "John Doe",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  },
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "primary_email": "johndoe@example.com",
+                  "primary_email_verified": true,
+                  "primary_email_auth_enabled": true,
+                  "password": "my-new-password",
+                  "totp_secret_base64": "dG90cC1zZWNyZXQ=",
+                  "selected_team_id": "team-id",
+                  "restricted_by_admin": false,
+                  "restricted_by_admin_reason": null,
+                  "restricted_by_admin_private_details": null,
+                  "country_code": "US"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "primary_email": {
+                      "type": "string",
+                      "example": "johndoe@example.com",
+                      "description": "Primary email"
+                    },
+                    "primary_email_verified": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email has been verified to belong to this user"
+                    },
+                    "primary_email_auth_enabled": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable user display name. This is not a unique identifier."
+                    },
+                    "selected_team": {
+                      "type": "object",
+                      "properties": {
+                        "created_at_millis": {
+                          "type": "number",
+                          "example": 1630000000000,
+                          "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                        },
+                        "id": {
+                          "type": "string",
+                          "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                          "description": "The unique identifier of the team"
+                        },
+                        "display_name": {
+                          "type": "string",
+                          "example": "My Team",
+                          "description": "Human-readable team display name. This is not a unique identifier."
+                        },
+                        "profile_image_url": {
+                          "type": "string",
+                          "example": "https://example.com/image.jpg",
+                          "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "key": "value"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        }
+                      },
+                      "required": [
+                        "created_at_millis",
+                        "id",
+                        "display_name"
+                      ]
+                    },
+                    "selected_team_id": {
+                      "type": "string",
+                      "example": "team-id",
+                      "description": "ID of the team currently selected by the user"
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "signed_up_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                    },
+                    "last_active_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                    },
+                    "is_anonymous": {
+                      "type": "boolean"
+                    },
+                    "is_restricted": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                    },
+                    "restricted_reason": {
+                      "type": "object",
+                      "properties": {
+                        "type": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "type"
+                      ],
+                      "example": null,
+                      "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                    },
+                    "restricted_by_admin": {
+                      "type": "boolean",
+                      "example": false,
+                      "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                    },
+                    "restricted_by_admin_reason": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                    },
+                    "restricted_by_admin_private_details": {
+                      "type": "string",
+                      "example": null,
+                      "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                    },
+                    "country_code": {
+                      "type": "string",
+                      "example": "US",
+                      "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                    },
+                    "risk_scores": {
+                      "type": "object",
+                      "properties": {
+                        "sign_up": {
+                          "type": "object",
+                          "properties": {
+                            "bot": {
+                              "type": "number"
+                            },
+                            "free_trial_abuse": {
+                              "type": "number"
+                            }
+                          },
+                          "required": [
+                            "bot",
+                            "free_trial_abuse"
+                          ]
+                        }
+                      },
+                      "required": [
+                        "sign_up"
+                      ],
+                      "example": {
+                        "sign_up": {
+                          "bot": 0,
+                          "free_trial_abuse": 0
+                        }
+                      },
+                      "description": "User risk scores used for sign-up risk evaluation."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "primary_email_verified",
+                    "primary_email_auth_enabled",
+                    "signed_up_at_millis",
+                    "last_active_at_millis",
+                    "is_anonymous",
+                    "is_restricted",
+                    "restricted_by_admin",
+                    "risk_scores"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    }
+  }
+}
\ No newline at end of file
diff --git a/docs-mintlify/openapi/webhooks.json b/docs-mintlify/openapi/webhooks.json
new file mode 100644
index 0000000000..9d882ae4af
--- /dev/null
+++ b/docs-mintlify/openapi/webhooks.json
@@ -0,0 +1,1100 @@
+{
+  "openapi": "3.1.0",
+  "info": {
+    "title": "Stack Webhooks API",
+    "version": "1.0.0"
+  },
+  "webhooks": {
+    "user.created": {
+      "post": {
+        "summary": "user.created",
+        "description": "This event is triggered when a user is created.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "user.created",
+                    "description": "user.created"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "id": {
+                        "type": "string",
+                        "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                        "description": "The unique identifier of the user"
+                      },
+                      "primary_email": {
+                        "type": "string",
+                        "example": "johndoe@example.com",
+                        "description": "Primary email"
+                      },
+                      "primary_email_verified": {
+                        "type": "boolean",
+                        "example": true,
+                        "description": "Whether the primary email has been verified to belong to this user"
+                      },
+                      "primary_email_auth_enabled": {
+                        "type": "boolean",
+                        "example": true,
+                        "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                      },
+                      "display_name": {
+                        "type": "string",
+                        "example": "John Doe",
+                        "description": "Human-readable user display name. This is not a unique identifier."
+                      },
+                      "selected_team": {
+                        "type": "object",
+                        "properties": {
+                          "created_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "created_at_millis",
+                          "id",
+                          "display_name"
+                        ]
+                      },
+                      "selected_team_id": {
+                        "type": "string",
+                        "example": "team-id",
+                        "description": "ID of the team currently selected by the user"
+                      },
+                      "profile_image_url": {
+                        "type": "string",
+                        "example": "https://example.com/image.jpg",
+                        "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                      },
+                      "signed_up_at_millis": {
+                        "type": "number",
+                        "example": 1630000000000,
+                        "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                      },
+                      "last_active_at_millis": {
+                        "type": "number",
+                        "example": 1630000000000,
+                        "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                      },
+                      "is_anonymous": {
+                        "type": "boolean"
+                      },
+                      "is_restricted": {
+                        "type": "boolean",
+                        "example": false,
+                        "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                      },
+                      "restricted_reason": {
+                        "type": "object",
+                        "properties": {
+                          "type": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "type"
+                        ],
+                        "example": null,
+                        "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                      },
+                      "restricted_by_admin": {
+                        "type": "boolean",
+                        "example": false,
+                        "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                      },
+                      "restricted_by_admin_reason": {
+                        "type": "string",
+                        "example": null,
+                        "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                      },
+                      "restricted_by_admin_private_details": {
+                        "type": "string",
+                        "example": null,
+                        "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                      },
+                      "country_code": {
+                        "type": "string",
+                        "example": "US",
+                        "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                      },
+                      "risk_scores": {
+                        "type": "object",
+                        "properties": {
+                          "sign_up": {
+                            "type": "object",
+                            "properties": {
+                              "bot": {
+                                "type": "number"
+                              },
+                              "free_trial_abuse": {
+                                "type": "number"
+                              }
+                            },
+                            "required": [
+                              "bot",
+                              "free_trial_abuse"
+                            ]
+                          }
+                        },
+                        "required": [
+                          "sign_up"
+                        ],
+                        "example": {
+                          "sign_up": {
+                            "bot": 0,
+                            "free_trial_abuse": 0
+                          }
+                        },
+                        "description": "User risk scores used for sign-up risk evaluation."
+                      }
+                    },
+                    "required": [
+                      "id",
+                      "primary_email_verified",
+                      "primary_email_auth_enabled",
+                      "signed_up_at_millis",
+                      "last_active_at_millis",
+                      "is_anonymous",
+                      "is_restricted",
+                      "restricted_by_admin",
+                      "risk_scores"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "user.created"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/user.created",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "user.created"
+      }
+    },
+    "user.updated": {
+      "post": {
+        "summary": "user.updated",
+        "description": "This event is triggered when a user is updated.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "user.updated",
+                    "description": "user.updated"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "id": {
+                        "type": "string",
+                        "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                        "description": "The unique identifier of the user"
+                      },
+                      "primary_email": {
+                        "type": "string",
+                        "example": "johndoe@example.com",
+                        "description": "Primary email"
+                      },
+                      "primary_email_verified": {
+                        "type": "boolean",
+                        "example": true,
+                        "description": "Whether the primary email has been verified to belong to this user"
+                      },
+                      "primary_email_auth_enabled": {
+                        "type": "boolean",
+                        "example": true,
+                        "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                      },
+                      "display_name": {
+                        "type": "string",
+                        "example": "John Doe",
+                        "description": "Human-readable user display name. This is not a unique identifier."
+                      },
+                      "selected_team": {
+                        "type": "object",
+                        "properties": {
+                          "created_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "created_at_millis",
+                          "id",
+                          "display_name"
+                        ]
+                      },
+                      "selected_team_id": {
+                        "type": "string",
+                        "example": "team-id",
+                        "description": "ID of the team currently selected by the user"
+                      },
+                      "profile_image_url": {
+                        "type": "string",
+                        "example": "https://example.com/image.jpg",
+                        "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                      },
+                      "signed_up_at_millis": {
+                        "type": "number",
+                        "example": 1630000000000,
+                        "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                      },
+                      "last_active_at_millis": {
+                        "type": "number",
+                        "example": 1630000000000,
+                        "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                      },
+                      "is_anonymous": {
+                        "type": "boolean"
+                      },
+                      "is_restricted": {
+                        "type": "boolean",
+                        "example": false,
+                        "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                      },
+                      "restricted_reason": {
+                        "type": "object",
+                        "properties": {
+                          "type": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "type"
+                        ],
+                        "example": null,
+                        "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                      },
+                      "restricted_by_admin": {
+                        "type": "boolean",
+                        "example": false,
+                        "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                      },
+                      "restricted_by_admin_reason": {
+                        "type": "string",
+                        "example": null,
+                        "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                      },
+                      "restricted_by_admin_private_details": {
+                        "type": "string",
+                        "example": null,
+                        "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                      },
+                      "country_code": {
+                        "type": "string",
+                        "example": "US",
+                        "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                      },
+                      "risk_scores": {
+                        "type": "object",
+                        "properties": {
+                          "sign_up": {
+                            "type": "object",
+                            "properties": {
+                              "bot": {
+                                "type": "number"
+                              },
+                              "free_trial_abuse": {
+                                "type": "number"
+                              }
+                            },
+                            "required": [
+                              "bot",
+                              "free_trial_abuse"
+                            ]
+                          }
+                        },
+                        "required": [
+                          "sign_up"
+                        ],
+                        "example": {
+                          "sign_up": {
+                            "bot": 0,
+                            "free_trial_abuse": 0
+                          }
+                        },
+                        "description": "User risk scores used for sign-up risk evaluation."
+                      }
+                    },
+                    "required": [
+                      "id",
+                      "primary_email_verified",
+                      "primary_email_auth_enabled",
+                      "signed_up_at_millis",
+                      "last_active_at_millis",
+                      "is_anonymous",
+                      "is_restricted",
+                      "restricted_by_admin",
+                      "risk_scores"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "user.updated"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/user.updated",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "user.updated"
+      }
+    },
+    "user.deleted": {
+      "post": {
+        "summary": "user.deleted",
+        "description": "This event is triggered when a user is deleted.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "user.deleted",
+                    "description": "user.deleted"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "id": {
+                        "type": "string",
+                        "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                        "description": "The unique identifier of the user"
+                      },
+                      "teams": {
+                        "type": "array",
+                        "items": {
+                          "type": "object",
+                          "properties": {
+                            "id": {
+                              "type": "string"
+                            }
+                          },
+                          "required": [
+                            "id"
+                          ]
+                        }
+                      }
+                    },
+                    "required": [
+                      "id",
+                      "teams"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "user.deleted"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Users"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/user.deleted",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "user.deleted"
+      }
+    },
+    "team.created": {
+      "post": {
+        "summary": "team.created",
+        "description": "This event is triggered when a team is created.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team.created",
+                    "description": "team.created"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "created_at_millis": {
+                        "type": "number",
+                        "example": 1630000000000,
+                        "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                      },
+                      "id": {
+                        "type": "string",
+                        "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                        "description": "The unique identifier of the team"
+                      },
+                      "display_name": {
+                        "type": "string",
+                        "example": "My Team",
+                        "description": "Human-readable team display name. This is not a unique identifier."
+                      },
+                      "profile_image_url": {
+                        "type": "string",
+                        "example": "https://example.com/image.jpg",
+                        "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      }
+                    },
+                    "required": [
+                      "created_at_millis",
+                      "id",
+                      "display_name"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team.created"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team.created",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team.created"
+      }
+    },
+    "team.updated": {
+      "post": {
+        "summary": "team.updated",
+        "description": "This event is triggered when a team is updated.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team.updated",
+                    "description": "team.updated"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "created_at_millis": {
+                        "type": "number",
+                        "example": 1630000000000,
+                        "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                      },
+                      "id": {
+                        "type": "string",
+                        "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                        "description": "The unique identifier of the team"
+                      },
+                      "display_name": {
+                        "type": "string",
+                        "example": "My Team",
+                        "description": "Human-readable team display name. This is not a unique identifier."
+                      },
+                      "profile_image_url": {
+                        "type": "string",
+                        "example": "https://example.com/image.jpg",
+                        "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "key": "value"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      }
+                    },
+                    "required": [
+                      "created_at_millis",
+                      "id",
+                      "display_name"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team.updated"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team.updated",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team.updated"
+      }
+    },
+    "team.deleted": {
+      "post": {
+        "summary": "team.deleted",
+        "description": "This event is triggered when a team is deleted.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team.deleted",
+                    "description": "team.deleted"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "id": {
+                        "type": "string",
+                        "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                        "description": "The unique identifier of the user"
+                      }
+                    },
+                    "required": [
+                      "id"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team.deleted"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team.deleted",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team.deleted"
+      }
+    },
+    "team_membership.created": {
+      "post": {
+        "summary": "team_membership.created",
+        "description": "This event is triggered when a user is added to a team.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team_membership.created",
+                    "description": "team_membership.created"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "team_id": {
+                        "type": "string"
+                      },
+                      "user_id": {
+                        "type": "string"
+                      }
+                    },
+                    "required": [
+                      "team_id",
+                      "user_id"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team_membership.created"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team_membership.created",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team_membership.created"
+      }
+    },
+    "team_membership.deleted": {
+      "post": {
+        "summary": "team_membership.deleted",
+        "description": "This event is triggered when a user is removed from a team.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team_membership.deleted",
+                    "description": "team_membership.deleted"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "team_id": {
+                        "type": "string"
+                      },
+                      "user_id": {
+                        "type": "string"
+                      }
+                    },
+                    "required": [
+                      "team_id",
+                      "user_id"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team_membership.deleted"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team_membership.deleted",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team_membership.deleted"
+      }
+    },
+    "team_permission.created": {
+      "post": {
+        "summary": "team_permission.created",
+        "description": "This event is triggered when a team permission is created.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team_permission.created",
+                    "description": "team_permission.created"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "id": {
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                      },
+                      "user_id": {
+                        "type": "string",
+                        "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                        "description": "The unique identifier of the user"
+                      },
+                      "team_id": {
+                        "type": "string",
+                        "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                        "description": "The unique identifier of the team"
+                      }
+                    },
+                    "required": [
+                      "id",
+                      "user_id",
+                      "team_id"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team_permission.created"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team_permission.created",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team_permission.created"
+      }
+    },
+    "team_permission.deleted": {
+      "post": {
+        "summary": "team_permission.deleted",
+        "description": "This event is triggered when a team permission is deleted.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string",
+                    "example": "team_permission.deleted",
+                    "description": "team_permission.deleted"
+                  },
+                  "data": {
+                    "type": "object",
+                    "properties": {
+                      "id": {
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                      },
+                      "user_id": {
+                        "type": "string",
+                        "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                        "description": "The unique identifier of the user"
+                      },
+                      "team_id": {
+                        "type": "string",
+                        "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                        "description": "The unique identifier of the team"
+                      }
+                    },
+                    "required": [
+                      "id",
+                      "user_id",
+                      "team_id"
+                    ]
+                  }
+                },
+                "required": [
+                  "type",
+                  "data"
+                ],
+                "example": {
+                  "type": "team_permission.deleted"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/webhooks/team_permission.deleted",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        },
+        "operationId": "team_permission.deleted"
+      }
+    }
+  }
+}
\ No newline at end of file
diff --git a/package.json b/package.json
index 942e91a10f..bbf30ea567 100644
--- a/package.json
+++ b/package.json
@@ -77,7 +77,7 @@
     "generate-sdks": "pnpm exec tsx ./scripts/generate-sdks.ts",
     "generate-setup-prompt-docs": "pnpm exec tsx ./scripts/generate-setup-prompt-docs.ts",
     "generate-sdks:watch": "chokidar --silent -c 'pnpm run generate-sdks' './packages/template' --ignore './packages/template/package.json' --ignore '**/node_modules/**' --ignore '**/dist/**' --ignore '**/.turbo/**' --throttle 2000",
-    "generate-openapi-docs:watch": "chokidar --silent -c 'pnpm run --filter=@stackframe/stack-docs generate-openapi-docs' './docs/openapi/{admin,client,server,webhooks}.json' --throttle 2000",
+    "generate-openapi-docs:watch": "pnpm run --filter=@stackframe/backend codegen-docs && chokidar --silent -c 'pnpm run --filter=@stackframe/backend codegen-docs' './apps/backend/src/app/api/latest/**/route.{js,jsx,ts,tsx}' './apps/backend/src/lib/openapi.ts' './packages/stack-shared/src/interface/webhooks.ts' --throttle 2000",
     "generate-setup-prompt-docs:watch": "pnpm run generate-setup-prompt-docs && chokidar --silent -c 'pnpm run generate-setup-prompt-docs' './packages/stack-shared/src/ai/prompts.ts' './scripts/generate-setup-prompt-docs.ts' --throttle 2000"
   },
   "devDependencies": {

From 4e1922b0be34a8d057367c6eeece85477ac551d7 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Wed, 6 May 2026 10:43:20 -0700
Subject: [PATCH 12/13] Deterministic OpenAPI spec generation

---
 .../scripts/generate-openapi-fumadocs.ts      |    2 +-
 apps/backend/src/lib/openapi.tsx              |    8 +-
 docs-mintlify/openapi/admin.json              | 6452 ++++++++---------
 docs-mintlify/openapi/client.json             | 4306 +++++------
 docs-mintlify/openapi/server.json             | 5936 +++++++--------
 5 files changed, 8355 insertions(+), 8349 deletions(-)

diff --git a/apps/backend/scripts/generate-openapi-fumadocs.ts b/apps/backend/scripts/generate-openapi-fumadocs.ts
index 003335c492..5021384c16 100644
--- a/apps/backend/scripts/generate-openapi-fumadocs.ts
+++ b/apps/backend/scripts/generate-openapi-fumadocs.ts
@@ -29,7 +29,7 @@ async function main() {
   // Generate OpenAPI specs for each audience (let parseOpenAPI handle the filtering)
   const filePathPrefix = path.resolve(process.platform === "win32" ? "apps/src/app/api/latest" : "src/app/api/latest");
   const importPathPrefix = "@/app/api/latest";
-  const filePaths = [...await glob(filePathPrefix + "/**/route.{js,jsx,ts,tsx}")];
+  const filePaths = [...await glob(filePathPrefix + "/**/route.{js,jsx,ts,tsx}")].sort((a, b) => a.localeCompare(b));
 
   const endpoints = new Map(await Promise.all(filePaths.map(async (filePath) => {
     if (!filePath.startsWith(filePathPrefix)) {
diff --git a/apps/backend/src/lib/openapi.tsx b/apps/backend/src/lib/openapi.tsx
index fe037148d8..f49778773e 100644
--- a/apps/backend/src/lib/openapi.tsx
+++ b/apps/backend/src/lib/openapi.tsx
@@ -34,7 +34,13 @@ export function parseOpenAPI(options: {
           )]
         ))
         .filter(([_, handlersByMethod]) => Object.keys(handlersByMethod).length > 0)
-        .sort(([_a, handlersByMethodA], [_b, handlersByMethodB]) => stringCompare((Object.values(handlersByMethodA)[0] as any).tags[0] ?? "", (Object.values(handlersByMethodB)[0] as any).tags[0] ?? "")),
+        .sort(([pathA, handlersByMethodA], [pathB, handlersByMethodB]) => {
+          const tagComparison = stringCompare((Object.values(handlersByMethodA)[0] as any).tags[0] ?? "", (Object.values(handlersByMethodB)[0] as any).tags[0] ?? "");
+          if (tagComparison !== 0) {
+            return tagComparison;
+          }
+          return stringCompare(pathA, pathB);
+        }),
     ),
   };
 }
diff --git a/docs-mintlify/openapi/admin.json b/docs-mintlify/openapi/admin.json
index 4eec7eb9e1..488cd764b7 100644
--- a/docs-mintlify/openapi/admin.json
+++ b/docs-mintlify/openapi/admin.json
@@ -197,24 +197,24 @@
         }
       }
     },
-    "/user-api-keys": {
+    "/team-api-keys": {
       "get": {
-        "summary": "List user API keys",
-        "description": "List all user API keys for the project with their metadata and status",
+        "summary": "List team API keys",
+        "description": "List all team API keys for the project with their metadata and status",
         "parameters": [
           {
-            "name": "user_id",
+            "name": "team_id",
             "in": "query",
             "schema": {
               "type": "string"
             },
-            "required": false
+            "required": true
           }
         ],
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -260,10 +260,8 @@
                           "type": {
                             "type": "string"
                           },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          "team_id": {
+                            "type": "string"
                           }
                         },
                         "required": [
@@ -273,7 +271,7 @@
                           "is_public",
                           "value",
                           "type",
-                          "user_id"
+                          "team_id"
                         ]
                       }
                     },
@@ -299,7 +297,7 @@
         }
       },
       "post": {
-        "summary": "Create user API key",
+        "summary": "Create team API key",
         "description": "Create a new API key for a user or team",
         "parameters": [],
         "requestBody": {
@@ -318,19 +316,15 @@
                   "is_public": {
                     "type": "boolean"
                   },
-                  "user_id": {
-                    "type": "string",
-                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  "team_id": {
+                    "type": "string"
                   }
                 },
                 "required": [
                   "description",
-                  "user_id"
+                  "team_id"
                 ],
-                "example": {
-                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
-                }
+                "example": {}
               }
             }
           }
@@ -338,7 +332,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -371,10 +365,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -384,7 +376,7 @@
                     "created_at_millis",
                     "is_public",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -393,108 +385,10 @@
         }
       }
     },
-    "/team-api-keys": {
-      "get": {
-        "summary": "List team API keys",
-        "description": "List all team API keys for the project with their metadata and status",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "API Keys"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "description": {
-                            "type": "string"
-                          },
-                          "expires_at_millis": {
-                            "type": "number"
-                          },
-                          "manually_revoked_at_millis": {
-                            "type": "number"
-                          },
-                          "created_at_millis": {
-                            "type": "number"
-                          },
-                          "is_public": {
-                            "type": "boolean"
-                          },
-                          "value": {
-                            "type": "object",
-                            "properties": {
-                              "last_four": {
-                                "type": "string"
-                              }
-                            },
-                            "required": [
-                              "last_four"
-                            ]
-                          },
-                          "type": {
-                            "type": "string"
-                          },
-                          "team_id": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "description",
-                          "created_at_millis",
-                          "is_public",
-                          "value",
-                          "type",
-                          "team_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
+    "/team-api-keys/check": {
       "post": {
-        "summary": "Create team API key",
-        "description": "Create a new API key for a user or team",
+        "summary": "Check team API key validity",
+        "description": "Validate a team API key",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -503,22 +397,12 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "description": {
-                    "type": "string"
-                  },
-                  "expires_at_millis": {
-                    "type": "number"
-                  },
-                  "is_public": {
-                    "type": "boolean"
-                  },
-                  "team_id": {
+                  "api_key": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "description",
-                  "team_id"
+                  "api_key"
                 ],
                 "example": {}
               }
@@ -528,7 +412,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/check",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -537,9 +421,6 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "value": {
-                      "type": "string"
-                    },
                     "id": {
                       "type": "string"
                     },
@@ -558,6 +439,17 @@
                     "is_public": {
                       "type": "boolean"
                     },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
                     "type": {
                       "type": "string"
                     },
@@ -566,11 +458,11 @@
                     }
                   },
                   "required": [
-                    "value",
                     "id",
                     "description",
                     "created_at_millis",
                     "is_public",
+                    "value",
                     "type",
                     "team_id"
                   ]
@@ -581,10 +473,10 @@
         }
       }
     },
-    "/user-api-keys/{api_key_id}": {
+    "/team-api-keys/{api_key_id}": {
       "get": {
-        "summary": "Get user API key details",
-        "description": "Get details of a specific user API key",
+        "summary": "Get team API key details",
+        "description": "Get details of a specific team API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -598,7 +490,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -639,10 +531,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -652,7 +542,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -661,8 +551,8 @@
         }
       },
       "patch": {
-        "summary": "Update user API key",
-        "description": "Update an user API key",
+        "summary": "Update team API key",
+        "description": "Update an team API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -695,7 +585,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -736,10 +626,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -749,7 +637,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -758,34 +646,24 @@
         }
       }
     },
-    "/team-api-keys/check": {
-      "post": {
-        "summary": "Check team API key validity",
-        "description": "Validate a team API key",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "api_key": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "api_key"
-                ],
-                "example": {}
-              }
-            }
+    "/user-api-keys": {
+      "get": {
+        "summary": "List user API keys",
+        "description": "List all user API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
           }
-        },
+        ],
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/check",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -794,14 +672,141 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string"
-                    },
-                    "description": {
-                      "type": "string"
-                    },
-                    "expires_at_millis": {
-                      "type": "number"
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  }
+                },
+                "required": [
+                  "description",
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
                     },
                     "manually_revoked_at_millis": {
                       "type": "number"
@@ -812,32 +817,23 @@
                     "is_public": {
                       "type": "boolean"
                     },
-                    "value": {
-                      "type": "object",
-                      "properties": {
-                        "last_four": {
-                          "type": "string"
-                        }
-                      },
-                      "required": [
-                        "last_four"
-                      ]
-                    },
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
+                    "value",
                     "id",
                     "description",
                     "created_at_millis",
                     "is_public",
-                    "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -936,10 +932,10 @@
         }
       }
     },
-    "/team-api-keys/{api_key_id}": {
+    "/user-api-keys/{api_key_id}": {
       "get": {
-        "summary": "Get team API key details",
-        "description": "Get details of a specific team API key",
+        "summary": "Get user API key details",
+        "description": "Get details of a specific user API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -953,7 +949,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -994,8 +990,10 @@
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
@@ -1005,7 +1003,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -1014,8 +1012,8 @@
         }
       },
       "patch": {
-        "summary": "Update team API key",
-        "description": "Update an team API key",
+        "summary": "Update user API key",
+        "description": "Update an user API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -1048,7 +1046,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -1089,8 +1087,10 @@
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
@@ -1100,7 +1100,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -1168,6 +1168,63 @@
         }
       }
     },
+    "/auth/cli/complete": {
+      "post": {
+        "summary": "Complete CLI authentication",
+        "description": "Inspect, claim, or complete a CLI authentication session",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "login_code": {
+                    "type": "string"
+                  },
+                  "mode": {
+                    "type": "string",
+                    "default": "complete"
+                  },
+                  "refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "login_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/auth/cli/poll": {
       "post": {
         "summary": "Poll CLI authentication status",
@@ -1242,63 +1299,6 @@
         }
       }
     },
-    "/auth/cli/complete": {
-      "post": {
-        "summary": "Complete CLI authentication",
-        "description": "Inspect, claim, or complete a CLI authentication session",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "login_code": {
-                    "type": "string"
-                  },
-                  "mode": {
-                    "type": "string",
-                    "default": "complete"
-                  },
-                  "refresh_token": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "login_code"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "CLI Authentication"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/connected-accounts/{user_id}": {
       "get": {
         "summary": "List connected accounts",
@@ -1688,6 +1688,60 @@
         }
       }
     },
+    "/contact-channels/verify/check-code": {
+      "post": {
+        "summary": "Check email verification code",
+        "description": "Check if an email verification code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/contact-channels/{user_id}/{contact_channel_id}": {
       "get": {
         "summary": "Get a contact channel",
@@ -2025,60 +2079,6 @@
         }
       }
     },
-    "/contact-channels/verify/check-code": {
-      "post": {
-        "summary": "Check email verification code",
-        "description": "Check if an email verification code is valid without using it",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Contact Channels"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "is_code_valid"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/contact-channels/{user_id}/{contact_channel_id}/send-verification-code": {
       "post": {
         "summary": "Send contact channel verification code",
@@ -2158,10 +2158,10 @@
         }
       }
     },
-    "/data-vault/stores/{id}/set": {
+    "/data-vault/stores/{id}/get": {
       "post": {
-        "summary": "Store encrypted value in data vault",
-        "description": "Stores a hashed key and encrypted value in the data vault for a specific store",
+        "summary": "Retrieve encrypted value from data vault",
+        "description": "Retrieves and decrypts a value from the data vault using a hashed key",
         "parameters": [
           {
             "name": "id",
@@ -2181,14 +2181,10 @@
                 "properties": {
                   "hashed_key": {
                     "type": "string"
-                  },
-                  "encrypted_value": {
-                    "type": "string"
                   }
                 },
                 "required": [
-                  "hashed_key",
-                  "encrypted_value"
+                  "hashed_key"
                 ],
                 "example": {}
               }
@@ -2198,7 +2194,7 @@
         "tags": [
           "DataVault"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/set",
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/get",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2207,14 +2203,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "encrypted_value": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "success"
+                    "encrypted_value"
                   ]
                 }
               }
@@ -2223,10 +2217,10 @@
         }
       }
     },
-    "/data-vault/stores/{id}/get": {
+    "/data-vault/stores/{id}/set": {
       "post": {
-        "summary": "Retrieve encrypted value from data vault",
-        "description": "Retrieves and decrypts a value from the data vault using a hashed key",
+        "summary": "Store encrypted value in data vault",
+        "description": "Stores a hashed key and encrypted value in the data vault for a specific store",
         "parameters": [
           {
             "name": "id",
@@ -2246,10 +2240,14 @@
                 "properties": {
                   "hashed_key": {
                     "type": "string"
+                  },
+                  "encrypted_value": {
+                    "type": "string"
                   }
                 },
                 "required": [
-                  "hashed_key"
+                  "hashed_key",
+                  "encrypted_value"
                 ],
                 "example": {}
               }
@@ -2259,7 +2257,7 @@
         "tags": [
           "DataVault"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/get",
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/set",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2268,12 +2266,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "encrypted_value": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "encrypted_value"
+                    "success"
                   ]
                 }
               }
@@ -2282,15 +2282,15 @@
         }
       }
     },
-    "/emails/send-email": {
+    "/emails/capacity-boost": {
       "post": {
-        "summary": "Send email",
-        "description": "Send an email to a list of users. The content field should contain either {html} for HTML emails, {template_id, variables} for template-based emails, or {draft_id} for a draft email.",
+        "summary": "Activate email capacity boost",
+        "description": "Temporarily increases email capacity by 4x for 4 hours.",
         "parameters": [],
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/send-email",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/capacity-boost",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2299,23 +2299,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "results": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "user_id": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "user_id"
-                        ]
-                      }
+                    "expires_at": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "results"
+                    "expires_at"
                   ]
                 }
               }
@@ -2324,168 +2313,15 @@
         }
       }
     },
-    "/emails/render-email": {
-      "post": {
-        "summary": "Render email theme",
-        "description": "Renders HTML content using the specified email theme",
+    "/emails/delivery-info": {
+      "get": {
+        "summary": "Get email delivery info",
+        "description": "Returns delivery statistics and capacity information for the current tenancy.",
         "parameters": [],
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/render-email",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "html": {
-                      "type": "string"
-                    },
-                    "subject": {
-                      "type": "string"
-                    },
-                    "notification_category": {
-                      "type": "string"
-                    },
-                    "editable_regions": {
-                      "type": "object"
-                    }
-                  },
-                  "required": [
-                    "html"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/emails/outbox": {
-      "get": {
-        "summary": "List email outbox",
-        "description": "Lists all emails in the outbox with optional filtering by status or simple_status.",
-        "parameters": [
-          {
-            "name": "status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "simple_status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "limit",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "The maximum number of items to return. Maximum allowed is 100"
-            },
-            "description": "The maximum number of items to return. Maximum allowed is 100",
-            "required": false
-          },
-          {
-            "name": "cursor",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "The cursor to start the result set from (email ID)"
-            },
-            "description": "The cursor to start the result set from (email ID)",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object"
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/emails/capacity-boost": {
-      "post": {
-        "summary": "Activate email capacity boost",
-        "description": "Temporarily increases email capacity by 4x for 4 hours.",
-        "parameters": [],
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/capacity-boost",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "expires_at": {
-                      "type": "string"
-                    }
-                  },
-                  "required": [
-                    "expires_at"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/emails/delivery-info": {
-      "get": {
-        "summary": "Get email delivery info",
-        "description": "Returns delivery statistics and capacity information for the current tenancy.",
-        "parameters": [],
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/delivery-info",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/delivery-info",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2619,73 +2455,101 @@
         }
       }
     },
-    "/emails/outbox/{id}": {
+    "/emails/notification-preference/{user_id}": {
       "get": {
-        "summary": "Get email outbox entry",
-        "description": "Gets a single email from the outbox by ID.",
+        "summary": "List notification preferences",
+        "description": "Get all notification preferences for a user, showing which notification categories are enabled or disabled.",
         "parameters": [
           {
-            "name": "status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "simple_status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "id",
+            "name": "user_id",
             "in": "path",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": false
           }
         ],
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
-                "schema": {}
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "notification_category_id": {
+                            "type": "string"
+                          },
+                          "notification_category_name": {
+                            "type": "string"
+                          },
+                          "enabled": {
+                            "type": "boolean"
+                          },
+                          "can_disable": {
+                            "type": "boolean"
+                          }
+                        },
+                        "required": [
+                          "notification_category_id",
+                          "notification_category_name",
+                          "enabled",
+                          "can_disable"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
               }
             }
           }
         }
-      },
+      }
+    },
+    "/emails/notification-preference/{user_id}/{notification_category_id}": {
       "patch": {
-        "summary": "Update email outbox entry",
-        "description": "Updates an email in the outbox. Can be used to edit email content, pause/resume, or cancel emails. Only emails in editable states (`paused`, `preparing`, `rendering`, `render-error`, `scheduled`, `queued`, `server-error`) can be modified.",
+        "summary": "Update notification preference",
+        "description": "Enable or disable a specific notification category for a user.",
         "parameters": [
           {
-            "name": "status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "simple_status",
-            "in": "query",
+            "name": "user_id",
+            "in": "path",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
-            "required": false
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
           },
           {
-            "name": "id",
+            "name": "notification_category_id",
             "in": "path",
             "schema": {
               "type": "string"
@@ -2700,33 +2564,13 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "tsx_source": {
-                    "type": "string"
-                  },
-                  "theme_id": {
-                    "type": "string"
-                  },
-                  "to": {
-                    "type": "object"
-                  },
-                  "variables": {
-                    "type": "object",
-                    "properties": {},
-                    "required": []
-                  },
-                  "skip_deliverability_check": {
-                    "type": "boolean"
-                  },
-                  "scheduled_at_millis": {
-                    "type": "number"
-                  },
-                  "is_paused": {
-                    "type": "boolean"
-                  },
-                  "cancel": {
+                  "enabled": {
                     "type": "boolean"
                   }
                 },
+                "required": [
+                  "enabled"
+                ],
                 "example": {}
               }
             }
@@ -2735,40 +2579,87 @@
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}/{notification_category_id}",
         "responses": {
           "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
-                "schema": {}
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "notification_category_id": {
+                      "type": "string"
+                    },
+                    "notification_category_name": {
+                      "type": "string"
+                    },
+                    "enabled": {
+                      "type": "boolean"
+                    },
+                    "can_disable": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "notification_category_id",
+                    "notification_category_name",
+                    "enabled",
+                    "can_disable"
+                  ]
+                }
               }
             }
           }
         }
       }
     },
-    "/emails/notification-preference/{user_id}": {
+    "/emails/outbox": {
       "get": {
-        "summary": "List notification preferences",
-        "description": "Get all notification preferences for a user, showing which notification categories are enabled or disabled.",
+        "summary": "List email outbox",
+        "description": "Lists all emails in the outbox with optional filtering by status or simple_status.",
         "parameters": [
           {
-            "name": "user_id",
-            "in": "path",
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "limit",
+            "in": "query",
             "schema": {
               "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "description": "The maximum number of items to return. Maximum allowed is 100"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "description": "The maximum number of items to return. Maximum allowed is 100",
+            "required": false
+          },
+          {
+            "name": "cursor",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The cursor to start the result set from (email ID)"
+            },
+            "description": "The cursor to start the result set from (email ID)",
             "required": false
           }
         ],
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2780,27 +2671,7 @@
                     "items": {
                       "type": "array",
                       "items": {
-                        "type": "object",
-                        "properties": {
-                          "notification_category_id": {
-                            "type": "string"
-                          },
-                          "notification_category_name": {
-                            "type": "string"
-                          },
-                          "enabled": {
-                            "type": "boolean"
-                          },
-                          "can_disable": {
-                            "type": "boolean"
-                          }
-                        },
-                        "required": [
-                          "notification_category_id",
-                          "notification_category_name",
-                          "enabled",
-                          "can_disable"
-                        ]
+                        "type": "object"
                       }
                     },
                     "pagination": {
@@ -2825,24 +2696,73 @@
         }
       }
     },
-    "/emails/notification-preference/{user_id}/{notification_category_id}": {
-      "patch": {
-        "summary": "Update notification preference",
-        "description": "Enable or disable a specific notification category for a user.",
+    "/emails/outbox/{id}": {
+      "get": {
+        "summary": "Get email outbox entry",
+        "description": "Gets a single email from the outbox by ID.",
         "parameters": [
           {
-            "name": "user_id",
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
             "in": "path",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update email outbox entry",
+        "description": "Updates an email in the outbox. Can be used to edit email content, pause/resume, or cancel emails. Only emails in editable states (`paused`, `preparing`, `rendering`, `render-error`, `scheduled`, `queued`, `server-error`) can be modified.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
           },
           {
-            "name": "notification_category_id",
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
             "in": "path",
             "schema": {
               "type": "string"
@@ -2857,13 +2777,33 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "enabled": {
+                  "tsx_source": {
+                    "type": "string"
+                  },
+                  "theme_id": {
+                    "type": "string"
+                  },
+                  "to": {
+                    "type": "object"
+                  },
+                  "variables": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  },
+                  "skip_deliverability_check": {
+                    "type": "boolean"
+                  },
+                  "scheduled_at_millis": {
+                    "type": "number"
+                  },
+                  "is_paused": {
+                    "type": "boolean"
+                  },
+                  "cancel": {
                     "type": "boolean"
                   }
                 },
-                "required": [
-                  "enabled"
-                ],
                 "example": {}
               }
             }
@@ -2872,7 +2812,28 @@
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/notification-preference/{user_id}/{notification_category_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/render-email": {
+      "post": {
+        "summary": "Render email theme",
+        "description": "Renders HTML content using the specified email theme",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/render-email",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2881,24 +2842,21 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "notification_category_id": {
+                    "html": {
                       "type": "string"
                     },
-                    "notification_category_name": {
+                    "subject": {
                       "type": "string"
                     },
-                    "enabled": {
-                      "type": "boolean"
+                    "notification_category": {
+                      "type": "string"
                     },
-                    "can_disable": {
-                      "type": "boolean"
+                    "editable_regions": {
+                      "type": "object"
                     }
                   },
                   "required": [
-                    "notification_category_id",
-                    "notification_category_name",
-                    "enabled",
-                    "can_disable"
+                    "html"
                   ]
                 }
               }
@@ -2907,44 +2865,15 @@
         }
       }
     },
-    "/internal/feedback": {
+    "/emails/send-email": {
       "post": {
-        "summary": "Submit support feedback",
-        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "summary": "Send email",
+        "description": "Send an email to a list of users. The content field should contain either {html} for HTML emails, {template_id, variables} for template-based emails, or {draft_id} for a draft email.",
         "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "name": {
-                    "type": "string"
-                  },
-                  "email": {
-                    "type": "string"
-                  },
-                  "message": {
-                    "type": "string"
-                  },
-                  "feedback_type": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "email",
-                  "message"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
         "tags": [
-          "Internal"
+          "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/send-email",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2953,12 +2882,23 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean"
+                    "results": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "user_id"
+                        ]
+                      }
                     }
                   },
                   "required": [
-                    "success"
+                    "results"
                   ]
                 }
               }
@@ -3114,11 +3054,20 @@
         }
       }
     },
-    "/internal/preview/create-project": {
+    "/internal/feature-requests/{featureRequestId}/upvote": {
       "post": {
-        "summary": "Create a preview project",
-        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
-        "parameters": [],
+        "summary": "Toggle upvote on feature request",
+        "description": "Toggle upvote on a feature request for the current user",
+        "parameters": [
+          {
+            "name": "featureRequestId",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -3134,7 +3083,7 @@
         "tags": [
           "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests/{featureRequestId}/upvote",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3143,12 +3092,15 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "project_id": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean"
+                    },
+                    "upvoted": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "project_id"
+                    "success"
                   ]
                 }
               }
@@ -3157,27 +3109,35 @@
         }
       }
     },
-    "/internal/feature-requests/{featureRequestId}/upvote": {
+    "/internal/feedback": {
       "post": {
-        "summary": "Toggle upvote on feature request",
-        "description": "Toggle upvote on a feature request for the current user",
-        "parameters": [
-          {
-            "name": "featureRequestId",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
+        "summary": "Submit support feedback",
+        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
             "application/json": {
               "schema": {
                 "type": "object",
-                "properties": {},
+                "properties": {
+                  "name": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string"
+                  },
+                  "message": {
+                    "type": "string"
+                  },
+                  "feedback_type": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "message"
+                ],
                 "example": {}
               }
             }
@@ -3186,7 +3146,7 @@
         "tags": [
           "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feature-requests/{featureRequestId}/upvote",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3197,9 +3157,6 @@
                   "properties": {
                     "success": {
                       "type": "boolean"
-                    },
-                    "upvoted": {
-                      "type": "boolean"
                     }
                   },
                   "required": [
@@ -3212,24 +3169,27 @@
         }
       }
     },
-    "/oauth-providers": {
-      "get": {
-        "summary": "List OAuth providers",
-        "description": "Retrieves a list of all OAuth providers for a user.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
+    "/internal/preview/create-project": {
+      "post": {
+        "summary": "Create a preview project",
+        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
           }
-        ],
+        },
         "tags": [
-          "Oauth"
+          "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3238,376 +3198,236 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "account_id": {
-                            "type": "string",
-                            "example": "google-account-id-12345",
-                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                          },
-                          "id": {
-                            "type": "string",
-                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                            "description": "The unique identifier of the OAuth provider"
-                          },
-                          "email": {
-                            "type": "string",
-                            "example": "test@gmail.com",
-                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                          },
-                          "provider_config_id": {
-                            "type": "string",
-                            "example": "google",
-                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                          },
-                          "type": {
-                            "type": "string",
-                            "example": "google",
-                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                          },
-                          "allow_sign_in": {
-                            "type": "boolean",
-                            "example": true,
-                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                          },
-                          "allow_connected_accounts": {
-                            "type": "boolean",
-                            "example": true,
-                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
-                          }
-                        },
-                        "required": [
-                          "account_id",
-                          "user_id",
-                          "id",
-                          "provider_config_id",
-                          "type",
-                          "allow_sign_in",
-                          "allow_connected_accounts"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
+                    "project_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "items"
+                    "project_id"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "post": {
-        "summary": "Create an OAuth provider",
-        "description": "Add a new OAuth provider for a user.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "user_id": {
-                    "type": "string",
-                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                  },
-                  "provider_config_id": {
-                    "type": "string"
-                  },
-                  "email": {
-                    "type": "string",
-                    "example": "test@gmail.com",
-                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                  },
-                  "allow_sign_in": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                  },
-                  "allow_connected_accounts": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
-                  },
-                  "account_id": {
-                    "type": "string",
-                    "example": "google-account-id-12345",
-                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                  }
-                },
-                "required": [
-                  "user_id",
-                  "provider_config_id",
-                  "allow_sign_in",
-                  "allow_connected_accounts",
-                  "account_id"
-                ],
-                "example": {
-                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                  "email": "test@gmail.com",
-                  "allow_sign_in": true,
-                  "allow_connected_accounts": true,
-                  "account_id": "google-account-id-12345"
-                }
-              }
-            }
+      }
+    },
+    "/auth/oauth/authorize/{provider_id}": {
+      "get": {
+        "summary": "OAuth authorize endpoint",
+        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+        "parameters": [
+          {
+            "name": "type",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "authenticate"
+            },
+            "required": false
+          },
+          {
+            "name": "token",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": ""
+            },
+            "required": false
+          },
+          {
+            "name": "provider_scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "error_redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "after_callback_redirect_url",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "stack_response_mode",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "redirect"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_token",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_phase",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_unavailable",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "client_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "client_secret",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "state",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "grant_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge_method",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "response_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
           }
-        },
+        ],
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
         "responses": {
-          "201": {
+          "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "account_id": {
-                      "type": "string",
-                      "example": "google-account-id-12345",
-                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    "location": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "account_id",
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
+                    "location"
                   ]
                 }
               }
             }
+          },
+          "307": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string"
+                }
+              }
+            }
           }
         }
       }
     },
-    "/oauth-providers/{user_id}/{provider_id}": {
-      "get": {
-        "summary": "Get an OAuth provider",
-        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
+    "/auth/oauth/cross-domain/authorize": {
+      "post": {
+        "summary": "Create cross-domain auth handoff redirect",
+        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
         "parameters": [
           {
-            "name": "provider_id",
-            "in": "path",
+            "name": "x-stack-publishable-client-key",
+            "in": "header",
             "schema": {
               "type": "string"
             },
             "required": true
           },
           {
-            "name": "user_id",
-            "in": "path",
+            "name": "x-stack-refresh-token",
+            "in": "header",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
-        "tags": [
-          "Oauth"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "account_id": {
-                      "type": "string",
-                      "example": "google-account-id-12345",
-                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
-                    }
-                  },
-                  "required": [
-                    "account_id",
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "delete": {
-        "summary": "Delete an OAuth provider",
-        "description": "Removes an OAuth provider for a given user.",
-        "parameters": [
-          {
-            "name": "provider_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
-        "tags": [
-          "Oauth"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "patch": {
-        "summary": "Update an OAuth provider",
-        "description": "Updates an existing OAuth provider. Only the values provided will be updated.",
-        "parameters": [
-          {
-            "name": "provider_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
@@ -3618,33 +3438,29 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "email": {
-                    "type": "string",
-                    "example": "test@gmail.com",
-                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  "redirect_uri": {
+                    "type": "string"
                   },
-                  "account_id": {
-                    "type": "string",
-                    "example": "google-account-id-12345",
-                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  "state": {
+                    "type": "string"
                   },
-                  "allow_sign_in": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  "code_challenge": {
+                    "type": "string"
                   },
-                  "allow_connected_accounts": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  "code_challenge_method": {
+                    "type": "string",
+                    "default": "S256"
+                  },
+                  "after_callback_redirect_url": {
+                    "type": "string"
                   }
                 },
-                "example": {
-                  "email": "test@gmail.com",
-                  "account_id": "google-account-id-12345",
-                  "allow_sign_in": true,
-                  "allow_connected_accounts": true
-                }
+                "required": [
+                  "redirect_uri",
+                  "state",
+                  "code_challenge"
+                ],
+                "example": {}
               }
             }
           }
@@ -3652,7 +3468,7 @@
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3661,55 +3477,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "account_id": {
-                      "type": "string",
-                      "example": "google-account-id-12345",
-                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    "redirect_url": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "account_id",
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
+                    "redirect_url"
                   ]
                 }
               }
@@ -3764,28 +3537,114 @@
         }
       }
     },
-    "/auth/oauth/cross-domain/authorize": {
-      "post": {
-        "summary": "Create cross-domain auth handoff redirect",
-        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
+    "/oauth-providers": {
+      "get": {
+        "summary": "List OAuth providers",
+        "description": "Retrieves a list of all OAuth providers for a user.",
         "parameters": [
           {
-            "name": "x-stack-publishable-client-key",
-            "in": "header",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "x-stack-refresh-token",
-            "in": "header",
+            "name": "user_id",
+            "in": "query",
             "schema": {
               "type": "string"
             },
-            "required": true
+            "required": false
           }
         ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the OAuth provider"
+                          },
+                          "email": {
+                            "type": "string",
+                            "example": "test@gmail.com",
+                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                          },
+                          "provider_config_id": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                          },
+                          "allow_sign_in": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                          },
+                          "allow_connected_accounts": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                          }
+                        },
+                        "required": [
+                          "account_id",
+                          "user_id",
+                          "id",
+                          "provider_config_id",
+                          "type",
+                          "allow_sign_in",
+                          "allow_connected_accounts"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create an OAuth provider",
+        "description": "Add a new OAuth provider for a user.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -3793,29 +3652,49 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "redirect_uri": {
-                    "type": "string"
-                  },
-                  "state": {
-                    "type": "string"
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                   },
-                  "code_challenge": {
+                  "provider_config_id": {
                     "type": "string"
                   },
-                  "code_challenge_method": {
+                  "email": {
                     "type": "string",
-                    "default": "S256"
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
                   },
-                  "after_callback_redirect_url": {
-                    "type": "string"
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
                   }
                 },
                 "required": [
-                  "redirect_uri",
-                  "state",
-                  "code_challenge"
+                  "user_id",
+                  "provider_config_id",
+                  "allow_sign_in",
+                  "allow_connected_accounts",
+                  "account_id"
                 ],
-                "example": {}
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                  "email": "test@gmail.com",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true,
+                  "account_id": "google-account-id-12345"
+                }
               }
             }
           }
@@ -3823,21 +3702,64 @@
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
         "responses": {
-          "200": {
+          "201": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "redirect_url": {
-                      "type": "string"
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
                     }
                   },
                   "required": [
-                    "redirect_url"
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
                   ]
                 }
               }
@@ -3846,171 +3768,35 @@
         }
       }
     },
-    "/auth/oauth/authorize/{provider_id}": {
+    "/oauth-providers/{user_id}/{provider_id}": {
       "get": {
-        "summary": "OAuth authorize endpoint",
-        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+        "summary": "Get an OAuth provider",
+        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
         "parameters": [
           {
-            "name": "type",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "default": "authenticate"
-            },
-            "required": false
-          },
-          {
-            "name": "token",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "default": ""
-            },
-            "required": false
-          },
-          {
-            "name": "provider_scope",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "error_redirect_uri",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "after_callback_redirect_url",
-            "in": "query",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
-            "required": false
+            "required": true
           },
           {
-            "name": "stack_response_mode",
-            "in": "query",
+            "name": "user_id",
+            "in": "path",
             "schema": {
               "type": "string",
-              "default": "redirect"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_token",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_phase",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_unavailable",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "client_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "client_secret",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "redirect_uri",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "scope",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "state",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "grant_type",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "code_challenge",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "code_challenge_method",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "response_type",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "provider_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4019,48 +3805,90 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "location": {
-                      "type": "string"
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
                     }
                   },
                   "required": [
-                    "location"
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
                   ]
                 }
               }
             }
-          },
-          "307": {
-            "description": "Successful response",
-            "content": {
-              "text/plain": {
-                "schema": {
-                  "type": "string"
-                }
-              }
-            }
           }
         }
-      }
-    },
-    "/internal/ai-conversations": {
-      "get": {
-        "summary": "List AI conversations",
-        "description": "List AI conversations for the current user filtered by project",
+      },
+      "delete": {
+        "summary": "Delete an OAuth provider",
+        "description": "Removes an OAuth provider for a given user.",
         "parameters": [
           {
-            "name": "projectId",
-            "in": "query",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
             "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
           }
         ],
         "tags": [
-          "Others"
+          "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4069,35 +3897,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "conversations": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "title": {
-                            "type": "string"
-                          },
-                          "projectId": {
-                            "type": "string"
-                          },
-                          "updatedAt": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "title",
-                          "projectId",
-                          "updatedAt"
-                        ]
-                      }
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "conversations"
+                    "success"
                   ]
                 }
               }
@@ -4105,10 +3912,30 @@
           }
         }
       },
-      "post": {
-        "summary": "Create AI conversation",
-        "description": "Create a new AI conversation with optional initial messages",
-        "parameters": [],
+      "patch": {
+        "summary": "Update an OAuth provider",
+        "description": "Updates an existing OAuth provider. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -4116,11 +3943,184 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "title": {
-                    "type": "string"
-                  },
-                  "projectId": {
-                    "type": "string"
+                  "email": {
+                    "type": "string",
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  },
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  }
+                },
+                "example": {
+                  "email": "test@gmail.com",
+                  "account_id": "google-account-id-12345",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/internal/ai-conversations": {
+      "get": {
+        "summary": "List AI conversations",
+        "description": "List AI conversations for the current user filtered by project",
+        "parameters": [
+          {
+            "name": "projectId",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Others"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/ai-conversations",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "conversations": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "title": {
+                            "type": "string"
+                          },
+                          "projectId": {
+                            "type": "string"
+                          },
+                          "updatedAt": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "title",
+                          "projectId",
+                          "updatedAt"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "conversations"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create AI conversation",
+        "description": "Create a new AI conversation with optional initial messages",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "title": {
+                    "type": "string"
+                  },
+                  "projectId": {
+                    "type": "string"
                   },
                   "messages": {
                     "type": "array",
@@ -4400,6 +4400,88 @@
         }
       }
     },
+    "/auth/mfa/sign-in": {
+      "post": {
+        "summary": "MFA sign in",
+        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "type": {
+                    "type": "string"
+                  },
+                  "totp": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "type",
+                  "totp",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "refresh_token": {
+                      "type": "string",
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/auth/otp/send-sign-in-code": {
       "post": {
         "summary": "Send sign-in code",
@@ -4546,10 +4628,10 @@
         }
       }
     },
-    "/auth/mfa/sign-in": {
+    "/auth/otp/sign-in/check-code": {
       "post": {
-        "summary": "MFA sign in",
-        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "summary": "Check sign in code",
+        "description": "Check if a sign in code is valid without using it",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4558,10 +4640,61 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "type": {
-                    "type": "string"
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
                   },
-                  "totp": {
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset": {
+      "post": {
+        "summary": "Reset password with a code",
+        "description": "Reset password with a code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
                     "type": "string"
                   },
                   "code": {
@@ -4571,8 +4704,7 @@
                   }
                 },
                 "required": [
-                  "type",
-                  "totp",
+                  "password",
                   "code"
                 ],
                 "example": {
@@ -4583,9 +4715,9 @@
           }
         },
         "tags": [
-          "OTP"
+          "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4594,32 +4726,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "refresh_token": {
-                      "type": "string",
-                      "example": "i8ns3aq2...14y",
-                      "description": "Long-lived refresh token that can be used to obtain a new access token"
-                    },
-                    "access_token": {
-                      "type": "string",
-                      "example": "eyJhmMiJB2TO...diI4QT",
-                      "description": "Short-lived access token that can be used to authenticate the user"
-                    },
-                    "is_new_user": {
+                    "success": {
                       "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user is a new user"
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The unique identifier of the user"
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "refresh_token",
-                    "access_token",
-                    "is_new_user",
-                    "user_id"
+                    "success"
                   ]
                 }
               }
@@ -4628,10 +4742,10 @@
         }
       }
     },
-    "/auth/otp/sign-in/check-code": {
+    "/auth/password/reset/check-code": {
       "post": {
-        "summary": "Check sign in code",
-        "description": "Check if a sign in code is valid without using it",
+        "summary": "Check reset password code",
+        "description": "Check if a reset password code is valid without using it",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4643,7 +4757,7 @@
                   "code": {
                     "type": "string",
                     "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                    "description": "A 45 character code"
                   }
                 },
                 "required": [
@@ -4657,9 +4771,9 @@
           }
         },
         "tags": [
-          "OTP"
+          "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4682,20 +4796,11 @@
         }
       }
     },
-    "/auth/password/update": {
+    "/auth/password/send-reset-code": {
       "post": {
-        "summary": "Update password",
-        "description": "Update the password of the current user, requires the old password",
-        "parameters": [
-          {
-            "name": "x-stack-refresh-token",
-            "in": "header",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          }
-        ],
+        "summary": "Send reset password code",
+        "description": "Send a code to the user's email address for resetting the password.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -4703,16 +4808,16 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "old_password": {
+                  "email": {
                     "type": "string"
                   },
-                  "new_password": {
+                  "callback_url": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "old_password",
-                  "new_password"
+                  "email",
+                  "callback_url"
                 ],
                 "example": {}
               }
@@ -4722,7 +4827,7 @@
         "tags": [
           "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4732,9 +4837,7 @@
                   "type": "object",
                   "properties": {
                     "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -4942,11 +5045,20 @@
         }
       }
     },
-    "/auth/password/send-reset-code": {
+    "/auth/password/update": {
       "post": {
-        "summary": "Send reset password code",
-        "description": "Send a code to the user's email address for resetting the password.",
-        "parameters": [],
+        "summary": "Update password",
+        "description": "Update the password of the current user, requires the old password",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -4954,16 +5066,16 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "email": {
+                  "old_password": {
                     "type": "string"
                   },
-                  "callback_url": {
+                  "new_password": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "email",
-                  "callback_url"
+                  "old_password",
+                  "new_password"
                 ],
                 "example": {}
               }
@@ -4973,7 +5085,7 @@
         "tags": [
           "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4983,7 +5095,9 @@
                   "type": "object",
                   "properties": {
                     "success": {
-                      "type": "string"
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
@@ -4996,42 +5110,49 @@
         }
       }
     },
-    "/auth/password/reset": {
-      "post": {
-        "summary": "Reset password with a code",
-        "description": "Reset password with a code",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "password": {
-                    "type": "string"
-                  },
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "password",
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
+    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
+      "get": {
+        "summary": "Get Item",
+        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
+        "parameters": [
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to retrieve"
+            },
+            "description": "The ID of the item to retrieve",
+            "required": true
           }
-        },
+        ],
         "tags": [
-          "Password"
+          "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5040,27 +5161,84 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
+                    "id": {
+                      "type": "string",
+                      "example": "credits",
+                      "description": "The ID of the item"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "API Credits",
+                      "description": "The human-readable name of the item"
+                    },
+                    "quantity": {
+                      "type": "number",
+                      "example": 1000,
+                      "description": "The current quantity of the item (can be negative)"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name",
+                    "quantity"
+                  ]
+                }
+              }
+            }
+          }
         }
       }
     },
-    "/auth/password/reset/check-code": {
+    "/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity": {
       "post": {
-        "summary": "Check reset password code",
-        "description": "Check if a reset password code is valid without using it",
-        "parameters": [],
+        "summary": "Update Item Quantity",
+        "description": "Updates the quantity of an item for a customer. Can increase or decrease quantities, with optional expiration and negative balance control.",
+        "parameters": [
+          {
+            "name": "allow_negative",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "false",
+              "description": "Whether to allow the quantity to go negative"
+            },
+            "description": "Whether to allow the quantity to go negative",
+            "required": true
+          },
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to update"
+            },
+            "description": "The ID of the item to update",
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -5068,26 +5246,38 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "delta": {
+                    "type": "number",
+                    "example": 100,
+                    "description": "The amount to change the quantity by (positive to increase, negative to decrease)"
+                  },
+                  "expires_at": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "2024-12-31T23:59:59Z",
+                    "description": "Optional expiration date for this quantity change (ISO 8601 format)"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Monthly subscription renewal",
+                    "description": "Optional description for this quantity change"
                   }
                 },
                 "required": [
-                  "code"
+                  "delta"
                 ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "delta": 100,
+                  "expires_at": "2024-12-31T23:59:59Z",
+                  "description": "Monthly subscription renewal"
                 }
               }
             }
           }
         },
         "tags": [
-          "Password"
+          "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5095,14 +5285,7 @@
               "application/json": {
                 "schema": {
                   "type": "object",
-                  "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "is_code_valid"
-                  ]
+                  "properties": {}
                 }
               }
             }
@@ -5110,10 +5293,10 @@
         }
       }
     },
-    "/payments/purchases/validate-code": {
+    "/payments/purchases/create-purchase-url": {
       "post": {
-        "summary": "Validate Purchase Code",
-        "description": "Validates a purchase verification code and returns purchase details including available prices.",
+        "summary": "Create Purchase URL",
+        "description": "Creates a secure checkout URL for purchasing a product.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -5122,22 +5305,99 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "full_code": {
+                  "customer_type": {
                     "type": "string",
-                    "example": "proj_abc123_def456ghi789",
-                    "description": "The verification code, given as a query parameter in the purchase URL"
+                    "example": "user",
+                    "description": "The type of customer making the purchase"
+                  },
+                  "customer_id": {
+                    "type": "string",
+                    "example": "user_1234567890abcdef",
+                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
+                  },
+                  "product_id": {
+                    "type": "string",
+                    "example": "prod_premium_monthly",
+                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
+                  },
+                  "product_inline": {
+                    "type": "object",
+                    "properties": {
+                      "display_name": {
+                        "type": "string"
+                      },
+                      "customer_type": {
+                        "type": "string"
+                      },
+                      "free_trial": {
+                        "type": "array",
+                        "items": {
+                          "type": "number"
+                        }
+                      },
+                      "server_only": {
+                        "type": "boolean",
+                        "default": true
+                      },
+                      "stackable": {
+                        "type": "boolean",
+                        "default": false
+                      },
+                      "prices": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "included_items": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                      }
+                    },
+                    "required": [
+                      "display_name",
+                      "customer_type"
+                    ],
+                    "description": "Inline product definition. Either this or product_id should be given."
                   },
                   "return_url": {
                     "type": "string",
                     "example": "https://myapp.com/purchase-success",
-                    "description": "URL to redirect to after purchase completion"
+                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
                   }
                 },
                 "required": [
-                  "full_code"
+                  "customer_type",
+                  "customer_id"
                 ],
                 "example": {
-                  "full_code": "proj_abc123_def456ghi789",
+                  "customer_type": "user",
+                  "customer_id": "user_1234567890abcdef",
+                  "product_id": "prod_premium_monthly",
                   "return_url": "https://myapp.com/purchase-success"
                 }
               }
@@ -5147,7 +5407,7 @@
         "tags": [
           "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5156,113 +5416,13 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "product": {
-                      "type": "object",
-                      "properties": {
-                        "display_name": {
-                          "type": "string"
-                        },
-                        "customer_type": {
-                          "type": "string"
-                        },
-                        "free_trial": {
-                          "type": "array",
-                          "items": {
-                            "type": "number"
-                          }
-                        },
-                        "server_only": {
-                          "type": "boolean",
-                          "default": true
-                        },
-                        "stackable": {
-                          "type": "boolean",
-                          "default": false
-                        },
-                        "prices": {
-                          "type": "object",
-                          "properties": {},
-                          "required": []
-                        },
-                        "included_items": {
-                          "type": "object",
-                          "properties": {},
-                          "required": []
-                        },
-                        "client_metadata": {
-                          "type": "object",
-                          "example": {
-                            "featureFlag": true,
-                            "source": "marketing-campaign"
-                          },
-                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                        },
-                        "client_read_only_metadata": {
-                          "type": "object",
-                          "example": {
-                            "featureFlag": true,
-                            "source": "marketing-campaign"
-                          },
-                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                        },
-                        "server_metadata": {
-                          "type": "object",
-                          "example": {
-                            "featureFlag": true,
-                            "source": "marketing-campaign"
-                          },
-                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
-                        }
-                      },
-                      "required": [
-                        "display_name",
-                        "customer_type"
-                      ]
-                    },
-                    "stripe_account_id": {
-                      "type": "string"
-                    },
-                    "project_id": {
-                      "type": "string"
-                    },
-                    "project_logo_url": {
-                      "type": "string"
-                    },
-                    "already_bought_non_stackable": {
-                      "type": "boolean"
-                    },
-                    "conflicting_products": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "product_id": {
-                            "type": "string"
-                          },
-                          "display_name": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "product_id",
-                          "display_name"
-                        ]
-                      }
-                    },
-                    "test_mode": {
-                      "type": "boolean"
-                    },
-                    "charges_enabled": {
-                      "type": "boolean"
+                    "url": {
+                      "type": "string",
+                      "description": "The secure checkout URL for completing the purchase"
                     }
                   },
                   "required": [
-                    "stripe_account_id",
-                    "project_id",
-                    "already_bought_non_stackable",
-                    "conflicting_products",
-                    "test_mode",
-                    "charges_enabled"
+                    "url"
                   ]
                 }
               }
@@ -5341,10 +5501,10 @@
         }
       }
     },
-    "/payments/purchases/create-purchase-url": {
+    "/payments/purchases/validate-code": {
       "post": {
-        "summary": "Create Purchase URL",
-        "description": "Creates a secure checkout URL for purchasing a product.",
+        "summary": "Validate Purchase Code",
+        "description": "Validates a purchase verification code and returns purchase details including available prices.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -5353,99 +5513,22 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "customer_type": {
-                    "type": "string",
-                    "example": "user",
-                    "description": "The type of customer making the purchase"
-                  },
-                  "customer_id": {
-                    "type": "string",
-                    "example": "user_1234567890abcdef",
-                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
-                  },
-                  "product_id": {
+                  "full_code": {
                     "type": "string",
-                    "example": "prod_premium_monthly",
-                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
-                  },
-                  "product_inline": {
-                    "type": "object",
-                    "properties": {
-                      "display_name": {
-                        "type": "string"
-                      },
-                      "customer_type": {
-                        "type": "string"
-                      },
-                      "free_trial": {
-                        "type": "array",
-                        "items": {
-                          "type": "number"
-                        }
-                      },
-                      "server_only": {
-                        "type": "boolean",
-                        "default": true
-                      },
-                      "stackable": {
-                        "type": "boolean",
-                        "default": false
-                      },
-                      "prices": {
-                        "type": "object",
-                        "properties": {},
-                        "required": []
-                      },
-                      "included_items": {
-                        "type": "object",
-                        "properties": {},
-                        "required": []
-                      },
-                      "client_metadata": {
-                        "type": "object",
-                        "example": {
-                          "featureFlag": true,
-                          "source": "marketing-campaign"
-                        },
-                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                      },
-                      "client_read_only_metadata": {
-                        "type": "object",
-                        "example": {
-                          "featureFlag": true,
-                          "source": "marketing-campaign"
-                        },
-                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                      },
-                      "server_metadata": {
-                        "type": "object",
-                        "example": {
-                          "featureFlag": true,
-                          "source": "marketing-campaign"
-                        },
-                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
-                      }
-                    },
-                    "required": [
-                      "display_name",
-                      "customer_type"
-                    ],
-                    "description": "Inline product definition. Either this or product_id should be given."
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
                   },
                   "return_url": {
                     "type": "string",
                     "example": "https://myapp.com/purchase-success",
-                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
+                    "description": "URL to redirect to after purchase completion"
                   }
                 },
                 "required": [
-                  "customer_type",
-                  "customer_id"
+                  "full_code"
                 ],
                 "example": {
-                  "customer_type": "user",
-                  "customer_id": "user_1234567890abcdef",
-                  "product_id": "prod_premium_monthly",
+                  "full_code": "proj_abc123_def456ghi789",
                   "return_url": "https://myapp.com/purchase-success"
                 }
               }
@@ -5455,73 +5538,7 @@
         "tags": [
           "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "url": {
-                      "type": "string",
-                      "description": "The secure checkout URL for completing the purchase"
-                    }
-                  },
-                  "required": [
-                    "url"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
-      "get": {
-        "summary": "Get Item",
-        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
-        "parameters": [
-          {
-            "name": "customer_type",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user",
-              "description": "The type of customer"
-            },
-            "description": "The type of customer",
-            "required": true
-          },
-          {
-            "name": "customer_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user_1234567890abcdef",
-              "description": "The ID of the customer"
-            },
-            "description": "The ID of the customer",
-            "required": true
-          },
-          {
-            "name": "item_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "credits",
-              "description": "The ID of the item to retrieve"
-            },
-            "description": "The ID of the item to retrieve",
-            "required": true
-          }
-        ],
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5530,131 +5547,114 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "credits",
-                      "description": "The ID of the item"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "API Credits",
-                      "description": "The human-readable name of the item"
-                    },
-                    "quantity": {
-                      "type": "number",
-                      "example": 1000,
-                      "description": "The current quantity of the item (can be negative)"
-                    }
-                  },
-                  "required": [
-                    "id",
-                    "display_name",
-                    "quantity"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity": {
-      "post": {
-        "summary": "Update Item Quantity",
-        "description": "Updates the quantity of an item for a customer. Can increase or decrease quantities, with optional expiration and negative balance control.",
-        "parameters": [
-          {
-            "name": "allow_negative",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "false",
-              "description": "Whether to allow the quantity to go negative"
-            },
-            "description": "Whether to allow the quantity to go negative",
-            "required": true
-          },
-          {
-            "name": "customer_type",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user",
-              "description": "The type of customer"
-            },
-            "description": "The type of customer",
-            "required": true
-          },
-          {
-            "name": "customer_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user_1234567890abcdef",
-              "description": "The ID of the customer"
-            },
-            "description": "The ID of the customer",
-            "required": true
-          },
-          {
-            "name": "item_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "credits",
-              "description": "The ID of the item to update"
-            },
-            "description": "The ID of the item to update",
-            "required": true
-          }
-        ],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "delta": {
-                    "type": "number",
-                    "example": 100,
-                    "description": "The amount to change the quantity by (positive to increase, negative to decrease)"
-                  },
-                  "expires_at": {
-                    "type": "string",
-                    "example": "2024-12-31T23:59:59Z",
-                    "description": "Optional expiration date for this quantity change (ISO 8601 format)"
+                    "product": {
+                      "type": "object",
+                      "properties": {
+                        "display_name": {
+                          "type": "string"
+                        },
+                        "customer_type": {
+                          "type": "string"
+                        },
+                        "free_trial": {
+                          "type": "array",
+                          "items": {
+                            "type": "number"
+                          }
+                        },
+                        "server_only": {
+                          "type": "boolean",
+                          "default": true
+                        },
+                        "stackable": {
+                          "type": "boolean",
+                          "default": false
+                        },
+                        "prices": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "included_items": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                        }
+                      },
+                      "required": [
+                        "display_name",
+                        "customer_type"
+                      ]
+                    },
+                    "stripe_account_id": {
+                      "type": "string"
+                    },
+                    "project_id": {
+                      "type": "string"
+                    },
+                    "project_logo_url": {
+                      "type": "string"
+                    },
+                    "already_bought_non_stackable": {
+                      "type": "boolean"
+                    },
+                    "conflicting_products": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "product_id": {
+                            "type": "string"
+                          },
+                          "display_name": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "product_id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "test_mode": {
+                      "type": "boolean"
+                    },
+                    "charges_enabled": {
+                      "type": "boolean"
+                    }
                   },
-                  "description": {
-                    "type": "string",
-                    "example": "Monthly subscription renewal",
-                    "description": "Optional description for this quantity change"
-                  }
-                },
-                "required": [
-                  "delta"
-                ],
-                "example": {
-                  "delta": 100,
-                  "expires_at": "2024-12-31T23:59:59Z",
-                  "description": "Monthly subscription renewal"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {}
+                  "required": [
+                    "stripe_account_id",
+                    "project_id",
+                    "already_bought_non_stackable",
+                    "conflicting_products",
+                    "test_mode",
+                    "charges_enabled"
+                  ]
                 }
               }
             }
@@ -5662,15 +5662,15 @@
         }
       }
     },
-    "/team-permission-definitions": {
+    "/project-permission-definitions": {
       "get": {
-        "summary": "List team permission definitions",
-        "description": "Query and filter the permission with team_id, user_id, and permission_id (the equivalent of listing permissions on the Stack dashboard)",
+        "summary": "List project permission definitions",
+        "description": "Query and filter project permission definitions (the equivalent of listing permissions on the Stack dashboard)",
         "parameters": [],
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5735,8 +5735,8 @@
         }
       },
       "post": {
-        "summary": "Create a new team permission definition",
-        "description": "Create a new permission definition (the equivalent of creating a new permission on the Stack dashboard)",
+        "summary": "Create a new project permission definition",
+        "description": "Create a new project permission definition (the equivalent of creating a new permission on the Stack dashboard)",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -5785,7 +5785,7 @@
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions",
         "responses": {
           "201": {
             "description": "Successful response",
@@ -5828,60 +5828,111 @@
         }
       }
     },
-    "/team-permissions": {
-      "get": {
-        "summary": "List team permissions of a user",
-        "description": "Query and filter the permission with `team_id`, `user_id`, and `permission_id`. Note that this might contain the permissions with the same permission ID across different teams and users. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
+    "/project-permission-definitions/{permission_id}": {
+      "delete": {
+        "summary": "Delete a project permission definition",
+        "description": "Delete a project permission definition (the equivalent of deleting a permission on the Stack dashboard)",
         "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
-              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
-            },
-            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
-            "required": false
-          },
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "me",
-              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
-            },
-            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
-            "required": false
-          },
           {
             "name": "permission_id",
-            "in": "query",
+            "in": "path",
             "schema": {
               "type": "string",
-              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
-              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
             },
-            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
-            "required": false
-          },
-          {
-            "name": "recursive",
-            "in": "query",
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions/{permission_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update a project permission definition",
+        "description": "Update a project permission definition (the equivalent of updating a permission on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "permission_id",
+            "in": "path",
             "schema": {
               "type": "string",
-              "example": "true",
-              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
             },
-            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
-            "required": false
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
           }
         ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "id": {
+                    "type": "string",
+                    "example": "read_secret_info",
+                    "description": "The permission ID used to uniquely identify a permission. Can only contain lowercase letters, numbers, \":\", and \"_\" characters"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Read secret information",
+                    "description": "A human-readable description of the permission"
+                  },
+                  "contained_permission_ids": {
+                    "type": "array",
+                    "items": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "example": [
+                      "read_public_info"
+                    ],
+                    "description": "The IDs of the permissions that are contained in this permission"
+                  }
+                },
+                "example": {
+                  "id": "read_secret_info",
+                  "description": "Read secret information",
+                  "contained_permission_ids": [
+                    "read_public_info"
+                  ]
+                }
+              }
+            }
+          }
+        },
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions/{permission_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5890,48 +5941,32 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                    },
+                    "description": {
+                      "type": "string",
+                      "example": "Read secret information",
+                      "description": "A human-readable description of the permission"
+                    },
+                    "contained_permission_ids": {
                       "type": "array",
                       "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string",
-                            "example": "read_secret_info",
-                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The unique identifier of the user"
-                          },
-                          "team_id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "user_id",
-                          "team_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
+                        "type": "string",
+                        "example": "read_secret_info",
+                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
                       },
-                      "required": []
+                      "example": [
+                        "read_public_info"
+                      ],
+                      "description": "The IDs of the permissions that are contained in this permission"
                     }
                   },
                   "required": [
-                    "items"
+                    "id",
+                    "contained_permission_ids"
                   ]
                 }
               }
@@ -6035,71 +6070,72 @@
         }
       }
     },
-    "/project-permission-definitions": {
-      "get": {
-        "summary": "List project permission definitions",
-        "description": "Query and filter project permission definitions (the equivalent of listing permissions on the Stack dashboard)",
-        "parameters": [],
+    "/project-permissions/{user_id}/{permission_id}": {
+      "post": {
+        "summary": "Grant a global permission to a user",
+        "description": "Grant a global permission to a user (the permission must be created first on the Stack dashboard)",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
         "responses": {
-          "200": {
+          "201": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string",
-                            "example": "read_secret_info",
-                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                          },
-                          "description": {
-                            "type": "string",
-                            "example": "Read secret information",
-                            "description": "A human-readable description of the permission"
-                          },
-                          "contained_permission_ids": {
-                            "type": "array",
-                            "items": {
-                              "type": "string",
-                              "example": "read_secret_info",
-                              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                            },
-                            "example": [
-                              "read_public_info"
-                            ],
-                            "description": "The IDs of the permissions that are contained in this permission"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "contained_permission_ids"
-                        ]
-                      }
+                    "id": {
+                      "type": "string",
+                      "example": "read_secret_info",
+                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
                     },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
                     }
                   },
                   "required": [
-                    "items"
+                    "id",
+                    "user_id"
                   ]
                 }
               }
@@ -6107,92 +6143,53 @@
           }
         }
       },
-      "post": {
-        "summary": "Create a new project permission definition",
-        "description": "Create a new project permission definition (the equivalent of creating a new permission on the Stack dashboard)",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "id": {
-                    "type": "string",
-                    "example": "read_secret_info",
-                    "description": "The permission ID used to uniquely identify a permission. Can only contain lowercase letters, numbers, \":\", and \"_\" characters"
-                  },
-                  "description": {
-                    "type": "string",
-                    "example": "Read secret information",
-                    "description": "A human-readable description of the permission"
-                  },
-                  "contained_permission_ids": {
-                    "type": "array",
-                    "items": {
-                      "type": "string",
-                      "example": "read_secret_info",
-                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                    },
-                    "example": [
-                      "read_public_info"
-                    ],
-                    "description": "The IDs of the permissions that are contained in this permission"
-                  }
-                },
-                "required": [
-                  "id"
-                ],
-                "example": {
-                  "id": "read_secret_info",
-                  "description": "Read secret information",
-                  "contained_permission_ids": [
-                    "read_public_info"
-                  ]
-                }
-              }
-            }
+      "delete": {
+        "summary": "Revoke a global permission from a user",
+        "description": "Revoke a global permission from a user",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "permission_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+            },
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "required": true
           }
-        },
+        ],
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
         "responses": {
-          "201": {
+          "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "read_secret_info",
-                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                    },
-                    "description": {
-                      "type": "string",
-                      "example": "Read secret information",
-                      "description": "A human-readable description of the permission"
-                    },
-                    "contained_permission_ids": {
-                      "type": "array",
-                      "items": {
-                        "type": "string",
-                        "example": "read_secret_info",
-                        "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                      },
-                      "example": [
-                        "read_public_info"
-                      ],
-                      "description": "The IDs of the permissions that are contained in this permission"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "id",
-                    "contained_permission_ids"
+                    "success"
                   ]
                 }
               }
@@ -6201,27 +6198,15 @@
         }
       }
     },
-    "/team-permission-definitions/{permission_id}": {
-      "delete": {
-        "summary": "Delete a team permission definition",
-        "description": "Delete a permission definition (the equivalent of deleting a permission on the Stack dashboard)",
-        "parameters": [
-          {
-            "name": "permission_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "read_secret_info",
-              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-            },
-            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
-            "required": true
-          }
-        ],
+    "/team-permission-definitions": {
+      "get": {
+        "summary": "List team permission definitions",
+        "description": "Query and filter the permission with team_id, user_id, and permission_id (the equivalent of listing permissions on the Stack dashboard)",
+        "parameters": [],
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions/{permission_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6230,14 +6215,54 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "description": {
+                            "type": "string",
+                            "example": "Read secret information",
+                            "description": "A human-readable description of the permission"
+                          },
+                          "contained_permission_ids": {
+                            "type": "array",
+                            "items": {
+                              "type": "string",
+                              "example": "read_secret_info",
+                              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                            },
+                            "example": [
+                              "read_public_info"
+                            ],
+                            "description": "The IDs of the permissions that are contained in this permission"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "contained_permission_ids"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "success"
+                    "items"
                   ]
                 }
               }
@@ -6245,22 +6270,10 @@
           }
         }
       },
-      "patch": {
-        "summary": "Update a team permission definition",
-        "description": "Update a permission definition (the equivalent of updating a permission on the Stack dashboard)",
-        "parameters": [
-          {
-            "name": "permission_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "read_secret_info",
-              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-            },
-            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
-            "required": true
-          }
-        ],
+      "post": {
+        "summary": "Create a new team permission definition",
+        "description": "Create a new permission definition (the equivalent of creating a new permission on the Stack dashboard)",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -6291,6 +6304,9 @@
                     "description": "The IDs of the permissions that are contained in this permission"
                   }
                 },
+                "required": [
+                  "id"
+                ],
                 "example": {
                   "id": "read_secret_info",
                   "description": "Read secret information",
@@ -6305,9 +6321,9 @@
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions/{permission_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions",
         "responses": {
-          "200": {
+          "201": {
             "description": "Successful response",
             "content": {
               "application/json": {
@@ -6348,10 +6364,10 @@
         }
       }
     },
-    "/project-permission-definitions/{permission_id}": {
+    "/team-permission-definitions/{permission_id}": {
       "delete": {
-        "summary": "Delete a project permission definition",
-        "description": "Delete a project permission definition (the equivalent of deleting a permission on the Stack dashboard)",
+        "summary": "Delete a team permission definition",
+        "description": "Delete a permission definition (the equivalent of deleting a permission on the Stack dashboard)",
         "parameters": [
           {
             "name": "permission_id",
@@ -6368,7 +6384,7 @@
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions/{permission_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions/{permission_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6393,8 +6409,8 @@
         }
       },
       "patch": {
-        "summary": "Update a project permission definition",
-        "description": "Update a project permission definition (the equivalent of updating a permission on the Stack dashboard)",
+        "summary": "Update a team permission definition",
+        "description": "Update a permission definition (the equivalent of updating a permission on the Stack dashboard)",
         "parameters": [
           {
             "name": "permission_id",
@@ -6452,7 +6468,7 @@
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permission-definitions/{permission_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permission-definitions/{permission_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6495,110 +6511,60 @@
         }
       }
     },
-    "/project-permissions/{user_id}/{permission_id}": {
-      "post": {
-        "summary": "Grant a global permission to a user",
-        "description": "Grant a global permission to a user (the permission must be created first on the Stack dashboard)",
+    "/team-permissions": {
+      "get": {
+        "summary": "List team permissions of a user",
+        "description": "Query and filter the permission with `team_id`, `user_id`, and `permission_id`. Note that this might contain the permissions with the same permission ID across different teams and users. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
         "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
+              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
+            },
+            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
+            "required": false
+          },
           {
             "name": "user_id",
-            "in": "path",
+            "in": "query",
             "schema": {
               "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
             "required": false
           },
           {
             "name": "permission_id",
-            "in": "path",
+            "in": "query",
             "schema": {
               "type": "string",
-              "example": "read_secret_info",
-              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
             },
-            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
             "required": false
-          }
-        ],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {},
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "Permissions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
-        "responses": {
-          "201": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "read_secret_info",
-                      "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The unique identifier of the user"
-                    }
-                  },
-                  "required": [
-                    "id",
-                    "user_id"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "delete": {
-        "summary": "Revoke a global permission from a user",
-        "description": "Revoke a global permission from a user",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
           },
           {
-            "name": "permission_id",
-            "in": "path",
+            "name": "recursive",
+            "in": "query",
             "schema": {
               "type": "string",
-              "example": "read_secret_info",
-              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
             },
-            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
-            "required": true
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
           }
         ],
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions/{user_id}/{permission_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6607,14 +6573,48 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "success"
+                    "items"
                   ]
                 }
               }
@@ -7020,25 +7020,14 @@
         }
       }
     },
-    "/auth/sessions/{id}": {
-      "delete": {
-        "summary": "Delete session",
-        "description": "Delete a session by ID.",
+    "/auth/sessions/current/refresh": {
+      "post": {
+        "summary": "Refresh access token",
+        "description": "Get a new access token using a refresh token",
         "parameters": [
           {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          },
-          {
-            "name": "id",
-            "in": "path",
+            "name": "x-stack-refresh-token",
+            "in": "header",
             "schema": {
               "type": "string"
             },
@@ -7048,7 +7037,7 @@
         "tags": [
           "Sessions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7057,14 +7046,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "access_token": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "success"
+                    "access_token"
                   ]
                 }
               }
@@ -7073,14 +7060,25 @@
         }
       }
     },
-    "/auth/sessions/current/refresh": {
-      "post": {
-        "summary": "Refresh access token",
-        "description": "Get a new access token using a refresh token",
+    "/auth/sessions/{id}": {
+      "delete": {
+        "summary": "Delete session",
+        "description": "Delete a session by ID.",
         "parameters": [
           {
-            "name": "x-stack-refresh-token",
-            "in": "header",
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
@@ -7090,7 +7088,7 @@
         "tags": [
           "Sessions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7099,12 +7097,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "access_token": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "access_token"
+                    "success"
                   ]
                 }
               }
@@ -7113,32 +7113,36 @@
         }
       }
     },
-    "/team-member-profiles": {
+    "/team-invitations": {
       "get": {
-        "summary": "List team members profiles",
-        "description": "List team members profiles and filter by team ID and user ID",
+        "summary": "List team invitations",
+        "description": "",
         "parameters": [
           {
-            "name": "user_id",
+            "name": "team_id",
             "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
             },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
             "required": false
           },
           {
-            "name": "team_id",
+            "name": "user_id",
             "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
             },
+            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
             "required": false
           }
         ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7152,235 +7156,30 @@
                       "items": {
                         "type": "object",
                         "properties": {
-                          "user": {
-                            "type": "object",
-                            "properties": {
-                              "id": {
-                                "type": "string",
-                                "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                                "description": "The unique identifier of the user"
-                              },
-                              "primary_email": {
-                                "type": "string",
-                                "example": "johndoe@example.com",
-                                "description": "Primary email"
-                              },
-                              "primary_email_verified": {
-                                "type": "boolean",
-                                "example": true,
-                                "description": "Whether the primary email has been verified to belong to this user"
-                              },
-                              "primary_email_auth_enabled": {
-                                "type": "boolean",
-                                "example": true,
-                                "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
-                              },
-                              "display_name": {
-                                "type": "string",
-                                "example": "John Doe",
-                                "description": "Human-readable user display name. This is not a unique identifier."
-                              },
-                              "selected_team": {
-                                "type": "object",
-                                "properties": {
-                                  "created_at_millis": {
-                                    "type": "number",
-                                    "example": 1630000000000,
-                                    "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                                  },
-                                  "server_metadata": {
-                                    "type": "object",
-                                    "example": {
-                                      "key": "value"
-                                    },
-                                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                                  },
-                                  "id": {
-                                    "type": "string",
-                                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                                    "description": "The unique identifier of the team"
-                                  },
-                                  "display_name": {
-                                    "type": "string",
-                                    "example": "My Team",
-                                    "description": "Human-readable team display name. This is not a unique identifier."
-                                  },
-                                  "profile_image_url": {
-                                    "type": "string",
-                                    "example": "https://example.com/image.jpg",
-                                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                                  },
-                                  "client_metadata": {
-                                    "type": "object",
-                                    "example": {
-                                      "key": "value"
-                                    },
-                                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                                  },
-                                  "client_read_only_metadata": {
-                                    "type": "object",
-                                    "example": {
-                                      "key": "value"
-                                    },
-                                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                                  }
-                                },
-                                "required": [
-                                  "created_at_millis",
-                                  "id",
-                                  "display_name"
-                                ]
-                              },
-                              "selected_team_id": {
-                                "type": "string",
-                                "example": "team-id",
-                                "description": "ID of the team currently selected by the user"
-                              },
-                              "profile_image_url": {
-                                "type": "string",
-                                "example": "https://example.com/image.jpg",
-                                "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                              },
-                              "signed_up_at_millis": {
-                                "type": "number",
-                                "example": 1630000000000,
-                                "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
-                              },
-                              "client_metadata": {
-                                "type": "object",
-                                "example": {
-                                  "key": "value"
-                                },
-                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                              },
-                              "client_read_only_metadata": {
-                                "type": "object",
-                                "example": {
-                                  "key": "value"
-                                },
-                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                              },
-                              "server_metadata": {
-                                "type": "object",
-                                "example": {
-                                  "key": "value"
-                                },
-                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
-                              },
-                              "last_active_at_millis": {
-                                "type": "number",
-                                "example": 1630000000000,
-                                "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
-                              },
-                              "is_anonymous": {
-                                "type": "boolean"
-                              },
-                              "is_restricted": {
-                                "type": "boolean",
-                                "example": false,
-                                "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
-                              },
-                              "restricted_reason": {
-                                "type": "object",
-                                "properties": {
-                                  "type": {
-                                    "type": "string"
-                                  }
-                                },
-                                "required": [
-                                  "type"
-                                ],
-                                "example": null,
-                                "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
-                              },
-                              "restricted_by_admin": {
-                                "type": "boolean",
-                                "example": false,
-                                "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
-                              },
-                              "restricted_by_admin_reason": {
-                                "type": "string",
-                                "example": null,
-                                "description": "Public reason shown to the user explaining why they are restricted. Optional."
-                              },
-                              "restricted_by_admin_private_details": {
-                                "type": "string",
-                                "example": null,
-                                "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
-                              },
-                              "country_code": {
-                                "type": "string",
-                                "example": "US",
-                                "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
-                              },
-                              "risk_scores": {
-                                "type": "object",
-                                "properties": {
-                                  "sign_up": {
-                                    "type": "object",
-                                    "properties": {
-                                      "bot": {
-                                        "type": "number"
-                                      },
-                                      "free_trial_abuse": {
-                                        "type": "number"
-                                      }
-                                    },
-                                    "required": [
-                                      "bot",
-                                      "free_trial_abuse"
-                                    ]
-                                  }
-                                },
-                                "required": [
-                                  "sign_up"
-                                ],
-                                "example": {
-                                  "sign_up": {
-                                    "bot": 0,
-                                    "free_trial_abuse": 0
-                                  }
-                                },
-                                "description": "User risk scores used for sign-up risk evaluation."
-                              }
-                            },
-                            "required": [
-                              "id",
-                              "primary_email_verified",
-                              "primary_email_auth_enabled",
-                              "signed_up_at_millis",
-                              "last_active_at_millis",
-                              "is_anonymous",
-                              "is_restricted",
-                              "restricted_by_admin",
-                              "risk_scores"
-                            ]
+                          "id": {
+                            "type": "string"
                           },
                           "team_id": {
                             "type": "string",
                             "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
                             "description": "The unique identifier of the team"
                           },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The unique identifier of the user"
+                          "team_display_name": {
+                            "type": "string"
                           },
-                          "display_name": {
-                            "type": "string",
-                            "example": "John Doe",
-                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          "expires_at_millis": {
+                            "type": "number"
                           },
-                          "profile_image_url": {
-                            "type": "string",
-                            "example": "https://example.com/image.jpg",
-                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          "recipient_email": {
+                            "type": "string"
                           }
                         },
                         "required": [
-                          "user",
+                          "id",
                           "team_id",
-                          "user_id"
+                          "team_display_name",
+                          "expires_at_millis",
+                          "recipient_email"
                         ]
                       }
                     },
@@ -7406,27 +7205,38 @@
         }
       }
     },
-    "/teams": {
-      "get": {
-        "summary": "List teams",
-        "description": "List all the teams in the project.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "me",
-              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
-            },
-            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
-            "required": false
+    "/team-invitations/accept": {
+      "post": {
+        "summary": "Accept the team invitation",
+        "description": "Accept invitation and add user to the team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
           }
-        ],
+        },
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7434,85 +7244,18 @@
               "application/json": {
                 "schema": {
                   "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "created_at_millis": {
-                            "type": "number",
-                            "example": 1630000000000,
-                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                          },
-                          "server_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                          },
-                          "id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          },
-                          "display_name": {
-                            "type": "string",
-                            "example": "My Team",
-                            "description": "Human-readable team display name. This is not a unique identifier."
-                          },
-                          "profile_image_url": {
-                            "type": "string",
-                            "example": "https://example.com/image.jpg",
-                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                          },
-                          "client_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                          },
-                          "client_read_only_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                          }
-                        },
-                        "required": [
-                          "created_at_millis",
-                          "id",
-                          "display_name"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
+                  "properties": {}
                 }
               }
             }
           }
         }
-      },
+      }
+    },
+    "/team-invitations/accept/check-code": {
       "post": {
-        "summary": "Create a team",
-        "description": "Create a new team and optionally add the current user as a member.",
+        "summary": "Check if a team invitation code is valid",
+        "description": "Check if a team invitation code is valid without using it",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -7521,59 +7264,17 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "display_name": {
-                    "type": "string",
-                    "example": "My Team",
-                    "description": "Human-readable team display name. This is not a unique identifier."
-                  },
-                  "creator_user_id": {
-                    "type": "string",
-                    "example": "me",
-                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
-                  },
-                  "client_read_only_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                  },
-                  "server_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                  },
-                  "profile_image_url": {
+                  "code": {
                     "type": "string",
-                    "example": "https://example.com/image.jpg",
-                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                  },
-                  "client_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
                   }
                 },
                 "required": [
-                  "display_name"
+                  "code"
                 ],
                 "example": {
-                  "display_name": "My Team",
-                  "creator_user_id": "me",
-                  "client_read_only_metadata": {
-                    "key": "value"
-                  },
-                  "server_metadata": {
-                    "key": "value"
-                  },
-                  "profile_image_url": "https://example.com/image.jpg",
-                  "client_metadata": {
-                    "key": "value"
-                  }
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
                 }
               }
             }
@@ -7582,61 +7283,21 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
         "responses": {
-          "201": {
+          "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "created_at_millis": {
-                      "type": "number",
-                      "example": 1630000000000,
-                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                    },
-                    "server_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    "is_code_valid": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "created_at_millis",
-                    "id",
-                    "display_name"
+                    "is_code_valid"
                   ]
                 }
               }
@@ -7645,36 +7306,38 @@
         }
       }
     },
-    "/team-invitations": {
-      "get": {
-        "summary": "List team invitations",
-        "description": "",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "The team ID to list invitations for. Required unless user_id is provided."
-            },
-            "description": "The team ID to list invitations for. Required unless user_id is provided.",
-            "required": false
-          },
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
-            },
-            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
-            "required": false
+    "/team-invitations/accept/details": {
+      "post": {
+        "summary": "Get team invitation details",
+        "description": "Get additional information about a team invitation code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
           }
-        ],
+        },
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7683,306 +7346,16 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "team_id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          },
-                          "team_display_name": {
-                            "type": "string"
-                          },
-                          "expires_at_millis": {
-                            "type": "number"
-                          },
-                          "recipient_email": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "team_id",
-                          "team_display_name",
-                          "expires_at_millis",
-                          "recipient_email"
-                        ]
-                      }
+                    "team_id": {
+                      "type": "string"
                     },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
+                    "team_display_name": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/teams/{team_id}": {
-      "get": {
-        "summary": "Get a team",
-        "description": "Get a team by ID.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "created_at_millis": {
-                      "type": "number",
-                      "example": 1630000000000,
-                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                    },
-                    "server_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                    }
-                  },
-                  "required": [
-                    "created_at_millis",
-                    "id",
-                    "display_name"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "delete": {
-        "summary": "Delete a team",
-        "description": "Delete a team by ID.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "patch": {
-        "summary": "Update a team",
-        "description": "Update the team information by ID.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "client_read_only_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                  },
-                  "server_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                  },
-                  "display_name": {
-                    "type": "string",
-                    "example": "My Team",
-                    "description": "Human-readable team display name. This is not a unique identifier."
-                  },
-                  "profile_image_url": {
-                    "type": "string",
-                    "example": "https://example.com/image.jpg",
-                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                  },
-                  "client_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                  }
-                },
-                "example": {
-                  "client_read_only_metadata": {
-                    "key": "value"
-                  },
-                  "server_metadata": {
-                    "key": "value"
-                  },
-                  "display_name": "My Team",
-                  "profile_image_url": "https://example.com/image.jpg",
-                  "client_metadata": {
-                    "key": "value"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "created_at_millis": {
-                      "type": "number",
-                      "example": 1630000000000,
-                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                    },
-                    "server_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                    }
-                  },
-                  "required": [
-                    "created_at_millis",
-                    "id",
-                    "display_name"
+                    "team_id",
+                    "team_display_name"
                   ]
                 }
               }
@@ -8106,7 +7479,344 @@
                     }
                   },
                   "required": [
-                    "success"
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}/accept": {
+      "post": {
+        "summary": "Accept a team invitation by ID",
+        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles": {
+      "get": {
+        "summary": "List team members profiles",
+        "description": "List team members profiles and filter by team ID and user ID",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user": {
+                            "type": "object",
+                            "properties": {
+                              "id": {
+                                "type": "string",
+                                "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                                "description": "The unique identifier of the user"
+                              },
+                              "primary_email": {
+                                "type": "string",
+                                "example": "johndoe@example.com",
+                                "description": "Primary email"
+                              },
+                              "primary_email_verified": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email has been verified to belong to this user"
+                              },
+                              "primary_email_auth_enabled": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                              },
+                              "display_name": {
+                                "type": "string",
+                                "example": "John Doe",
+                                "description": "Human-readable user display name. This is not a unique identifier."
+                              },
+                              "selected_team": {
+                                "type": "object",
+                                "properties": {
+                                  "created_at_millis": {
+                                    "type": "number",
+                                    "example": 1630000000000,
+                                    "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                                  },
+                                  "server_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                                  },
+                                  "id": {
+                                    "type": "string",
+                                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                                    "description": "The unique identifier of the team"
+                                  },
+                                  "display_name": {
+                                    "type": "string",
+                                    "example": "My Team",
+                                    "description": "Human-readable team display name. This is not a unique identifier."
+                                  },
+                                  "profile_image_url": {
+                                    "type": "string",
+                                    "example": "https://example.com/image.jpg",
+                                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                                  },
+                                  "client_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                                  },
+                                  "client_read_only_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                                  }
+                                },
+                                "required": [
+                                  "created_at_millis",
+                                  "id",
+                                  "display_name"
+                                ]
+                              },
+                              "selected_team_id": {
+                                "type": "string",
+                                "example": "team-id",
+                                "description": "ID of the team currently selected by the user"
+                              },
+                              "profile_image_url": {
+                                "type": "string",
+                                "example": "https://example.com/image.jpg",
+                                "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                              },
+                              "signed_up_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "client_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                              },
+                              "client_read_only_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                              },
+                              "server_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                              },
+                              "last_active_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "is_anonymous": {
+                                "type": "boolean"
+                              },
+                              "is_restricted": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                              },
+                              "restricted_reason": {
+                                "type": "object",
+                                "properties": {
+                                  "type": {
+                                    "type": "string"
+                                  }
+                                },
+                                "required": [
+                                  "type"
+                                ],
+                                "example": null,
+                                "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                              },
+                              "restricted_by_admin": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                              },
+                              "restricted_by_admin_reason": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                              },
+                              "restricted_by_admin_private_details": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                              },
+                              "country_code": {
+                                "type": "string",
+                                "example": "US",
+                                "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                              },
+                              "risk_scores": {
+                                "type": "object",
+                                "properties": {
+                                  "sign_up": {
+                                    "type": "object",
+                                    "properties": {
+                                      "bot": {
+                                        "type": "number"
+                                      },
+                                      "free_trial_abuse": {
+                                        "type": "number"
+                                      }
+                                    },
+                                    "required": [
+                                      "bot",
+                                      "free_trial_abuse"
+                                    ]
+                                  }
+                                },
+                                "required": [
+                                  "sign_up"
+                                ],
+                                "example": {
+                                  "sign_up": {
+                                    "bot": 0,
+                                    "free_trial_abuse": 0
+                                  }
+                                },
+                                "description": "User risk scores used for sign-up risk evaluation."
+                              }
+                            },
+                            "required": [
+                              "id",
+                              "primary_email_verified",
+                              "primary_email_auth_enabled",
+                              "signed_up_at_millis",
+                              "last_active_at_millis",
+                              "is_anonymous",
+                              "is_restricted",
+                              "restricted_by_admin",
+                              "risk_scores"
+                            ]
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          }
+                        },
+                        "required": [
+                          "user",
+                          "team_id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
                   ]
                 }
               }
@@ -8115,53 +7825,6 @@
         }
       }
     },
-    "/team-invitations/accept": {
-      "post": {
-        "summary": "Accept the team invitation",
-        "description": "Accept invitation and add user to the team",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {}
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/team-member-profiles/{team_id}/{user_id}": {
       "get": {
         "summary": "Get a team member profile",
@@ -8758,15 +8421,269 @@
             "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": false
           }
-        ],
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Remove a user from a team",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams": {
+      "get": {
+        "summary": "List teams",
+        "description": "List all the teams in the project.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+            },
+            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "created_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "created_at_millis",
+                          "id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a team",
+        "description": "Create a new team and optionally add the current user as a member.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
             "application/json": {
               "schema": {
                 "type": "object",
-                "properties": {},
-                "example": {}
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "creator_user_id": {
+                    "type": "string",
+                    "example": "me",
+                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "required": [
+                  "display_name"
+                ],
+                "example": {
+                  "display_name": "My Team",
+                  "creator_user_id": "me",
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
               }
             }
           }
@@ -8774,7 +8691,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
         "responses": {
           "201": {
             "description": "Successful response",
@@ -8783,26 +8700,64 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "team_id": {
-                      "type": "string"
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
                     },
-                    "user_id": {
-                      "type": "string"
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "team_id",
-                    "user_id"
+                    "created_at_millis",
+                    "id",
+                    "display_name"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "delete": {
-        "summary": "Remove a user from a team",
-        "description": "",
+      }
+    },
+    "/teams/{team_id}": {
+      "get": {
+        "summary": "Get a team",
+        "description": "Get a team by ID.",
         "parameters": [
           {
             "name": "team_id",
@@ -8811,23 +8766,12 @@
               "type": "string"
             },
             "required": true
-          },
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
           }
         ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -8836,98 +8780,76 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "success"
+                    "created_at_millis",
+                    "id",
+                    "display_name"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/team-invitations/{id}/accept": {
-      "post": {
-        "summary": "Accept a team invitation by ID",
-        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+      },
+      "delete": {
+        "summary": "Delete a team",
+        "description": "Delete a team by ID.",
         "parameters": [
           {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          },
-          {
-            "name": "id",
+            "name": "team_id",
             "in": "path",
             "schema": {
               "type": "string"
             },
             "required": true
           }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {}
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/team-invitations/accept/details": {
-      "post": {
-        "summary": "Get team invitation details",
-        "description": "Get additional information about a team invitation code",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
+        ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -8936,29 +8858,34 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "team_id": {
-                      "type": "string"
-                    },
-                    "team_display_name": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "team_id",
-                    "team_display_name"
+                    "success"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/team-invitations/accept/check-code": {
-      "post": {
-        "summary": "Check if a team invitation code is valid",
-        "description": "Check if a team invitation code is valid without using it",
-        "parameters": [],
+      },
+      "patch": {
+        "summary": "Update a team",
+        "description": "Update the team information by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -8966,17 +8893,50 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "display_name": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
                   }
                 },
-                "required": [
-                  "code"
-                ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "display_name": "My Team",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
                 }
               }
             }
@@ -8985,7 +8945,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -8994,12 +8954,52 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "is_code_valid"
+                    "created_at_millis",
+                    "id",
+                    "display_name"
                   ]
                 }
               }
@@ -9707,27 +9707,15 @@
         }
       }
     },
-    "/users/{user_id}": {
+    "/users/me": {
       "get": {
-        "summary": "Get user",
-        "description": "Gets a user by user ID.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
+        "summary": "Get current user",
+        "description": "Gets the currently authenticated user.",
+        "parameters": [],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9943,25 +9931,13 @@
         }
       },
       "delete": {
-        "summary": "Delete user",
-        "description": "Deletes a user. Use this with caution.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
+        "summary": "Delete current user",
+        "description": "Deletes the currently authenticated user. Use this with caution.",
+        "parameters": [],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9986,21 +9962,9 @@
         }
       },
       "patch": {
-        "summary": "Update user",
-        "description": "Updates a user. Only the values provided will be updated.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
+        "summary": "Update current user",
+        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -10150,7 +10114,7 @@
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -10366,15 +10330,27 @@
         }
       }
     },
-    "/users/me": {
+    "/users/{user_id}": {
       "get": {
-        "summary": "Get current user",
-        "description": "Gets the currently authenticated user.",
-        "parameters": [],
+        "summary": "Get user",
+        "description": "Gets a user by user ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -10590,13 +10566,25 @@
         }
       },
       "delete": {
-        "summary": "Delete current user",
-        "description": "Deletes the currently authenticated user. Use this with caution.",
-        "parameters": [],
+        "summary": "Delete user",
+        "description": "Deletes a user. Use this with caution.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -10621,9 +10609,21 @@
         }
       },
       "patch": {
-        "summary": "Update current user",
-        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
-        "parameters": [],
+        "summary": "Update user",
+        "description": "Updates a user. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -10773,7 +10773,7 @@
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",
diff --git a/docs-mintlify/openapi/client.json b/docs-mintlify/openapi/client.json
index c5c576aaa8..99ed937a5d 100644
--- a/docs-mintlify/openapi/client.json
+++ b/docs-mintlify/openapi/client.json
@@ -145,202 +145,6 @@
         }
       }
     },
-    "/user-api-keys": {
-      "get": {
-        "summary": "List user API keys",
-        "description": "List all user API keys for the project with their metadata and status",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          }
-        ],
-        "tags": [
-          "API Keys"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "description": {
-                            "type": "string"
-                          },
-                          "expires_at_millis": {
-                            "type": "number"
-                          },
-                          "manually_revoked_at_millis": {
-                            "type": "number"
-                          },
-                          "created_at_millis": {
-                            "type": "number"
-                          },
-                          "is_public": {
-                            "type": "boolean"
-                          },
-                          "value": {
-                            "type": "object",
-                            "properties": {
-                              "last_four": {
-                                "type": "string"
-                              }
-                            },
-                            "required": [
-                              "last_four"
-                            ]
-                          },
-                          "type": {
-                            "type": "string"
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "description",
-                          "created_at_millis",
-                          "is_public",
-                          "value",
-                          "type",
-                          "user_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "post": {
-        "summary": "Create user API key",
-        "description": "Create a new API key for a user or team",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "description": {
-                    "type": "string"
-                  },
-                  "expires_at_millis": {
-                    "type": "number"
-                  },
-                  "is_public": {
-                    "type": "boolean"
-                  },
-                  "user_id": {
-                    "type": "string",
-                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                  }
-                },
-                "required": [
-                  "description",
-                  "user_id"
-                ],
-                "example": {
-                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "API Keys"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "value": {
-                      "type": "string"
-                    },
-                    "id": {
-                      "type": "string"
-                    },
-                    "description": {
-                      "type": "string"
-                    },
-                    "expires_at_millis": {
-                      "type": "number"
-                    },
-                    "manually_revoked_at_millis": {
-                      "type": "number"
-                    },
-                    "created_at_millis": {
-                      "type": "number"
-                    },
-                    "is_public": {
-                      "type": "boolean"
-                    },
-                    "type": {
-                      "type": "string"
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    }
-                  },
-                  "required": [
-                    "value",
-                    "id",
-                    "description",
-                    "created_at_millis",
-                    "is_public",
-                    "type",
-                    "user_id"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/team-api-keys": {
       "get": {
         "summary": "List team API keys",
@@ -529,10 +333,10 @@
         }
       }
     },
-    "/user-api-keys/{api_key_id}": {
+    "/team-api-keys/{api_key_id}": {
       "get": {
-        "summary": "Get user API key details",
-        "description": "Get details of a specific user API key",
+        "summary": "Get team API key details",
+        "description": "Get details of a specific team API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -546,7 +350,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -587,10 +391,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -600,7 +402,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -609,8 +411,8 @@
         }
       },
       "patch": {
-        "summary": "Update user API key",
-        "description": "Update an user API key",
+        "summary": "Update team API key",
+        "description": "Update an team API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -643,7 +445,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -684,10 +486,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -697,7 +497,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -706,24 +506,24 @@
         }
       }
     },
-    "/team-api-keys/{api_key_id}": {
+    "/user-api-keys": {
       "get": {
-        "summary": "Get team API key details",
-        "description": "Get details of a specific team API key",
+        "summary": "List user API keys",
+        "description": "List all user API keys for the project with their metadata and status",
         "parameters": [
           {
-            "name": "api_key_id",
-            "in": "path",
+            "name": "user_id",
+            "in": "query",
             "schema": {
               "type": "string"
             },
-            "required": true
+            "required": false
           }
         ],
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -732,22 +532,218 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string"
-                    },
-                    "description": {
-                      "type": "string"
-                    },
-                    "expires_at_millis": {
-                      "type": "number"
-                    },
-                    "manually_revoked_at_millis": {
-                      "type": "number"
-                    },
-                    "created_at_millis": {
-                      "type": "number"
-                    },
-                    "is_public": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  }
+                },
+                "required": [
+                  "description",
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
+                      "type": "boolean"
+                    },
+                    "type": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    }
+                  },
+                  "required": [
+                    "value",
+                    "id",
+                    "description",
+                    "created_at_millis",
+                    "is_public",
+                    "type",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/user-api-keys/{api_key_id}": {
+      "get": {
+        "summary": "Get user API key details",
+        "description": "Get details of a specific user API key",
+        "parameters": [
+          {
+            "name": "api_key_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
+                    },
+                    "manually_revoked_at_millis": {
+                      "type": "number"
+                    },
+                    "created_at_millis": {
+                      "type": "number"
+                    },
+                    "is_public": {
                       "type": "boolean"
                     },
                     "value": {
@@ -764,8 +760,10 @@
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
@@ -775,7 +773,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -784,8 +782,8 @@
         }
       },
       "patch": {
-        "summary": "Update team API key",
-        "description": "Update an team API key",
+        "summary": "Update user API key",
+        "description": "Update an user API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -818,7 +816,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -859,8 +857,10 @@
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
@@ -870,7 +870,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -938,10 +938,10 @@
         }
       }
     },
-    "/auth/cli/poll": {
+    "/auth/cli/complete": {
       "post": {
-        "summary": "Poll CLI authentication status",
-        "description": "Check the status of a CLI authentication session using the polling code",
+        "summary": "Complete CLI authentication",
+        "description": "Inspect, claim, or complete a CLI authentication session",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -950,12 +950,19 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "polling_code": {
+                  "login_code": {
+                    "type": "string"
+                  },
+                  "mode": {
+                    "type": "string",
+                    "default": "complete"
+                  },
+                  "refresh_token": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "polling_code"
+                  "login_code"
                 ],
                 "example": {}
               }
@@ -965,7 +972,7 @@
         "tags": [
           "CLI Authentication"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/poll",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -974,36 +981,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "status": {
-                      "type": "string"
-                    },
-                    "refresh_token": {
-                      "type": "string"
-                    }
-                  },
-                  "required": [
-                    "status"
-                  ]
-                }
-              }
-            }
-          },
-          "201": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "status": {
-                      "type": "string"
-                    },
-                    "refresh_token": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "status"
+                    "success"
                   ]
                 }
               }
@@ -1012,10 +995,10 @@
         }
       }
     },
-    "/auth/cli/complete": {
+    "/auth/cli/poll": {
       "post": {
-        "summary": "Complete CLI authentication",
-        "description": "Inspect, claim, or complete a CLI authentication session",
+        "summary": "Poll CLI authentication status",
+        "description": "Check the status of a CLI authentication session using the polling code",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -1024,19 +1007,12 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "login_code": {
-                    "type": "string"
-                  },
-                  "mode": {
-                    "type": "string",
-                    "default": "complete"
-                  },
-                  "refresh_token": {
+                  "polling_code": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "login_code"
+                  "polling_code"
                 ],
                 "example": {}
               }
@@ -1046,7 +1022,7 @@
         "tags": [
           "CLI Authentication"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/poll",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -1055,12 +1031,36 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean"
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "success"
+                    "status"
+                  ]
+                }
+              }
+            }
+          },
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "status": {
+                      "type": "string"
+                    },
+                    "refresh_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "status"
                   ]
                 }
               }
@@ -1452,6 +1452,60 @@
         }
       }
     },
+    "/contact-channels/verify/check-code": {
+      "post": {
+        "summary": "Check email verification code",
+        "description": "Check if an email verification code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/contact-channels/{user_id}/{contact_channel_id}": {
       "get": {
         "summary": "Get a contact channel",
@@ -1783,60 +1837,6 @@
         }
       }
     },
-    "/contact-channels/verify/check-code": {
-      "post": {
-        "summary": "Check email verification code",
-        "description": "Check if an email verification code is valid without using it",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Contact Channels"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "is_code_valid"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/contact-channels/{user_id}/{contact_channel_id}/send-verification-code": {
       "post": {
         "summary": "Send contact channel verification code",
@@ -2075,66 +2075,6 @@
         }
       }
     },
-    "/internal/feedback": {
-      "post": {
-        "summary": "Submit support feedback",
-        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "name": {
-                    "type": "string"
-                  },
-                  "email": {
-                    "type": "string"
-                  },
-                  "message": {
-                    "type": "string"
-                  },
-                  "feedback_type": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "email",
-                  "message"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "Internal"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/internal/feature-requests": {
       "get": {
         "summary": "Get feature requests",
@@ -2282,50 +2222,7 @@
         }
       }
     },
-    "/internal/preview/create-project": {
-      "post": {
-        "summary": "Create a preview project",
-        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {},
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "Internal"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "project_id": {
-                      "type": "string"
-                    }
-                  },
-                  "required": [
-                    "project_id"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/internal/feature-requests/{featureRequestId}/upvote": {
+    "/internal/feature-requests/{featureRequestId}/upvote": {
       "post": {
         "summary": "Toggle upvote on feature request",
         "description": "Toggle upvote on a feature request for the current user",
@@ -2380,24 +2277,44 @@
         }
       }
     },
-    "/oauth-providers": {
-      "get": {
-        "summary": "List OAuth providers",
-        "description": "Retrieves a list of all OAuth providers for a user.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
+    "/internal/feedback": {
+      "post": {
+        "summary": "Submit support feedback",
+        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "name": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string"
+                  },
+                  "message": {
+                    "type": "string"
+                  },
+                  "feedback_type": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "message"
+                ],
+                "example": {}
+              }
+            }
           }
-        ],
+        },
         "tags": [
-          "Oauth"
+          "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2406,71 +2323,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                          },
-                          "id": {
-                            "type": "string",
-                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                            "description": "The unique identifier of the OAuth provider"
-                          },
-                          "email": {
-                            "type": "string",
-                            "example": "test@gmail.com",
-                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                          },
-                          "provider_config_id": {
-                            "type": "string",
-                            "example": "google",
-                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                          },
-                          "type": {
-                            "type": "string",
-                            "example": "google",
-                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                          },
-                          "allow_sign_in": {
-                            "type": "boolean",
-                            "example": true,
-                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                          },
-                          "allow_connected_accounts": {
-                            "type": "boolean",
-                            "example": true,
-                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
-                          }
-                        },
-                        "required": [
-                          "user_id",
-                          "id",
-                          "provider_config_id",
-                          "type",
-                          "allow_sign_in",
-                          "allow_connected_accounts"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
+                    "success": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "items"
+                    "success"
                   ]
                 }
               }
@@ -2479,35 +2337,27 @@
         }
       }
     },
-    "/oauth-providers/{user_id}/{provider_id}": {
-      "get": {
-        "summary": "Get an OAuth provider",
-        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
-        "parameters": [
-          {
-            "name": "provider_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
+    "/internal/preview/create-project": {
+      "post": {
+        "summary": "Create a preview project",
+        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
           }
-        ],
+        },
         "tags": [
-          "Oauth"
+          "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2516,84 +2366,185 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    "project_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
+                    "project_id"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "delete": {
-        "summary": "Delete an OAuth provider",
-        "description": "Removes an OAuth provider for a given user.",
+      }
+    },
+    "/auth/oauth/authorize/{provider_id}": {
+      "get": {
+        "summary": "OAuth authorize endpoint",
+        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
         "parameters": [
           {
-            "name": "provider_id",
-            "in": "path",
+            "name": "type",
+            "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "default": "authenticate"
             },
-            "required": true
+            "required": false
           },
           {
-            "name": "user_id",
-            "in": "path",
+            "name": "token",
+            "in": "query",
             "schema": {
               "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "default": ""
+            },
+            "required": false
+          },
+          {
+            "name": "provider_scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "error_redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "after_callback_redirect_url",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "stack_response_mode",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "redirect"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_token",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_phase",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_unavailable",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "client_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "client_secret",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "state",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "grant_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge_method",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "response_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2602,42 +2553,49 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "location": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "success"
+                    "location"
                   ]
                 }
               }
             }
+          },
+          "307": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string"
+                }
+              }
+            }
           }
         }
-      },
-      "patch": {
-        "summary": "Update an OAuth provider",
-        "description": "Updates an existing OAuth provider for a user.",
+      }
+    },
+    "/auth/oauth/cross-domain/authorize": {
+      "post": {
+        "summary": "Create cross-domain auth handoff redirect",
+        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
         "parameters": [
           {
-            "name": "provider_id",
-            "in": "path",
+            "name": "x-stack-publishable-client-key",
+            "in": "header",
             "schema": {
               "type": "string"
             },
             "required": true
           },
           {
-            "name": "user_id",
-            "in": "path",
+            "name": "x-stack-refresh-token",
+            "in": "header",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
@@ -2648,21 +2606,29 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "allow_sign_in": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  "redirect_uri": {
+                    "type": "string"
                   },
-                  "allow_connected_accounts": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  "state": {
+                    "type": "string"
+                  },
+                  "code_challenge": {
+                    "type": "string"
+                  },
+                  "code_challenge_method": {
+                    "type": "string",
+                    "default": "S256"
+                  },
+                  "after_callback_redirect_url": {
+                    "type": "string"
                   }
                 },
-                "example": {
-                  "allow_sign_in": true,
-                  "allow_connected_accounts": true
-                }
+                "required": [
+                  "redirect_uri",
+                  "state",
+                  "code_challenge"
+                ],
+                "example": {}
               }
             }
           }
@@ -2670,7 +2636,7 @@
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2679,49 +2645,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    "redirect_url": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
+                    "redirect_url"
                   ]
                 }
               }
@@ -2776,66 +2705,24 @@
         }
       }
     },
-    "/auth/oauth/cross-domain/authorize": {
-      "post": {
-        "summary": "Create cross-domain auth handoff redirect",
-        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
+    "/oauth-providers": {
+      "get": {
+        "summary": "List OAuth providers",
+        "description": "Retrieves a list of all OAuth providers for a user.",
         "parameters": [
           {
-            "name": "x-stack-publishable-client-key",
-            "in": "header",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "x-stack-refresh-token",
-            "in": "header",
+            "name": "user_id",
+            "in": "query",
             "schema": {
               "type": "string"
             },
-            "required": true
+            "required": false
           }
         ],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "redirect_uri": {
-                    "type": "string"
-                  },
-                  "state": {
-                    "type": "string"
-                  },
-                  "code_challenge": {
-                    "type": "string"
-                  },
-                  "code_challenge_method": {
-                    "type": "string",
-                    "default": "S256"
-                  },
-                  "after_callback_redirect_url": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "redirect_uri",
-                  "state",
-                  "code_challenge"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2844,12 +2731,71 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "redirect_url": {
-                      "type": "string"
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the OAuth provider"
+                          },
+                          "email": {
+                            "type": "string",
+                            "example": "test@gmail.com",
+                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                          },
+                          "provider_config_id": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                          },
+                          "allow_sign_in": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                          },
+                          "allow_connected_accounts": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                          }
+                        },
+                        "required": [
+                          "user_id",
+                          "id",
+                          "provider_config_id",
+                          "type",
+                          "allow_sign_in",
+                          "allow_connected_accounts"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "redirect_url"
+                    "items"
                   ]
                 }
               }
@@ -2858,171 +2804,198 @@
         }
       }
     },
-    "/auth/oauth/authorize/{provider_id}": {
+    "/oauth-providers/{user_id}/{provider_id}": {
       "get": {
-        "summary": "OAuth authorize endpoint",
-        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+        "summary": "Get an OAuth provider",
+        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
         "parameters": [
           {
-            "name": "type",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "default": "authenticate"
-            },
-            "required": false
-          },
-          {
-            "name": "token",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "default": ""
-            },
-            "required": false
-          },
-          {
-            "name": "provider_scope",
-            "in": "query",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
-            "required": false
+            "required": true
           },
           {
-            "name": "error_redirect_uri",
-            "in": "query",
+            "name": "user_id",
+            "in": "path",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
-            "required": false
-          },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Delete an OAuth provider",
+        "description": "Removes an OAuth provider for a given user.",
+        "parameters": [
           {
-            "name": "after_callback_redirect_url",
-            "in": "query",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
-            "required": false
+            "required": true
           },
           {
-            "name": "stack_response_mode",
-            "in": "query",
+            "name": "user_id",
+            "in": "path",
             "schema": {
               "type": "string",
-              "default": "redirect"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_token",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_phase",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_unavailable",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "client_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "client_secret",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "redirect_uri",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "scope",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "state",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "grant_type",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "code_challenge",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "code_challenge_method",
-            "in": "query",
-            "schema": {
-              "type": "string"
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
-          },
+          }
+        ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update an OAuth provider",
+        "description": "Updates an existing OAuth provider for a user.",
+        "parameters": [
           {
-            "name": "response_type",
-            "in": "query",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
             "required": true
           },
           {
-            "name": "provider_id",
+            "name": "user_id",
             "in": "path",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  }
+                },
+                "example": {
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true
+                }
+              }
+            }
+          }
+        },
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3031,26 +3004,53 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "location": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
                     }
                   },
                   "required": [
-                    "location"
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
                   ]
                 }
               }
             }
-          },
-          "307": {
-            "description": "Successful response",
-            "content": {
-              "text/plain": {
-                "schema": {
-                  "type": "string"
-                }
-              }
-            }
           }
         }
       }
@@ -3412,10 +3412,10 @@
         }
       }
     },
-    "/auth/otp/send-sign-in-code": {
+    "/auth/mfa/sign-in": {
       "post": {
-        "summary": "Send sign-in code",
-        "description": "Send a code to the user's email address for sign-in.",
+        "summary": "MFA sign in",
+        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -3424,33 +3424,25 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "email": {
-                    "type": "string",
-                    "example": "johndoe@example.com",
-                    "description": "The email to sign in with."
-                  },
-                  "callback_url": {
-                    "type": "string",
-                    "example": "https://example.com/handler/magic-link-callback",
-                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
-                  },
-                  "bot_challenge_token": {
+                  "type": {
                     "type": "string"
                   },
-                  "bot_challenge_phase": {
+                  "totp": {
                     "type": "string"
                   },
-                  "bot_challenge_unavailable": {
-                    "type": "string"
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
                   }
                 },
                 "required": [
-                  "email",
-                  "callback_url"
+                  "type",
+                  "totp",
+                  "code"
                 ],
                 "example": {
-                  "email": "johndoe@example.com",
-                  "callback_url": "https://example.com/handler/magic-link-callback"
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
                 }
               }
             }
@@ -3459,7 +3451,7 @@
         "tags": [
           "OTP"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3468,14 +3460,104 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "nonce": {
+                    "refresh_token": {
                       "type": "string",
-                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
-                    }
-                  },
-                  "required": [
-                    "nonce"
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    }
+                  },
+                  "required": [
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/otp/send-sign-in-code": {
+      "post": {
+        "summary": "Send sign-in code",
+        "description": "Send a code to the user's email address for sign-in.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/magic-link-callback",
+                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/magic-link-callback"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "nonce": {
+                      "type": "string",
+                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
+                    }
+                  },
+                  "required": [
+                    "nonce"
                   ]
                 }
               }
@@ -3558,10 +3640,10 @@
         }
       }
     },
-    "/auth/mfa/sign-in": {
+    "/auth/otp/sign-in/check-code": {
       "post": {
-        "summary": "MFA sign in",
-        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "summary": "Check sign in code",
+        "description": "Check if a sign in code is valid without using it",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -3570,10 +3652,61 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "type": {
-                    "type": "string"
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "OTP"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
                   },
-                  "totp": {
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset": {
+      "post": {
+        "summary": "Reset password with a code",
+        "description": "Reset password with a code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
                     "type": "string"
                   },
                   "code": {
@@ -3583,8 +3716,7 @@
                   }
                 },
                 "required": [
-                  "type",
-                  "totp",
+                  "password",
                   "code"
                 ],
                 "example": {
@@ -3595,9 +3727,9 @@
           }
         },
         "tags": [
-          "OTP"
+          "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3606,32 +3738,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "refresh_token": {
-                      "type": "string",
-                      "example": "i8ns3aq2...14y",
-                      "description": "Long-lived refresh token that can be used to obtain a new access token"
-                    },
-                    "access_token": {
-                      "type": "string",
-                      "example": "eyJhmMiJB2TO...diI4QT",
-                      "description": "Short-lived access token that can be used to authenticate the user"
-                    },
-                    "is_new_user": {
+                    "success": {
                       "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user is a new user"
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The unique identifier of the user"
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "refresh_token",
-                    "access_token",
-                    "is_new_user",
-                    "user_id"
+                    "success"
                   ]
                 }
               }
@@ -3640,10 +3754,10 @@
         }
       }
     },
-    "/auth/otp/sign-in/check-code": {
+    "/auth/password/reset/check-code": {
       "post": {
-        "summary": "Check sign in code",
-        "description": "Check if a sign in code is valid without using it",
+        "summary": "Check reset password code",
+        "description": "Check if a reset password code is valid without using it",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -3655,7 +3769,7 @@
                   "code": {
                     "type": "string",
                     "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
+                    "description": "A 45 character code"
                   }
                 },
                 "required": [
@@ -3669,9 +3783,9 @@
           }
         },
         "tags": [
-          "OTP"
+          "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3694,20 +3808,11 @@
         }
       }
     },
-    "/auth/password/update": {
+    "/auth/password/send-reset-code": {
       "post": {
-        "summary": "Update password",
-        "description": "Update the password of the current user, requires the old password",
-        "parameters": [
-          {
-            "name": "x-stack-refresh-token",
-            "in": "header",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          }
-        ],
+        "summary": "Send reset password code",
+        "description": "Send a code to the user's email address for resetting the password.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -3715,16 +3820,16 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "old_password": {
+                  "email": {
                     "type": "string"
                   },
-                  "new_password": {
+                  "callback_url": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "old_password",
-                  "new_password"
+                  "email",
+                  "callback_url"
                 ],
                 "example": {}
               }
@@ -3734,7 +3839,7 @@
         "tags": [
           "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3744,9 +3849,7 @@
                   "type": "object",
                   "properties": {
                     "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -3954,11 +4057,20 @@
         }
       }
     },
-    "/auth/password/send-reset-code": {
+    "/auth/password/update": {
       "post": {
-        "summary": "Send reset password code",
-        "description": "Send a code to the user's email address for resetting the password.",
-        "parameters": [],
+        "summary": "Update password",
+        "description": "Update the password of the current user, requires the old password",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -3966,16 +4078,16 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "email": {
+                  "old_password": {
                     "type": "string"
                   },
-                  "callback_url": {
+                  "new_password": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "email",
-                  "callback_url"
+                  "old_password",
+                  "new_password"
                 ],
                 "example": {}
               }
@@ -3985,7 +4097,7 @@
         "tags": [
           "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3995,7 +4107,9 @@
                   "type": "object",
                   "properties": {
                     "success": {
-                      "type": "string"
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
@@ -4008,10 +4122,89 @@
         }
       }
     },
-    "/auth/password/reset": {
+    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
+      "get": {
+        "summary": "Get Item",
+        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
+        "parameters": [
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to retrieve"
+            },
+            "description": "The ID of the item to retrieve",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Payments"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "credits",
+                      "description": "The ID of the item"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "API Credits",
+                      "description": "The human-readable name of the item"
+                    },
+                    "quantity": {
+                      "type": "number",
+                      "example": 1000,
+                      "description": "The current quantity of the item (can be negative)"
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name",
+                    "quantity"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/payments/purchases/create-purchase-url": {
       "post": {
-        "summary": "Reset password with a code",
-        "description": "Reset password with a code",
+        "summary": "Create Purchase URL",
+        "description": "Creates a secure checkout URL for purchasing a product.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4020,30 +4213,109 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "password": {
-                    "type": "string"
+                  "customer_type": {
+                    "type": "string",
+                    "example": "user",
+                    "description": "The type of customer making the purchase"
                   },
-                  "code": {
+                  "customer_id": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "user_1234567890abcdef",
+                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
+                  },
+                  "product_id": {
+                    "type": "string",
+                    "example": "prod_premium_monthly",
+                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
+                  },
+                  "product_inline": {
+                    "type": "object",
+                    "properties": {
+                      "display_name": {
+                        "type": "string"
+                      },
+                      "customer_type": {
+                        "type": "string"
+                      },
+                      "free_trial": {
+                        "type": "array",
+                        "items": {
+                          "type": "number"
+                        }
+                      },
+                      "server_only": {
+                        "type": "boolean",
+                        "default": true
+                      },
+                      "stackable": {
+                        "type": "boolean",
+                        "default": false
+                      },
+                      "prices": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "included_items": {
+                        "type": "object",
+                        "properties": {},
+                        "required": []
+                      },
+                      "client_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                      },
+                      "client_read_only_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                      },
+                      "server_metadata": {
+                        "type": "object",
+                        "example": {
+                          "featureFlag": true,
+                          "source": "marketing-campaign"
+                        },
+                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                      }
+                    },
+                    "required": [
+                      "display_name",
+                      "customer_type"
+                    ],
+                    "description": "Inline product definition. Either this or product_id should be given."
+                  },
+                  "return_url": {
+                    "type": "string",
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
                   }
                 },
                 "required": [
-                  "password",
-                  "code"
+                  "customer_type",
+                  "customer_id"
                 ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "customer_type": "user",
+                  "customer_id": "user_1234567890abcdef",
+                  "product_id": "prod_premium_monthly",
+                  "return_url": "https://myapp.com/purchase-success"
                 }
               }
             }
           }
         },
         "tags": [
-          "Password"
+          "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4052,14 +4324,13 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "url": {
+                      "type": "string",
+                      "description": "The secure checkout URL for completing the purchase"
                     }
                   },
                   "required": [
-                    "success"
+                    "url"
                   ]
                 }
               }
@@ -4068,10 +4339,10 @@
         }
       }
     },
-    "/auth/password/reset/check-code": {
+    "/payments/purchases/purchase-session": {
       "post": {
-        "summary": "Check reset password code",
-        "description": "Check if a reset password code is valid without using it",
+        "summary": "Create Purchase Session",
+        "description": "Creates a purchase session for completing a purchase.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4080,26 +4351,40 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "full_code": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "price_id": {
+                    "type": "string",
+                    "example": "price_1234567890abcdef",
+                    "description": "The Stack auth price ID to purchase"
+                  },
+                  "quantity": {
+                    "type": "number",
+                    "example": 1,
+                    "description": "The quantity to purchase",
+                    "default": 1
                   }
                 },
                 "required": [
-                  "code"
+                  "full_code",
+                  "price_id"
                 ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "full_code": "proj_abc123_def456ghi789",
+                  "price_id": "price_1234567890abcdef",
+                  "quantity": 1
                 }
               }
             }
           }
         },
         "tags": [
-          "Password"
+          "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4108,12 +4393,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
+                    "client_secret": {
+                      "type": "string",
+                      "example": "1234567890abcdef_secret_xyz123",
+                      "description": "The Stripe client secret for completing the payment"
                     }
                   },
                   "required": [
-                    "is_code_valid"
+                    "client_secret"
                   ]
                 }
               }
@@ -4283,755 +4570,49 @@
         }
       }
     },
-    "/payments/purchases/purchase-session": {
-      "post": {
-        "summary": "Create Purchase Session",
-        "description": "Creates a purchase session for completing a purchase.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "full_code": {
-                    "type": "string",
-                    "example": "proj_abc123_def456ghi789",
-                    "description": "The verification code, given as a query parameter in the purchase URL"
-                  },
-                  "price_id": {
-                    "type": "string",
-                    "example": "price_1234567890abcdef",
-                    "description": "The Stack auth price ID to purchase"
-                  },
-                  "quantity": {
-                    "type": "number",
-                    "example": 1,
-                    "description": "The quantity to purchase",
-                    "default": 1
-                  }
-                },
-                "required": [
-                  "full_code",
-                  "price_id"
-                ],
-                "example": {
-                  "full_code": "proj_abc123_def456ghi789",
-                  "price_id": "price_1234567890abcdef",
-                  "quantity": 1
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "client_secret": {
-                      "type": "string",
-                      "example": "1234567890abcdef_secret_xyz123",
-                      "description": "The Stripe client secret for completing the payment"
-                    }
-                  },
-                  "required": [
-                    "client_secret"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/payments/purchases/create-purchase-url": {
-      "post": {
-        "summary": "Create Purchase URL",
-        "description": "Creates a secure checkout URL for purchasing a product.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "customer_type": {
-                    "type": "string",
-                    "example": "user",
-                    "description": "The type of customer making the purchase"
-                  },
-                  "customer_id": {
-                    "type": "string",
-                    "example": "user_1234567890abcdef",
-                    "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
-                  },
-                  "product_id": {
-                    "type": "string",
-                    "example": "prod_premium_monthly",
-                    "description": "The ID of the product to purchase. Either this or product_inline should be given."
-                  },
-                  "product_inline": {
-                    "type": "object",
-                    "properties": {
-                      "display_name": {
-                        "type": "string"
-                      },
-                      "customer_type": {
-                        "type": "string"
-                      },
-                      "free_trial": {
-                        "type": "array",
-                        "items": {
-                          "type": "number"
-                        }
-                      },
-                      "server_only": {
-                        "type": "boolean",
-                        "default": true
-                      },
-                      "stackable": {
-                        "type": "boolean",
-                        "default": false
-                      },
-                      "prices": {
-                        "type": "object",
-                        "properties": {},
-                        "required": []
-                      },
-                      "included_items": {
-                        "type": "object",
-                        "properties": {},
-                        "required": []
-                      },
-                      "client_metadata": {
-                        "type": "object",
-                        "example": {
-                          "featureFlag": true,
-                          "source": "marketing-campaign"
-                        },
-                        "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                      },
-                      "client_read_only_metadata": {
-                        "type": "object",
-                        "example": {
-                          "featureFlag": true,
-                          "source": "marketing-campaign"
-                        },
-                        "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                      },
-                      "server_metadata": {
-                        "type": "object",
-                        "example": {
-                          "featureFlag": true,
-                          "source": "marketing-campaign"
-                        },
-                        "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
-                      }
-                    },
-                    "required": [
-                      "display_name",
-                      "customer_type"
-                    ],
-                    "description": "Inline product definition. Either this or product_id should be given."
-                  },
-                  "return_url": {
-                    "type": "string",
-                    "example": "https://myapp.com/purchase-success",
-                    "description": "URL to redirect to after purchase completion. Must be configured as a trusted domain in the project configuration."
-                  }
-                },
-                "required": [
-                  "customer_type",
-                  "customer_id"
-                ],
-                "example": {
-                  "customer_type": "user",
-                  "customer_id": "user_1234567890abcdef",
-                  "product_id": "prod_premium_monthly",
-                  "return_url": "https://myapp.com/purchase-success"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/create-purchase-url",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "url": {
-                      "type": "string",
-                      "description": "The secure checkout URL for completing the purchase"
-                    }
-                  },
-                  "required": [
-                    "url"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
-      "get": {
-        "summary": "Get Item",
-        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
-        "parameters": [
-          {
-            "name": "customer_type",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user",
-              "description": "The type of customer"
-            },
-            "description": "The type of customer",
-            "required": true
-          },
-          {
-            "name": "customer_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user_1234567890abcdef",
-              "description": "The ID of the customer"
-            },
-            "description": "The ID of the customer",
-            "required": true
-          },
-          {
-            "name": "item_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "credits",
-              "description": "The ID of the item to retrieve"
-            },
-            "description": "The ID of the item to retrieve",
-            "required": true
-          }
-        ],
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "credits",
-                      "description": "The ID of the item"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "API Credits",
-                      "description": "The human-readable name of the item"
-                    },
-                    "quantity": {
-                      "type": "number",
-                      "example": 1000,
-                      "description": "The current quantity of the item (can be negative)"
-                    }
-                  },
-                  "required": [
-                    "id",
-                    "display_name",
-                    "quantity"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/team-permissions": {
-      "get": {
-        "summary": "List team permissions",
-        "description": "List team permissions of the current user. `user_id=me` must be set for client requests. Note that this might contain the permissions with the same permission ID across different teams. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
-              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
-            },
-            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
-            "required": false
-          },
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "me",
-              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
-            },
-            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
-            "required": false
-          },
-          {
-            "name": "permission_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
-              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
-            },
-            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
-            "required": false
-          },
-          {
-            "name": "recursive",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "true",
-              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
-            },
-            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Permissions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string",
-                            "example": "read_secret_info",
-                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The unique identifier of the user"
-                          },
-                          "team_id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "user_id",
-                          "team_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/project-permissions": {
-      "get": {
-        "summary": "List project permissions",
-        "description": "List global permissions of the current user. `user_id=me` must be set for client requests. `(user_id, permission_id)` together uniquely identify a permission.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "me",
-              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
-            },
-            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
-            "required": false
-          },
-          {
-            "name": "permission_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
-              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
-            },
-            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
-            "required": false
-          },
-          {
-            "name": "recursive",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "true",
-              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
-            },
-            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Permissions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string",
-                            "example": "read_secret_info",
-                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The unique identifier of the user"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "user_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/projects/current": {
-      "get": {
-        "summary": "Get the current project",
-        "description": "Get the current project information including display name, OAuth providers and authentication methods. Useful for displaying the available login options to the user.",
-        "parameters": [],
-        "tags": [
-          "Projects"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/projects/current",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
-                      "description": "The unique identifier of the project"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "MyMusic",
-                      "description": "Human-readable project display name. This is not a unique identifier."
-                    }
-                  },
-                  "required": [
-                    "id",
-                    "display_name"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/auth/sessions": {
+    "/project-permissions": {
       "get": {
-        "summary": "List sessions",
-        "description": "List all sessions for the current user.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
-        "tags": [
-          "Sessions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "user_id": {
-                            "type": "string"
-                          },
-                          "created_at": {
-                            "type": "number"
-                          },
-                          "is_impersonation": {
-                            "type": "boolean"
-                          },
-                          "last_used_at": {
-                            "type": "number"
-                          },
-                          "is_current_session": {
-                            "type": "boolean"
-                          },
-                          "last_used_at_end_user_ip_info": {
-                            "type": "object",
-                            "properties": {
-                              "ip": {
-                                "type": "string"
-                              },
-                              "countryCode": {
-                                "type": "string"
-                              },
-                              "regionCode": {
-                                "type": "string"
-                              },
-                              "cityName": {
-                                "type": "string"
-                              },
-                              "latitude": {
-                                "type": "number"
-                              },
-                              "longitude": {
-                                "type": "number"
-                              },
-                              "tzIdentifier": {
-                                "type": "string"
-                              }
-                            },
-                            "required": [
-                              "ip"
-                            ]
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "user_id",
-                          "created_at",
-                          "is_impersonation"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/auth/sessions/current": {
-      "delete": {
-        "summary": "Sign out of the current session",
-        "description": "Sign out of the current session and invalidate the refresh token",
-        "parameters": [],
-        "tags": [
-          "Sessions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/auth/sessions/{id}": {
-      "delete": {
-        "summary": "Delete session",
-        "description": "Delete a session by ID.",
+        "summary": "List project permissions",
+        "description": "List global permissions of the current user. `user_id=me` must be set for client requests. `(user_id, permission_id)` together uniquely identify a permission.",
         "parameters": [
           {
             "name": "user_id",
             "in": "query",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          },
-          {
-            "name": "id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "Sessions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/auth/sessions/current/refresh": {
-      "post": {
-        "summary": "Refresh access token",
-        "description": "Get a new access token using a refresh token",
-        "parameters": [
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
           {
-            "name": "x-stack-refresh-token",
-            "in": "header",
+            "name": "permission_id",
+            "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
             },
-            "required": true
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
           }
         ],
         "tags": [
-          "Sessions"
+          "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5040,12 +4621,42 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "access_token": {
-                      "type": "string"
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "access_token"
+                    "items"
                   ]
                 }
               }
@@ -5054,32 +4665,60 @@
         }
       }
     },
-    "/team-member-profiles": {
+    "/team-permissions": {
       "get": {
-        "summary": "List team members profiles",
-        "description": "List team members profiles. You always need to specify a `team_id` that your are a member of on the client. You can always filter for your own profile by setting `me` as the `user_id` in the path parameters. If you want list all the profiles in a team, you need to have the `$read_members` permission in that team.",
+        "summary": "List team permissions",
+        "description": "List team permissions of the current user. `user_id=me` must be set for client requests. Note that this might contain the permissions with the same permission ID across different teams. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
         "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
+              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
+            },
+            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
+            "required": false
+          },
           {
             "name": "user_id",
             "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
             },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
             "required": false
           },
           {
-            "name": "team_id",
+            "name": "permission_id",
             "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
             },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
             "required": false
           }
         ],
         "tags": [
-          "Teams"
+          "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5093,30 +4732,26 @@
                       "items": {
                         "type": "object",
                         "properties": {
-                          "team_id": {
+                          "id": {
                             "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
                           },
                           "user_id": {
                             "type": "string",
                             "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
                             "description": "The unique identifier of the user"
                           },
-                          "display_name": {
-                            "type": "string",
-                            "example": "John Doe",
-                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
-                          },
-                          "profile_image_url": {
+                          "team_id": {
                             "type": "string",
-                            "example": "https://example.com/image.jpg",
-                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
                           }
                         },
                         "required": [
-                          "team_id",
-                          "user_id"
+                          "id",
+                          "user_id",
+                          "team_id"
                         ]
                       }
                     },
@@ -5142,27 +4777,66 @@
         }
       }
     },
-    "/teams": {
+    "/projects/current": {
       "get": {
-        "summary": "List teams",
-        "description": "List all the teams that the current user is a member of. `user_id=me` must be passed in the query parameters.",
+        "summary": "Get the current project",
+        "description": "Get the current project information including display name, OAuth providers and authentication methods. Useful for displaying the available login options to the user.",
+        "parameters": [],
+        "tags": [
+          "Projects"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/projects/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "id": {
+                      "type": "string",
+                      "example": "e0b52f4d-dece-408c-af49-d23061bb0f8d",
+                      "description": "The unique identifier of the project"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "MyMusic",
+                      "description": "Human-readable project display name. This is not a unique identifier."
+                    }
+                  },
+                  "required": [
+                    "id",
+                    "display_name"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions": {
+      "get": {
+        "summary": "List sessions",
+        "description": "List all sessions for the current user.",
         "parameters": [
           {
             "name": "user_id",
             "in": "query",
             "schema": {
               "type": "string",
-              "example": "me",
-              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
-            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
-            "required": false
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
           }
         ],
         "tags": [
-          "Teams"
+          "Sessions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5177,38 +4851,58 @@
                         "type": "object",
                         "properties": {
                           "id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
+                            "type": "string"
                           },
-                          "display_name": {
-                            "type": "string",
-                            "example": "My Team",
-                            "description": "Human-readable team display name. This is not a unique identifier."
+                          "user_id": {
+                            "type": "string"
                           },
-                          "profile_image_url": {
-                            "type": "string",
-                            "example": "https://example.com/image.jpg",
-                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          "created_at": {
+                            "type": "number"
                           },
-                          "client_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          "is_impersonation": {
+                            "type": "boolean"
                           },
-                          "client_read_only_metadata": {
+                          "last_used_at": {
+                            "type": "number"
+                          },
+                          "is_current_session": {
+                            "type": "boolean"
+                          },
+                          "last_used_at_end_user_ip_info": {
                             "type": "object",
-                            "example": {
-                              "key": "value"
+                            "properties": {
+                              "ip": {
+                                "type": "string"
+                              },
+                              "countryCode": {
+                                "type": "string"
+                              },
+                              "regionCode": {
+                                "type": "string"
+                              },
+                              "cityName": {
+                                "type": "string"
+                              },
+                              "latitude": {
+                                "type": "number"
+                              },
+                              "longitude": {
+                                "type": "number"
+                              },
+                              "tzIdentifier": {
+                                "type": "string"
+                              }
                             },
-                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                            "required": [
+                              "ip"
+                            ]
                           }
                         },
                         "required": [
                           "id",
-                          "display_name"
+                          "user_id",
+                          "created_at",
+                          "is_impersonation"
                         ]
                       }
                     },
@@ -5232,101 +4926,126 @@
             }
           }
         }
-      },
-      "post": {
-        "summary": "Create a team",
-        "description": "Create a new team and optionally add the current user as a member.",
+      }
+    },
+    "/auth/sessions/current": {
+      "delete": {
+        "summary": "Sign out of the current session",
+        "description": "Sign out of the current session and invalidate the refresh token",
         "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "display_name": {
-                    "type": "string",
-                    "example": "My Team",
-                    "description": "Human-readable team display name. This is not a unique identifier."
-                  },
-                  "creator_user_id": {
-                    "type": "string",
-                    "example": "me",
-                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
                   },
-                  "profile_image_url": {
-                    "type": "string",
-                    "example": "https://example.com/image.jpg",
-                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/sessions/current/refresh": {
+      "post": {
+        "summary": "Refresh access token",
+        "description": "Get a new access token using a refresh token",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    }
                   },
-                  "client_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                  }
-                },
-                "required": [
-                  "display_name"
-                ],
-                "example": {
-                  "display_name": "My Team",
-                  "creator_user_id": "me",
-                  "profile_image_url": "https://example.com/image.jpg",
-                  "client_metadata": {
-                    "key": "value"
-                  }
+                  "required": [
+                    "access_token"
+                  ]
                 }
               }
             }
           }
-        },
+        }
+      }
+    },
+    "/auth/sessions/{id}": {
+      "delete": {
+        "summary": "Delete session",
+        "description": "Delete a session by ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
         "tags": [
-          "Teams"
+          "Sessions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/{id}",
         "responses": {
-          "201": {
+          "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "id",
-                    "display_name"
+                    "success"
                   ]
                 }
               }
@@ -5427,89 +5146,85 @@
         }
       }
     },
-    "/teams/{team_id}": {
-      "get": {
-        "summary": "Get a team",
-        "description": "Get a team that the current user is a member of.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
+    "/team-invitations/accept": {
+      "post": {
+        "summary": "Accept the team invitation",
+        "description": "Accept invitation and add user to the team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
           }
-        ],
+        },
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
         "responses": {
           "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                    }
-                  },
-                  "required": [
-                    "id",
-                    "display_name"
-                  ]
+                "schema": {
+                  "type": "object",
+                  "properties": {}
                 }
               }
             }
           }
         }
-      },
-      "delete": {
-        "summary": "Delete a team",
-        "description": "Delete a team. Only allowed if the current user is a member of the team and has the `$delete_team` permission.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
+      }
+    },
+    "/team-invitations/accept/check-code": {
+      "post": {
+        "summary": "Check if a team invitation code is valid",
+        "description": "Check if a team invitation code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
           }
-        ],
+        },
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5518,34 +5233,25 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "is_code_valid": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "success"
+                    "is_code_valid"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "patch": {
-        "summary": "Update a team",
-        "description": "Update the team information. Only allowed if the current user is a member of the team and has the `$update_team` permission.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
+      }
+    },
+    "/team-invitations/accept/details": {
+      "post": {
+        "summary": "Get team invitation details",
+        "description": "Get additional information about a team invitation code",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -5553,30 +5259,17 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "display_name": {
-                    "type": "string",
-                    "example": "My Team",
-                    "description": "Human-readable team display name. This is not a unique identifier."
-                  },
-                  "profile_image_url": {
+                  "code": {
                     "type": "string",
-                    "example": "https://example.com/image.jpg",
-                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                  },
-                  "client_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
                   }
                 },
+                "required": [
+                  "code"
+                ],
                 "example": {
-                  "display_name": "My Team",
-                  "profile_image_url": "https://example.com/image.jpg",
-                  "client_metadata": {
-                    "key": "value"
-                  }
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
                 }
               }
             }
@@ -5585,7 +5278,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5594,39 +5287,16 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    "team_id": {
+                      "type": "string"
                     },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    "team_display_name": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "id",
-                    "display_name"
+                    "team_id",
+                    "team_display_name"
                   ]
                 }
               }
@@ -5759,38 +5429,76 @@
         }
       }
     },
-    "/team-invitations/accept": {
+    "/team-invitations/{id}/accept": {
       "post": {
-        "summary": "Accept the team invitation",
-        "description": "Accept invitation and add user to the team",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+        "summary": "Accept a team invitation by ID",
+        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
                 }
               }
             }
           }
-        },
+        }
+      }
+    },
+    "/team-member-profiles": {
+      "get": {
+        "summary": "List team members profiles",
+        "description": "List team members profiles. You always need to specify a `team_id` that your are a member of on the client. You can always filter for your own profile by setting `me` as the `user_id` in the path parameters. If you want list all the profiles in a team, you need to have the `$read_members` permission in that team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5798,7 +5506,54 @@
               "application/json": {
                 "schema": {
                   "type": "object",
-                  "properties": {}
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          }
+                        },
+                        "required": [
+                          "team_id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
                 }
               }
             }
@@ -5929,37 +5684,283 @@
         ],
         "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles/{team_id}/{user_id}",
         "responses": {
-          "200": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "John Doe",
+                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-memberships/{team_id}/{user_id}": {
+      "delete": {
+        "summary": "Remove a user from a team",
+        "description": "All the users are allowed to remove themselves from a team (`user_id=me`). Only the users who have the `$remove_members` permission are allowed to remove other users from a team. `team_id` is must an ID of a team that the user is a member of.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams": {
+      "get": {
+        "summary": "List teams",
+        "description": "List all the teams that the current user is a member of. `user_id=me` must be passed in the query parameters.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+            },
+            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a team",
+        "description": "Create a new team and optionally add the current user as a member.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "creator_user_id": {
+                    "type": "string",
+                    "example": "me",
+                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "required": [
+                  "display_name"
+                ],
+                "example": {
+                  "display_name": "My Team",
+                  "creator_user_id": "me",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "201": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "team_id": {
+                    "id": {
                       "type": "string",
                       "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
                       "description": "The unique identifier of the team"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The unique identifier of the user"
-                    },
                     "display_name": {
                       "type": "string",
-                      "example": "John Doe",
-                      "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
                     },
                     "profile_image_url": {
                       "type": "string",
                       "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "team_id",
-                    "user_id"
+                    "id",
+                    "display_name"
                   ]
                 }
               }
@@ -5968,10 +5969,10 @@
         }
       }
     },
-    "/team-memberships/{team_id}/{user_id}": {
-      "delete": {
-        "summary": "Remove a user from a team",
-        "description": "All the users are allowed to remove themselves from a team (`user_id=me`). Only the users who have the `$remove_members` permission are allowed to remove other users from a team. `team_id` is must an ID of a team that the user is a member of.",
+    "/teams/{team_id}": {
+      "get": {
+        "summary": "Get a team",
+        "description": "Get a team that the current user is a member of.",
         "parameters": [
           {
             "name": "team_id",
@@ -5980,23 +5981,12 @@
               "type": "string"
             },
             "required": true
-          },
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
           }
         ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6005,40 +5995,52 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "success"
+                    "id",
+                    "display_name"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/team-invitations/{id}/accept": {
-      "post": {
-        "summary": "Accept a team invitation by ID",
-        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+      },
+      "delete": {
+        "summary": "Delete a team",
+        "description": "Delete a team. Only allowed if the current user is a member of the team and has the `$delete_team` permission.",
         "parameters": [
           {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          },
-          {
-            "name": "id",
+            "name": "team_id",
             "in": "path",
             "schema": {
               "type": "string"
@@ -6049,54 +6051,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {}
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/team-invitations/accept/details": {
-      "post": {
-        "summary": "Get team invitation details",
-        "description": "Get additional information about a team invitation code",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6105,29 +6060,34 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "team_id": {
-                      "type": "string"
-                    },
-                    "team_display_name": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "team_id",
-                    "team_display_name"
+                    "success"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/team-invitations/accept/check-code": {
-      "post": {
-        "summary": "Check if a team invitation code is valid",
-        "description": "Check if a team invitation code is valid without using it",
-        "parameters": [],
+      },
+      "patch": {
+        "summary": "Update a team",
+        "description": "Update the team information. Only allowed if the current user is a member of the team and has the `$update_team` permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -6135,17 +6095,30 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "display_name": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
                   }
                 },
-                "required": [
-                  "code"
-                ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "display_name": "My Team",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
                 }
               }
             }
@@ -6154,7 +6127,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6163,12 +6136,39 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "is_code_valid"
+                    "id",
+                    "display_name"
                   ]
                 }
               }
diff --git a/docs-mintlify/openapi/server.json b/docs-mintlify/openapi/server.json
index 7267bd8a2c..72c2d42572 100644
--- a/docs-mintlify/openapi/server.json
+++ b/docs-mintlify/openapi/server.json
@@ -145,24 +145,24 @@
         }
       }
     },
-    "/user-api-keys": {
+    "/team-api-keys": {
       "get": {
-        "summary": "List user API keys",
-        "description": "List all user API keys for the project with their metadata and status",
+        "summary": "List team API keys",
+        "description": "List all team API keys for the project with their metadata and status",
         "parameters": [
           {
-            "name": "user_id",
+            "name": "team_id",
             "in": "query",
             "schema": {
               "type": "string"
             },
-            "required": false
+            "required": true
           }
         ],
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -208,10 +208,8 @@
                           "type": {
                             "type": "string"
                           },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          "team_id": {
+                            "type": "string"
                           }
                         },
                         "required": [
@@ -221,7 +219,7 @@
                           "is_public",
                           "value",
                           "type",
-                          "user_id"
+                          "team_id"
                         ]
                       }
                     },
@@ -247,7 +245,7 @@
         }
       },
       "post": {
-        "summary": "Create user API key",
+        "summary": "Create team API key",
         "description": "Create a new API key for a user or team",
         "parameters": [],
         "requestBody": {
@@ -266,19 +264,15 @@
                   "is_public": {
                     "type": "boolean"
                   },
-                  "user_id": {
-                    "type": "string",
-                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  "team_id": {
+                    "type": "string"
                   }
                 },
                 "required": [
                   "description",
-                  "user_id"
+                  "team_id"
                 ],
-                "example": {
-                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
-                }
+                "example": {}
               }
             }
           }
@@ -286,7 +280,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -319,10 +313,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -332,7 +324,7 @@
                     "created_at_millis",
                     "is_public",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -341,108 +333,10 @@
         }
       }
     },
-    "/team-api-keys": {
-      "get": {
-        "summary": "List team API keys",
-        "description": "List all team API keys for the project with their metadata and status",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "API Keys"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "description": {
-                            "type": "string"
-                          },
-                          "expires_at_millis": {
-                            "type": "number"
-                          },
-                          "manually_revoked_at_millis": {
-                            "type": "number"
-                          },
-                          "created_at_millis": {
-                            "type": "number"
-                          },
-                          "is_public": {
-                            "type": "boolean"
-                          },
-                          "value": {
-                            "type": "object",
-                            "properties": {
-                              "last_four": {
-                                "type": "string"
-                              }
-                            },
-                            "required": [
-                              "last_four"
-                            ]
-                          },
-                          "type": {
-                            "type": "string"
-                          },
-                          "team_id": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "description",
-                          "created_at_millis",
-                          "is_public",
-                          "value",
-                          "type",
-                          "team_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
+    "/team-api-keys/check": {
       "post": {
-        "summary": "Create team API key",
-        "description": "Create a new API key for a user or team",
+        "summary": "Check team API key validity",
+        "description": "Validate a team API key",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -451,22 +345,12 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "description": {
-                    "type": "string"
-                  },
-                  "expires_at_millis": {
-                    "type": "number"
-                  },
-                  "is_public": {
-                    "type": "boolean"
-                  },
-                  "team_id": {
+                  "api_key": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "description",
-                  "team_id"
+                  "api_key"
                 ],
                 "example": {}
               }
@@ -476,7 +360,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/check",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -485,9 +369,6 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "value": {
-                      "type": "string"
-                    },
                     "id": {
                       "type": "string"
                     },
@@ -506,6 +387,17 @@
                     "is_public": {
                       "type": "boolean"
                     },
+                    "value": {
+                      "type": "object",
+                      "properties": {
+                        "last_four": {
+                          "type": "string"
+                        }
+                      },
+                      "required": [
+                        "last_four"
+                      ]
+                    },
                     "type": {
                       "type": "string"
                     },
@@ -514,11 +406,11 @@
                     }
                   },
                   "required": [
-                    "value",
                     "id",
                     "description",
                     "created_at_millis",
                     "is_public",
+                    "value",
                     "type",
                     "team_id"
                   ]
@@ -529,10 +421,10 @@
         }
       }
     },
-    "/user-api-keys/{api_key_id}": {
+    "/team-api-keys/{api_key_id}": {
       "get": {
-        "summary": "Get user API key details",
-        "description": "Get details of a specific user API key",
+        "summary": "Get team API key details",
+        "description": "Get details of a specific team API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -546,7 +438,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -587,10 +479,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -600,7 +490,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -609,8 +499,8 @@
         }
       },
       "patch": {
-        "summary": "Update user API key",
-        "description": "Update an user API key",
+        "summary": "Update team API key",
+        "description": "Update an team API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -643,7 +533,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -684,10 +574,8 @@
                     "type": {
                       "type": "string"
                     },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    "team_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -697,7 +585,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "user_id"
+                    "team_id"
                   ]
                 }
               }
@@ -706,34 +594,24 @@
         }
       }
     },
-    "/team-api-keys/check": {
-      "post": {
-        "summary": "Check team API key validity",
-        "description": "Validate a team API key",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "api_key": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "api_key"
-                ],
-                "example": {}
-              }
-            }
+    "/user-api-keys": {
+      "get": {
+        "summary": "List user API keys",
+        "description": "List all user API keys for the project with their metadata and status",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
           }
-        },
+        ],
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/check",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -742,14 +620,141 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string"
-                    },
-                    "description": {
-                      "type": "string"
-                    },
-                    "expires_at_millis": {
-                      "type": "number"
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "description": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "manually_revoked_at_millis": {
+                            "type": "number"
+                          },
+                          "created_at_millis": {
+                            "type": "number"
+                          },
+                          "is_public": {
+                            "type": "boolean"
+                          },
+                          "value": {
+                            "type": "object",
+                            "properties": {
+                              "last_four": {
+                                "type": "string"
+                              }
+                            },
+                            "required": [
+                              "last_four"
+                            ]
+                          },
+                          "type": {
+                            "type": "string"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "description",
+                          "created_at_millis",
+                          "is_public",
+                          "value",
+                          "type",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create user API key",
+        "description": "Create a new API key for a user or team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "description": {
+                    "type": "string"
+                  },
+                  "expires_at_millis": {
+                    "type": "number"
+                  },
+                  "is_public": {
+                    "type": "boolean"
+                  },
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  }
+                },
+                "required": [
+                  "description",
+                  "user_id"
+                ],
+                "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "API Keys"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "value": {
+                      "type": "string"
+                    },
+                    "id": {
+                      "type": "string"
+                    },
+                    "description": {
+                      "type": "string"
+                    },
+                    "expires_at_millis": {
+                      "type": "number"
                     },
                     "manually_revoked_at_millis": {
                       "type": "number"
@@ -760,32 +765,23 @@
                     "is_public": {
                       "type": "boolean"
                     },
-                    "value": {
-                      "type": "object",
-                      "properties": {
-                        "last_four": {
-                          "type": "string"
-                        }
-                      },
-                      "required": [
-                        "last_four"
-                      ]
-                    },
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
+                    "value",
                     "id",
                     "description",
                     "created_at_millis",
                     "is_public",
-                    "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -884,10 +880,10 @@
         }
       }
     },
-    "/team-api-keys/{api_key_id}": {
+    "/user-api-keys/{api_key_id}": {
       "get": {
-        "summary": "Get team API key details",
-        "description": "Get details of a specific team API key",
+        "summary": "Get user API key details",
+        "description": "Get details of a specific user API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -901,7 +897,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -942,8 +938,10 @@
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
@@ -953,7 +951,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -962,8 +960,8 @@
         }
       },
       "patch": {
-        "summary": "Update team API key",
-        "description": "Update an team API key",
+        "summary": "Update user API key",
+        "description": "Update an user API key",
         "parameters": [
           {
             "name": "api_key_id",
@@ -996,7 +994,7 @@
         "tags": [
           "API Keys"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-api-keys/{api_key_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/user-api-keys/{api_key_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -1037,8 +1035,10 @@
                     "type": {
                       "type": "string"
                     },
-                    "team_id": {
-                      "type": "string"
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
                     }
                   },
                   "required": [
@@ -1048,7 +1048,7 @@
                     "is_public",
                     "value",
                     "type",
-                    "team_id"
+                    "user_id"
                   ]
                 }
               }
@@ -1116,6 +1116,63 @@
         }
       }
     },
+    "/auth/cli/complete": {
+      "post": {
+        "summary": "Complete CLI authentication",
+        "description": "Inspect, claim, or complete a CLI authentication session",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "login_code": {
+                    "type": "string"
+                  },
+                  "mode": {
+                    "type": "string",
+                    "default": "complete"
+                  },
+                  "refresh_token": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "login_code"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "CLI Authentication"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/auth/cli/poll": {
       "post": {
         "summary": "Poll CLI authentication status",
@@ -1190,63 +1247,6 @@
         }
       }
     },
-    "/auth/cli/complete": {
-      "post": {
-        "summary": "Complete CLI authentication",
-        "description": "Inspect, claim, or complete a CLI authentication session",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "login_code": {
-                    "type": "string"
-                  },
-                  "mode": {
-                    "type": "string",
-                    "default": "complete"
-                  },
-                  "refresh_token": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "login_code"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "CLI Authentication"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/cli/complete",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "success"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/connected-accounts/{user_id}": {
       "get": {
         "summary": "List connected accounts",
@@ -1636,6 +1636,60 @@
         }
       }
     },
+    "/contact-channels/verify/check-code": {
+      "post": {
+        "summary": "Check email verification code",
+        "description": "Check if an email verification code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Contact Channels"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/contact-channels/{user_id}/{contact_channel_id}": {
       "get": {
         "summary": "Get a contact channel",
@@ -1973,60 +2027,6 @@
         }
       }
     },
-    "/contact-channels/verify/check-code": {
-      "post": {
-        "summary": "Check email verification code",
-        "description": "Check if an email verification code is valid without using it",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Contact Channels"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/contact-channels/verify/check-code",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "is_code_valid"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/contact-channels/{user_id}/{contact_channel_id}/send-verification-code": {
       "post": {
         "summary": "Send contact channel verification code",
@@ -2106,10 +2106,10 @@
         }
       }
     },
-    "/data-vault/stores/{id}/set": {
+    "/data-vault/stores/{id}/get": {
       "post": {
-        "summary": "Store encrypted value in data vault",
-        "description": "Stores a hashed key and encrypted value in the data vault for a specific store",
+        "summary": "Retrieve encrypted value from data vault",
+        "description": "Retrieves and decrypts a value from the data vault using a hashed key",
         "parameters": [
           {
             "name": "id",
@@ -2129,14 +2129,10 @@
                 "properties": {
                   "hashed_key": {
                     "type": "string"
-                  },
-                  "encrypted_value": {
-                    "type": "string"
                   }
                 },
                 "required": [
-                  "hashed_key",
-                  "encrypted_value"
+                  "hashed_key"
                 ],
                 "example": {}
               }
@@ -2146,7 +2142,7 @@
         "tags": [
           "DataVault"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/set",
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/get",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2155,14 +2151,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "encrypted_value": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "success"
+                    "encrypted_value"
                   ]
                 }
               }
@@ -2171,10 +2165,10 @@
         }
       }
     },
-    "/data-vault/stores/{id}/get": {
+    "/data-vault/stores/{id}/set": {
       "post": {
-        "summary": "Retrieve encrypted value from data vault",
-        "description": "Retrieves and decrypts a value from the data vault using a hashed key",
+        "summary": "Store encrypted value in data vault",
+        "description": "Stores a hashed key and encrypted value in the data vault for a specific store",
         "parameters": [
           {
             "name": "id",
@@ -2194,10 +2188,14 @@
                 "properties": {
                   "hashed_key": {
                     "type": "string"
+                  },
+                  "encrypted_value": {
+                    "type": "string"
                   }
                 },
                 "required": [
-                  "hashed_key"
+                  "hashed_key",
+                  "encrypted_value"
                 ],
                 "example": {}
               }
@@ -2207,7 +2205,7 @@
         "tags": [
           "DataVault"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/get",
+        "x-full-url": "https://api.stack-auth.com/api/v1/data-vault/stores/{id}/set",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2216,12 +2214,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "encrypted_value": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "encrypted_value"
+                    "success"
                   ]
                 }
               }
@@ -2230,15 +2230,15 @@
         }
       }
     },
-    "/emails/send-email": {
+    "/emails/capacity-boost": {
       "post": {
-        "summary": "Send email",
-        "description": "Send an email to a list of users. The content field should contain either {html} for HTML emails, {template_id, variables} for template-based emails, or {draft_id} for a draft email.",
+        "summary": "Activate email capacity boost",
+        "description": "Temporarily increases email capacity by 4x for 4 hours.",
         "parameters": [],
         "tags": [
           "Emails"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/send-email",
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/capacity-boost",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -2247,23 +2247,12 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "results": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "user_id": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "user_id"
-                        ]
-                      }
+                    "expires_at": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "results"
+                    "expires_at"
                   ]
                 }
               }
@@ -2272,120 +2261,7 @@
         }
       }
     },
-    "/emails/outbox": {
-      "get": {
-        "summary": "List email outbox",
-        "description": "Lists all emails in the outbox with optional filtering by status or simple_status.",
-        "parameters": [
-          {
-            "name": "status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "simple_status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "limit",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "The maximum number of items to return. Maximum allowed is 100"
-            },
-            "description": "The maximum number of items to return. Maximum allowed is 100",
-            "required": false
-          },
-          {
-            "name": "cursor",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "The cursor to start the result set from (email ID)"
-            },
-            "description": "The cursor to start the result set from (email ID)",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object"
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/emails/capacity-boost": {
-      "post": {
-        "summary": "Activate email capacity boost",
-        "description": "Temporarily increases email capacity by 4x for 4 hours.",
-        "parameters": [],
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/capacity-boost",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "expires_at": {
-                      "type": "string"
-                    }
-                  },
-                  "required": [
-                    "expires_at"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/emails/delivery-info": {
+    "/emails/delivery-info": {
       "get": {
         "summary": "Get email delivery info",
         "description": "Returns delivery statistics and capacity information for the current tenancy.",
@@ -2527,135 +2403,6 @@
         }
       }
     },
-    "/emails/outbox/{id}": {
-      "get": {
-        "summary": "Get email outbox entry",
-        "description": "Gets a single email from the outbox by ID.",
-        "parameters": [
-          {
-            "name": "status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "simple_status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          }
-        ],
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {}
-              }
-            }
-          }
-        }
-      },
-      "patch": {
-        "summary": "Update email outbox entry",
-        "description": "Updates an email in the outbox. Can be used to edit email content, pause/resume, or cancel emails. Only emails in editable states (`paused`, `preparing`, `rendering`, `render-error`, `scheduled`, `queued`, `server-error`) can be modified.",
-        "parameters": [
-          {
-            "name": "status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "simple_status",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          }
-        ],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "tsx_source": {
-                    "type": "string"
-                  },
-                  "theme_id": {
-                    "type": "string"
-                  },
-                  "to": {
-                    "type": "object"
-                  },
-                  "variables": {
-                    "type": "object",
-                    "properties": {},
-                    "required": []
-                  },
-                  "skip_deliverability_check": {
-                    "type": "boolean"
-                  },
-                  "scheduled_at_millis": {
-                    "type": "number"
-                  },
-                  "is_paused": {
-                    "type": "boolean"
-                  },
-                  "cancel": {
-                    "type": "boolean"
-                  }
-                },
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "Emails"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {}
-              }
-            }
-          }
-        }
-      }
-    },
     "/emails/notification-preference/{user_id}": {
       "get": {
         "summary": "List notification preferences",
@@ -2815,58 +2562,251 @@
         }
       }
     },
-    "/internal/feedback": {
-      "post": {
-        "summary": "Submit support feedback",
-        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "name": {
-                    "type": "string"
-                  },
-                  "email": {
-                    "type": "string"
-                  },
-                  "message": {
-                    "type": "string"
-                  },
-                  "feedback_type": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "email",
-                  "message"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "Internal"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean"
+    "/emails/outbox": {
+      "get": {
+        "summary": "List email outbox",
+        "description": "Lists all emails in the outbox with optional filtering by status or simple_status.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "limit",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The maximum number of items to return. Maximum allowed is 100"
+            },
+            "description": "The maximum number of items to return. Maximum allowed is 100",
+            "required": false
+          },
+          {
+            "name": "cursor",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The cursor to start the result set from (email ID)"
+            },
+            "description": "The cursor to start the result set from (email ID)",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object"
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "success"
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/outbox/{id}": {
+      "get": {
+        "summary": "Get email outbox entry",
+        "description": "Gets a single email from the outbox by ID.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      },
+      "patch": {
+        "summary": "Update email outbox entry",
+        "description": "Updates an email in the outbox. Can be used to edit email content, pause/resume, or cancel emails. Only emails in editable states (`paused`, `preparing`, `rendering`, `render-error`, `scheduled`, `queued`, `server-error`) can be modified.",
+        "parameters": [
+          {
+            "name": "status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "simple_status",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "tsx_source": {
+                    "type": "string"
+                  },
+                  "theme_id": {
+                    "type": "string"
+                  },
+                  "to": {
+                    "type": "object"
+                  },
+                  "variables": {
+                    "type": "object",
+                    "properties": {},
+                    "required": []
+                  },
+                  "skip_deliverability_check": {
+                    "type": "boolean"
+                  },
+                  "scheduled_at_millis": {
+                    "type": "number"
+                  },
+                  "is_paused": {
+                    "type": "boolean"
+                  },
+                  "cancel": {
+                    "type": "boolean"
+                  }
+                },
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/outbox/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/emails/send-email": {
+      "post": {
+        "summary": "Send email",
+        "description": "Send an email to a list of users. The content field should contain either {html} for HTML emails, {template_id, variables} for template-based emails, or {draft_id} for a draft email.",
+        "parameters": [],
+        "tags": [
+          "Emails"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/emails/send-email",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "results": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user_id": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "user_id"
+                        ]
+                      }
+                    }
+                  },
+                  "required": [
+                    "results"
                   ]
                 }
               }
@@ -3022,50 +2962,7 @@
         }
       }
     },
-    "/internal/preview/create-project": {
-      "post": {
-        "summary": "Create a preview project",
-        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {},
-                "example": {}
-              }
-            }
-          }
-        },
-        "tags": [
-          "Internal"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "project_id": {
-                      "type": "string"
-                    }
-                  },
-                  "required": [
-                    "project_id"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/internal/feature-requests/{featureRequestId}/upvote": {
+    "/internal/feature-requests/{featureRequestId}/upvote": {
       "post": {
         "summary": "Toggle upvote on feature request",
         "description": "Toggle upvote on a feature request for the current user",
@@ -3120,24 +3017,44 @@
         }
       }
     },
-    "/oauth-providers": {
-      "get": {
-        "summary": "List OAuth providers",
-        "description": "Retrieves a list of all OAuth providers for a user.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
+    "/internal/feedback": {
+      "post": {
+        "summary": "Submit support feedback",
+        "description": "Send a support feedback message to the internal Stack Auth inbox. Auth is optional — works from both the dashboard (authenticated) and the dev tool (unauthenticated).",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "name": {
+                    "type": "string"
+                  },
+                  "email": {
+                    "type": "string"
+                  },
+                  "message": {
+                    "type": "string"
+                  },
+                  "feedback_type": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "message"
+                ],
+                "example": {}
+              }
+            }
           }
-        ],
+        },
         "tags": [
-          "Oauth"
+          "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/feedback",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3146,87 +3063,24 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "account_id": {
-                            "type": "string",
-                            "example": "google-account-id-12345",
-                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                          },
-                          "id": {
-                            "type": "string",
-                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                            "description": "The unique identifier of the OAuth provider"
-                          },
-                          "email": {
-                            "type": "string",
-                            "example": "test@gmail.com",
-                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                          },
-                          "provider_config_id": {
-                            "type": "string",
-                            "example": "google",
-                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                          },
-                          "type": {
-                            "type": "string",
-                            "example": "google",
-                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                          },
-                          "allow_sign_in": {
-                            "type": "boolean",
-                            "example": true,
-                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                          },
-                          "allow_connected_accounts": {
-                            "type": "boolean",
-                            "example": true,
-                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
-                          }
-                        },
-                        "required": [
-                          "account_id",
-                          "user_id",
-                          "id",
-                          "provider_config_id",
-                          "type",
-                          "allow_sign_in",
-                          "allow_connected_accounts"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
+                    "success": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "items"
+                    "success"
                   ]
                 }
               }
             }
           }
         }
-      },
+      }
+    },
+    "/internal/preview/create-project": {
       "post": {
-        "summary": "Create an OAuth provider",
-        "description": "Add a new OAuth provider for a user.",
+        "summary": "Create a preview project",
+        "description": "Creates a new project pre-filled with dummy data for the preview environment. Only available when NEXT_PUBLIC_STACK_IS_PREVIEW=true.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -3234,115 +3088,30 @@
             "application/json": {
               "schema": {
                 "type": "object",
-                "properties": {
-                  "user_id": {
-                    "type": "string",
-                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                  },
-                  "provider_config_id": {
-                    "type": "string"
-                  },
-                  "email": {
-                    "type": "string",
-                    "example": "test@gmail.com",
-                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                  },
-                  "allow_sign_in": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                  },
-                  "allow_connected_accounts": {
-                    "type": "boolean",
-                    "example": true,
-                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
-                  },
-                  "account_id": {
-                    "type": "string",
-                    "example": "google-account-id-12345",
-                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                  }
-                },
-                "required": [
-                  "user_id",
-                  "provider_config_id",
-                  "allow_sign_in",
-                  "allow_connected_accounts",
-                  "account_id"
-                ],
-                "example": {
-                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                  "email": "test@gmail.com",
-                  "allow_sign_in": true,
-                  "allow_connected_accounts": true,
-                  "account_id": "google-account-id-12345"
-                }
+                "properties": {},
+                "example": {}
               }
             }
           }
         },
         "tags": [
-          "Oauth"
+          "Internal"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "x-full-url": "https://api.stack-auth.com/api/v1/internal/preview/create-project",
         "responses": {
-          "201": {
+          "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "account_id": {
-                      "type": "string",
-                      "example": "google-account-id-12345",
-                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    "project_id": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "account_id",
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
+                    "project_id"
                   ]
                 }
               }
@@ -3351,35 +3120,171 @@
         }
       }
     },
-    "/oauth-providers/{user_id}/{provider_id}": {
+    "/auth/oauth/authorize/{provider_id}": {
       "get": {
-        "summary": "Get an OAuth provider",
-        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
+        "summary": "OAuth authorize endpoint",
+        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
         "parameters": [
           {
-            "name": "provider_id",
-            "in": "path",
+            "name": "type",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "authenticate"
+            },
+            "required": false
+          },
+          {
+            "name": "token",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": ""
+            },
+            "required": false
+          },
+          {
+            "name": "provider_scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "error_redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "after_callback_redirect_url",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "stack_response_mode",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "default": "redirect"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_token",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_phase",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "bot_challenge_unavailable",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          },
+          {
+            "name": "client_id",
+            "in": "query",
             "schema": {
               "type": "string"
             },
             "required": true
           },
           {
-            "name": "user_id",
+            "name": "client_secret",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "redirect_uri",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "scope",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "state",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "grant_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "code_challenge_method",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "response_type",
+            "in": "query",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "provider_id",
             "in": "path",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3388,137 +3293,266 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "account_id": {
-                      "type": "string",
-                      "example": "google-account-id-12345",
-                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                    },
-                    "user_id": {
-                      "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                      "description": "The unique identifier of the OAuth provider"
-                    },
-                    "email": {
-                      "type": "string",
-                      "example": "test@gmail.com",
-                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
-                    },
-                    "provider_config_id": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
-                    },
-                    "type": {
-                      "type": "string",
-                      "example": "google",
-                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
-                    },
-                    "allow_sign_in": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
-                    },
-                    "allow_connected_accounts": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    "location": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "account_id",
-                    "user_id",
-                    "id",
-                    "provider_config_id",
-                    "type",
-                    "allow_sign_in",
-                    "allow_connected_accounts"
+                    "location"
                   ]
                 }
               }
             }
+          },
+          "307": {
+            "description": "Successful response",
+            "content": {
+              "text/plain": {
+                "schema": {
+                  "type": "string"
+                }
+              }
+            }
           }
         }
-      },
-      "delete": {
-        "summary": "Delete an OAuth provider",
-        "description": "Removes an OAuth provider for a given user.",
+      }
+    },
+    "/auth/oauth/cross-domain/authorize": {
+      "post": {
+        "summary": "Create cross-domain auth handoff redirect",
+        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
         "parameters": [
           {
-            "name": "provider_id",
-            "in": "path",
+            "name": "x-stack-publishable-client-key",
+            "in": "header",
             "schema": {
               "type": "string"
             },
             "required": true
           },
           {
-            "name": "user_id",
-            "in": "path",
+            "name": "x-stack-refresh-token",
+            "in": "header",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
-        "tags": [
-          "Oauth"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "redirect_uri": {
+                    "type": "string"
+                  },
+                  "state": {
+                    "type": "string"
+                  },
+                  "code_challenge": {
+                    "type": "string"
+                  },
+                  "code_challenge_method": {
+                    "type": "string",
+                    "default": "S256"
+                  },
+                  "after_callback_redirect_url": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "redirect_uri",
+                  "state",
+                  "code_challenge"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "redirect_url": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "success"
+                    "redirect_url"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "patch": {
-        "summary": "Update an OAuth provider",
-        "description": "Updates an existing OAuth provider. Only the values provided will be updated.",
+      }
+    },
+    "/auth/oauth/token": {
+      "post": {
+        "summary": "OAuth token endpoints",
+        "description": "This endpoint is used to exchange an authorization code or refresh token for an access token.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "grant_type": {
+                    "type": "string"
+                  },
+                  "client_id": {
+                    "type": "string"
+                  },
+                  "client_secret": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "grant_type"
+                ],
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/token",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {}
+              }
+            }
+          }
+        }
+      }
+    },
+    "/oauth-providers": {
+      "get": {
+        "summary": "List OAuth providers",
+        "description": "Retrieves a list of all OAuth providers for a user.",
         "parameters": [
-          {
-            "name": "provider_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
           {
             "name": "user_id",
-            "in": "path",
+            "in": "query",
             "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+              "type": "string"
             },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
+            "required": false
           }
         ],
+        "tags": [
+          "Oauth"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "account_id": {
+                            "type": "string",
+                            "example": "google-account-id-12345",
+                            "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                            "description": "The unique identifier of the OAuth provider"
+                          },
+                          "email": {
+                            "type": "string",
+                            "example": "test@gmail.com",
+                            "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                          },
+                          "provider_config_id": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                          },
+                          "type": {
+                            "type": "string",
+                            "example": "google",
+                            "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                          },
+                          "allow_sign_in": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                          },
+                          "allow_connected_accounts": {
+                            "type": "boolean",
+                            "example": true,
+                            "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                          }
+                        },
+                        "required": [
+                          "account_id",
+                          "user_id",
+                          "id",
+                          "provider_config_id",
+                          "type",
+                          "allow_sign_in",
+                          "allow_connected_accounts"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create an OAuth provider",
+        "description": "Add a new OAuth provider for a user.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -3526,16 +3560,19 @@
               "schema": {
                 "type": "object",
                 "properties": {
+                  "user_id": {
+                    "type": "string",
+                    "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                    "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                  },
+                  "provider_config_id": {
+                    "type": "string"
+                  },
                   "email": {
                     "type": "string",
                     "example": "test@gmail.com",
                     "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
                   },
-                  "account_id": {
-                    "type": "string",
-                    "example": "google-account-id-12345",
-                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
-                  },
                   "allow_sign_in": {
                     "type": "boolean",
                     "example": true,
@@ -3545,13 +3582,26 @@
                     "type": "boolean",
                     "example": true,
                     "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
                   }
                 },
+                "required": [
+                  "user_id",
+                  "provider_config_id",
+                  "allow_sign_in",
+                  "allow_connected_accounts",
+                  "account_id"
+                ],
                 "example": {
+                  "user_id": "3241a285-8329-4d69-8f3d-316e08cf140c",
                   "email": "test@gmail.com",
-                  "account_id": "google-account-id-12345",
                   "allow_sign_in": true,
-                  "allow_connected_accounts": true
+                  "allow_connected_accounts": true,
+                  "account_id": "google-account-id-12345"
                 }
               }
             }
@@ -3560,9 +3610,9 @@
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers",
         "responses": {
-          "200": {
+          "201": {
             "description": "Successful response",
             "content": {
               "application/json": {
@@ -3626,112 +3676,127 @@
         }
       }
     },
-    "/auth/oauth/token": {
-      "post": {
-        "summary": "OAuth token endpoints",
-        "description": "This endpoint is used to exchange an authorization code or refresh token for an access token.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "grant_type": {
-                    "type": "string"
-                  },
-                  "client_id": {
-                    "type": "string"
-                  },
-                  "client_secret": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "grant_type"
-                ],
-                "example": {}
-              }
-            }
+    "/oauth-providers/{user_id}/{provider_id}": {
+      "get": {
+        "summary": "Get an OAuth provider",
+        "description": "Retrieves a specific OAuth provider by the user ID and the OAuth provider ID.",
+        "parameters": [
+          {
+            "name": "provider_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
           }
-        },
+        ],
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/token",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
             "content": {
               "application/json": {
-                "schema": {}
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                    }
+                  },
+                  "required": [
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
+                  ]
+                }
               }
             }
           }
         }
-      }
-    },
-    "/auth/oauth/cross-domain/authorize": {
-      "post": {
-        "summary": "Create cross-domain auth handoff redirect",
-        "description": "Creates a one-time OAuth authorization code redirect for cross-domain sign-in handoff using PKCE.",
+      },
+      "delete": {
+        "summary": "Delete an OAuth provider",
+        "description": "Removes an OAuth provider for a given user.",
         "parameters": [
           {
-            "name": "x-stack-publishable-client-key",
-            "in": "header",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
             "required": true
           },
           {
-            "name": "x-stack-refresh-token",
-            "in": "header",
+            "name": "user_id",
+            "in": "path",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "redirect_uri": {
-                    "type": "string"
-                  },
-                  "state": {
-                    "type": "string"
-                  },
-                  "code_challenge": {
-                    "type": "string"
-                  },
-                  "code_challenge_method": {
-                    "type": "string",
-                    "default": "S256"
-                  },
-                  "after_callback_redirect_url": {
-                    "type": "string"
-                  }
-                },
-                "required": [
-                  "redirect_uri",
-                  "state",
-                  "code_challenge"
-                ],
-                "example": {}
-              }
-            }
-          }
-        },
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/cross-domain/authorize",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3740,185 +3805,87 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "redirect_url": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "redirect_url"
+                    "success"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/auth/oauth/authorize/{provider_id}": {
-      "get": {
-        "summary": "OAuth authorize endpoint",
-        "description": "This endpoint is used to initiate the OAuth authorization flow. there are two purposes for this endpoint: 1. Authenticate a user with an OAuth provider. 2. Link an existing user with an OAuth provider.",
+      },
+      "patch": {
+        "summary": "Update an OAuth provider",
+        "description": "Updates an existing OAuth provider. Only the values provided will be updated.",
         "parameters": [
           {
-            "name": "type",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "default": "authenticate"
-            },
-            "required": false
-          },
-          {
-            "name": "token",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "default": ""
-            },
-            "required": false
-          },
-          {
-            "name": "provider_scope",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "error_redirect_uri",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "after_callback_redirect_url",
-            "in": "query",
+            "name": "provider_id",
+            "in": "path",
             "schema": {
               "type": "string"
             },
-            "required": false
+            "required": true
           },
           {
-            "name": "stack_response_mode",
-            "in": "query",
+            "name": "user_id",
+            "in": "path",
             "schema": {
               "type": "string",
-              "default": "redirect"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_token",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_phase",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "bot_challenge_unavailable",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "client_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "client_secret",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "redirect_uri",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "scope",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "state",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "grant_type",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "code_challenge",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "code_challenge_method",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "response_type",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          },
-          {
-            "name": "provider_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": true
           }
         ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "email": {
+                    "type": "string",
+                    "example": "test@gmail.com",
+                    "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                  },
+                  "account_id": {
+                    "type": "string",
+                    "example": "google-account-id-12345",
+                    "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                  },
+                  "allow_sign_in": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                  },
+                  "allow_connected_accounts": {
+                    "type": "boolean",
+                    "example": true,
+                    "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
+                  }
+                },
+                "example": {
+                  "email": "test@gmail.com",
+                  "account_id": "google-account-id-12345",
+                  "allow_sign_in": true,
+                  "allow_connected_accounts": true
+                }
+              }
+            }
+          }
+        },
         "tags": [
           "Oauth"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/oauth/authorize/{provider_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/oauth-providers/{user_id}/{provider_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -3927,26 +3894,59 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "location": {
-                      "type": "string"
+                    "account_id": {
+                      "type": "string",
+                      "example": "google-account-id-12345",
+                      "description": "Account ID of the OAuth provider. This uniquely identifies the account on the provider side."
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                      "description": "The unique identifier of the OAuth provider"
+                    },
+                    "email": {
+                      "type": "string",
+                      "example": "test@gmail.com",
+                      "description": "Email of the OAuth provider. This is used to display and identify the OAuth provider in the UI."
+                    },
+                    "provider_config_id": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "Provider config ID of the OAuth provider. This uniquely identifies the provider config on config.json file"
+                    },
+                    "type": {
+                      "type": "string",
+                      "example": "google",
+                      "description": "OAuth provider type, one of `google`, `github`, `microsoft`, `spotify`, `facebook`, `discord`, `gitlab`, `bitbucket`, `linkedin`, `apple`, `x`, `twitch`"
+                    },
+                    "allow_sign_in": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider to sign in. Only one OAuth provider per type can have this set to `true`."
+                    },
+                    "allow_connected_accounts": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user can use this OAuth provider as connected account. Multiple OAuth providers per type can have this set to `true`."
                     }
                   },
                   "required": [
-                    "location"
+                    "account_id",
+                    "user_id",
+                    "id",
+                    "provider_config_id",
+                    "type",
+                    "allow_sign_in",
+                    "allow_connected_accounts"
                   ]
                 }
               }
             }
-          },
-          "307": {
-            "description": "Successful response",
-            "content": {
-              "text/plain": {
-                "schema": {
-                  "type": "string"
-                }
-              }
-            }
           }
         }
       }
@@ -4308,10 +4308,10 @@
         }
       }
     },
-    "/auth/otp/send-sign-in-code": {
+    "/auth/mfa/sign-in": {
       "post": {
-        "summary": "Send sign-in code",
-        "description": "Send a code to the user's email address for sign-in.",
+        "summary": "MFA sign in",
+        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4320,33 +4320,25 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "email": {
-                    "type": "string",
-                    "example": "johndoe@example.com",
-                    "description": "The email to sign in with."
-                  },
-                  "callback_url": {
-                    "type": "string",
-                    "example": "https://example.com/handler/magic-link-callback",
-                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
-                  },
-                  "bot_challenge_token": {
+                  "type": {
                     "type": "string"
                   },
-                  "bot_challenge_phase": {
+                  "totp": {
                     "type": "string"
                   },
-                  "bot_challenge_unavailable": {
-                    "type": "string"
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
                   }
                 },
                 "required": [
-                  "email",
-                  "callback_url"
+                  "type",
+                  "totp",
+                  "code"
                 ],
                 "example": {
-                  "email": "johndoe@example.com",
-                  "callback_url": "https://example.com/handler/magic-link-callback"
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
                 }
               }
             }
@@ -4355,7 +4347,7 @@
         "tags": [
           "OTP"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4364,14 +4356,32 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "nonce": {
+                    "refresh_token": {
                       "type": "string",
-                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
+                      "example": "i8ns3aq2...14y",
+                      "description": "Long-lived refresh token that can be used to obtain a new access token"
+                    },
+                    "access_token": {
+                      "type": "string",
+                      "example": "eyJhmMiJB2TO...diI4QT",
+                      "description": "Short-lived access token that can be used to authenticate the user"
+                    },
+                    "is_new_user": {
+                      "type": "boolean",
+                      "example": true,
+                      "description": "Whether the user is a new user"
+                    },
+                    "user_id": {
+                      "type": "string",
+                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                      "description": "The unique identifier of the user"
                     }
                   },
                   "required": [
-                    "nonce"
+                    "refresh_token",
+                    "access_token",
+                    "is_new_user",
+                    "user_id"
                   ]
                 }
               }
@@ -4380,10 +4390,10 @@
         }
       }
     },
-    "/auth/otp/sign-in": {
+    "/auth/otp/send-sign-in-code": {
       "post": {
-        "summary": "Sign in with a code",
-        "description": "",
+        "summary": "Send sign-in code",
+        "description": "Send a code to the user's email address for sign-in.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4392,17 +4402,33 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "email": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                    "example": "johndoe@example.com",
+                    "description": "The email to sign in with."
+                  },
+                  "callback_url": {
+                    "type": "string",
+                    "example": "https://example.com/handler/magic-link-callback",
+                    "description": "The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint."
+                  },
+                  "bot_challenge_token": {
+                    "type": "string"
+                  },
+                  "bot_challenge_phase": {
+                    "type": "string"
+                  },
+                  "bot_challenge_unavailable": {
+                    "type": "string"
+                  }
+                },
+                "required": [
+                  "email",
+                  "callback_url"
+                ],
+                "example": {
+                  "email": "johndoe@example.com",
+                  "callback_url": "https://example.com/handler/magic-link-callback"
                 }
               }
             }
@@ -4411,7 +4437,7 @@
         "tags": [
           "OTP"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/send-sign-in-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4420,32 +4446,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "refresh_token": {
-                      "type": "string",
-                      "example": "i8ns3aq2...14y",
-                      "description": "Long-lived refresh token that can be used to obtain a new access token"
-                    },
-                    "access_token": {
-                      "type": "string",
-                      "example": "eyJhmMiJB2TO...diI4QT",
-                      "description": "Short-lived access token that can be used to authenticate the user"
-                    },
-                    "is_new_user": {
-                      "type": "boolean",
-                      "example": true,
-                      "description": "Whether the user is a new user"
-                    },
-                    "user_id": {
+                    "nonce": {
                       "type": "string",
-                      "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                      "description": "The unique identifier of the user"
+                      "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                      "description": "A token that must be stored temporarily and provided when verifying the 6-digit code"
                     }
                   },
                   "required": [
-                    "refresh_token",
-                    "access_token",
-                    "is_new_user",
-                    "user_id"
+                    "nonce"
                   ]
                 }
               }
@@ -4454,10 +4462,10 @@
         }
       }
     },
-    "/auth/mfa/sign-in": {
+    "/auth/otp/sign-in": {
       "post": {
-        "summary": "MFA sign in",
-        "description": "Complete multi-factor authorization to sign in, with a TOTP and an MFA attempt code",
+        "summary": "Sign in with a code",
+        "description": "",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -4466,21 +4474,13 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "type": {
-                    "type": "string"
-                  },
-                  "totp": {
-                    "type": "string"
-                  },
                   "code": {
                     "type": "string",
                     "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "description": "A 45-character verification code. For magic links, this is the code found in the \"code\" URL query parameter. For OTP, this is formed by concatenating the 6-digit code entered by the user with the nonce (received during code creation)"
                   }
                 },
                 "required": [
-                  "type",
-                  "totp",
                   "code"
                 ],
                 "example": {
@@ -4493,7 +4493,7 @@
         "tags": [
           "OTP"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/mfa/sign-in",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/otp/sign-in",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4590,20 +4590,125 @@
         }
       }
     },
-    "/auth/password/update": {
+    "/auth/password/reset": {
       "post": {
-        "summary": "Update password",
-        "description": "Update the password of the current user, requires the old password",
-        "parameters": [
-          {
-            "name": "x-stack-refresh-token",
-            "in": "header",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
+        "summary": "Reset password with a code",
+        "description": "Reset password with a code",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "password": {
+                    "type": "string"
+                  },
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "password",
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
+        "tags": [
+          "Password"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/reset/check-code": {
+      "post": {
+        "summary": "Check reset password code",
+        "description": "Check if a reset password code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
           }
+        },
+        "tags": [
+          "Password"
         ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "is_code_valid": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "is_code_valid"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/auth/password/send-reset-code": {
+      "post": {
+        "summary": "Send reset password code",
+        "description": "Send a code to the user's email address for resetting the password.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -4611,16 +4716,16 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "old_password": {
+                  "email": {
                     "type": "string"
                   },
-                  "new_password": {
+                  "callback_url": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "old_password",
-                  "new_password"
+                  "email",
+                  "callback_url"
                 ],
                 "example": {}
               }
@@ -4630,7 +4735,7 @@
         "tags": [
           "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4640,9 +4745,7 @@
                   "type": "object",
                   "properties": {
                     "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                      "type": "string"
                     }
                   },
                   "required": [
@@ -4850,11 +4953,20 @@
         }
       }
     },
-    "/auth/password/send-reset-code": {
+    "/auth/password/update": {
       "post": {
-        "summary": "Send reset password code",
-        "description": "Send a code to the user's email address for resetting the password.",
-        "parameters": [],
+        "summary": "Update password",
+        "description": "Update the password of the current user, requires the old password",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": false
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -4862,16 +4974,16 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "email": {
+                  "old_password": {
                     "type": "string"
                   },
-                  "callback_url": {
+                  "new_password": {
                     "type": "string"
                   }
                 },
                 "required": [
-                  "email",
-                  "callback_url"
+                  "old_password",
+                  "new_password"
                 ],
                 "example": {}
               }
@@ -4881,7 +4993,7 @@
         "tags": [
           "Password"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/send-reset-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/update",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4891,7 +5003,9 @@
                   "type": "object",
                   "properties": {
                     "success": {
-                      "type": "string"
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
@@ -4904,42 +5018,49 @@
         }
       }
     },
-    "/auth/password/reset": {
-      "post": {
-        "summary": "Reset password with a code",
-        "description": "Reset password with a code",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "password": {
-                    "type": "string"
-                  },
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "password",
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
+    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
+      "get": {
+        "summary": "Get Item",
+        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
+        "parameters": [
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to retrieve"
+            },
+            "description": "The ID of the item to retrieve",
+            "required": true
           }
-        },
+        ],
         "tags": [
-          "Password"
+          "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -4948,14 +5069,26 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "id": {
+                      "type": "string",
+                      "example": "credits",
+                      "description": "The ID of the item"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "API Credits",
+                      "description": "The human-readable name of the item"
+                    },
+                    "quantity": {
+                      "type": "number",
+                      "example": 1000,
+                      "description": "The current quantity of the item (can be negative)"
                     }
                   },
                   "required": [
-                    "success"
+                    "id",
+                    "display_name",
+                    "quantity"
                   ]
                 }
               }
@@ -4964,11 +5097,56 @@
         }
       }
     },
-    "/auth/password/reset/check-code": {
+    "/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity": {
       "post": {
-        "summary": "Check reset password code",
-        "description": "Check if a reset password code is valid without using it",
-        "parameters": [],
+        "summary": "Update Item Quantity",
+        "description": "Updates the quantity of an item for a customer. Can increase or decrease quantities, with optional expiration and negative balance control.",
+        "parameters": [
+          {
+            "name": "allow_negative",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "false",
+              "description": "Whether to allow the quantity to go negative"
+            },
+            "description": "Whether to allow the quantity to go negative",
+            "required": true
+          },
+          {
+            "name": "customer_type",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user",
+              "description": "The type of customer"
+            },
+            "description": "The type of customer",
+            "required": true
+          },
+          {
+            "name": "customer_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "user_1234567890abcdef",
+              "description": "The ID of the customer"
+            },
+            "description": "The ID of the customer",
+            "required": true
+          },
+          {
+            "name": "item_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "credits",
+              "description": "The ID of the item to update"
+            },
+            "description": "The ID of the item to update",
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -4976,26 +5154,38 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "delta": {
+                    "type": "number",
+                    "example": 100,
+                    "description": "The amount to change the quantity by (positive to increase, negative to decrease)"
+                  },
+                  "expires_at": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "2024-12-31T23:59:59Z",
+                    "description": "Optional expiration date for this quantity change (ISO 8601 format)"
+                  },
+                  "description": {
+                    "type": "string",
+                    "example": "Monthly subscription renewal",
+                    "description": "Optional description for this quantity change"
                   }
                 },
                 "required": [
-                  "code"
+                  "delta"
                 ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "delta": 100,
+                  "expires_at": "2024-12-31T23:59:59Z",
+                  "description": "Monthly subscription renewal"
                 }
               }
             }
           }
         },
         "tags": [
-          "Password"
+          "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/password/reset/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5003,14 +5193,7 @@
               "application/json": {
                 "schema": {
                   "type": "object",
-                  "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "is_code_valid"
-                  ]
+                  "properties": {}
                 }
               }
             }
@@ -5018,10 +5201,10 @@
         }
       }
     },
-    "/payments/purchases/validate-code": {
+    "/payments/purchases/create-purchase-url": {
       "post": {
-        "summary": "Validate Purchase Code",
-        "description": "Validates a purchase verification code and returns purchase details including available prices.",
+        "summary": "Create Purchase URL",
+        "description": "Creates a secure checkout URL for purchasing a product.",
         "parameters": [],
         "requestBody": {
           "required": true,
@@ -5030,243 +5213,12 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "full_code": {
+                  "customer_type": {
                     "type": "string",
-                    "example": "proj_abc123_def456ghi789",
-                    "description": "The verification code, given as a query parameter in the purchase URL"
+                    "example": "user",
+                    "description": "The type of customer making the purchase"
                   },
-                  "return_url": {
-                    "type": "string",
-                    "example": "https://myapp.com/purchase-success",
-                    "description": "URL to redirect to after purchase completion"
-                  }
-                },
-                "required": [
-                  "full_code"
-                ],
-                "example": {
-                  "full_code": "proj_abc123_def456ghi789",
-                  "return_url": "https://myapp.com/purchase-success"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "product": {
-                      "type": "object",
-                      "properties": {
-                        "display_name": {
-                          "type": "string"
-                        },
-                        "customer_type": {
-                          "type": "string"
-                        },
-                        "free_trial": {
-                          "type": "array",
-                          "items": {
-                            "type": "number"
-                          }
-                        },
-                        "server_only": {
-                          "type": "boolean",
-                          "default": true
-                        },
-                        "stackable": {
-                          "type": "boolean",
-                          "default": false
-                        },
-                        "prices": {
-                          "type": "object",
-                          "properties": {},
-                          "required": []
-                        },
-                        "included_items": {
-                          "type": "object",
-                          "properties": {},
-                          "required": []
-                        },
-                        "client_metadata": {
-                          "type": "object",
-                          "example": {
-                            "featureFlag": true,
-                            "source": "marketing-campaign"
-                          },
-                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                        },
-                        "client_read_only_metadata": {
-                          "type": "object",
-                          "example": {
-                            "featureFlag": true,
-                            "source": "marketing-campaign"
-                          },
-                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                        },
-                        "server_metadata": {
-                          "type": "object",
-                          "example": {
-                            "featureFlag": true,
-                            "source": "marketing-campaign"
-                          },
-                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
-                        }
-                      },
-                      "required": [
-                        "display_name",
-                        "customer_type"
-                      ]
-                    },
-                    "stripe_account_id": {
-                      "type": "string"
-                    },
-                    "project_id": {
-                      "type": "string"
-                    },
-                    "project_logo_url": {
-                      "type": "string"
-                    },
-                    "already_bought_non_stackable": {
-                      "type": "boolean"
-                    },
-                    "conflicting_products": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "product_id": {
-                            "type": "string"
-                          },
-                          "display_name": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "product_id",
-                          "display_name"
-                        ]
-                      }
-                    },
-                    "test_mode": {
-                      "type": "boolean"
-                    },
-                    "charges_enabled": {
-                      "type": "boolean"
-                    }
-                  },
-                  "required": [
-                    "stripe_account_id",
-                    "project_id",
-                    "already_bought_non_stackable",
-                    "conflicting_products",
-                    "test_mode",
-                    "charges_enabled"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/payments/purchases/purchase-session": {
-      "post": {
-        "summary": "Create Purchase Session",
-        "description": "Creates a purchase session for completing a purchase.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "full_code": {
-                    "type": "string",
-                    "example": "proj_abc123_def456ghi789",
-                    "description": "The verification code, given as a query parameter in the purchase URL"
-                  },
-                  "price_id": {
-                    "type": "string",
-                    "example": "price_1234567890abcdef",
-                    "description": "The Stack auth price ID to purchase"
-                  },
-                  "quantity": {
-                    "type": "number",
-                    "example": 1,
-                    "description": "The quantity to purchase",
-                    "default": 1
-                  }
-                },
-                "required": [
-                  "full_code",
-                  "price_id"
-                ],
-                "example": {
-                  "full_code": "proj_abc123_def456ghi789",
-                  "price_id": "price_1234567890abcdef",
-                  "quantity": 1
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Payments"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "client_secret": {
-                      "type": "string",
-                      "example": "1234567890abcdef_secret_xyz123",
-                      "description": "The Stripe client secret for completing the payment"
-                    }
-                  },
-                  "required": [
-                    "client_secret"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/payments/purchases/create-purchase-url": {
-      "post": {
-        "summary": "Create Purchase URL",
-        "description": "Creates a secure checkout URL for purchasing a product.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "customer_type": {
-                    "type": "string",
-                    "example": "user",
-                    "description": "The type of customer making the purchase"
-                  },
-                  "customer_id": {
+                  "customer_id": {
                     "type": "string",
                     "example": "user_1234567890abcdef",
                     "description": "The ID of the customer (user ID, team ID, or custom customer ID)"
@@ -5387,49 +5339,52 @@
         }
       }
     },
-    "/payments/items/{customer_type}/{customer_id}/{item_id}": {
-      "get": {
-        "summary": "Get Item",
-        "description": "Retrieves information about a specific item (credits, quotas, etc.) for a customer.",
-        "parameters": [
-          {
-            "name": "customer_type",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user",
-              "description": "The type of customer"
-            },
-            "description": "The type of customer",
-            "required": true
-          },
-          {
-            "name": "customer_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user_1234567890abcdef",
-              "description": "The ID of the customer"
-            },
-            "description": "The ID of the customer",
-            "required": true
-          },
-          {
-            "name": "item_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "credits",
-              "description": "The ID of the item to retrieve"
-            },
-            "description": "The ID of the item to retrieve",
-            "required": true
+    "/payments/purchases/purchase-session": {
+      "post": {
+        "summary": "Create Purchase Session",
+        "description": "Creates a purchase session for completing a purchase.",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "full_code": {
+                    "type": "string",
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
+                  },
+                  "price_id": {
+                    "type": "string",
+                    "example": "price_1234567890abcdef",
+                    "description": "The Stack auth price ID to purchase"
+                  },
+                  "quantity": {
+                    "type": "number",
+                    "example": 1,
+                    "description": "The quantity to purchase",
+                    "default": 1
+                  }
+                },
+                "required": [
+                  "full_code",
+                  "price_id"
+                ],
+                "example": {
+                  "full_code": "proj_abc123_def456ghi789",
+                  "price_id": "price_1234567890abcdef",
+                  "quantity": 1
+                }
+              }
+            }
           }
-        ],
+        },
         "tags": [
           "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/purchase-session",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5438,26 +5393,14 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "id": {
-                      "type": "string",
-                      "example": "credits",
-                      "description": "The ID of the item"
-                    },
-                    "display_name": {
+                    "client_secret": {
                       "type": "string",
-                      "example": "API Credits",
-                      "description": "The human-readable name of the item"
-                    },
-                    "quantity": {
-                      "type": "number",
-                      "example": 1000,
-                      "description": "The current quantity of the item (can be negative)"
-                    }
+                      "example": "1234567890abcdef_secret_xyz123",
+                      "description": "The Stripe client secret for completing the payment"
+                    }
                   },
                   "required": [
-                    "id",
-                    "display_name",
-                    "quantity"
+                    "client_secret"
                   ]
                 }
               }
@@ -5466,56 +5409,11 @@
         }
       }
     },
-    "/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity": {
+    "/payments/purchases/validate-code": {
       "post": {
-        "summary": "Update Item Quantity",
-        "description": "Updates the quantity of an item for a customer. Can increase or decrease quantities, with optional expiration and negative balance control.",
-        "parameters": [
-          {
-            "name": "allow_negative",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "false",
-              "description": "Whether to allow the quantity to go negative"
-            },
-            "description": "Whether to allow the quantity to go negative",
-            "required": true
-          },
-          {
-            "name": "customer_type",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user",
-              "description": "The type of customer"
-            },
-            "description": "The type of customer",
-            "required": true
-          },
-          {
-            "name": "customer_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "user_1234567890abcdef",
-              "description": "The ID of the customer"
-            },
-            "description": "The ID of the customer",
-            "required": true
-          },
-          {
-            "name": "item_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "credits",
-              "description": "The ID of the item to update"
-            },
-            "description": "The ID of the item to update",
-            "required": true
-          }
-        ],
+        "summary": "Validate Purchase Code",
+        "description": "Validates a purchase verification code and returns purchase details including available prices.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -5523,29 +5421,23 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "delta": {
-                    "type": "number",
-                    "example": 100,
-                    "description": "The amount to change the quantity by (positive to increase, negative to decrease)"
-                  },
-                  "expires_at": {
+                  "full_code": {
                     "type": "string",
-                    "example": "2024-12-31T23:59:59Z",
-                    "description": "Optional expiration date for this quantity change (ISO 8601 format)"
+                    "example": "proj_abc123_def456ghi789",
+                    "description": "The verification code, given as a query parameter in the purchase URL"
                   },
-                  "description": {
+                  "return_url": {
                     "type": "string",
-                    "example": "Monthly subscription renewal",
-                    "description": "Optional description for this quantity change"
+                    "example": "https://myapp.com/purchase-success",
+                    "description": "URL to redirect to after purchase completion"
                   }
                 },
                 "required": [
-                  "delta"
+                  "full_code"
                 ],
                 "example": {
-                  "delta": 100,
-                  "expires_at": "2024-12-31T23:59:59Z",
-                  "description": "Monthly subscription renewal"
+                  "full_code": "proj_abc123_def456ghi789",
+                  "return_url": "https://myapp.com/purchase-success"
                 }
               }
             }
@@ -5554,7 +5446,7 @@
         "tags": [
           "Payments"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/payments/items/{customer_type}/{customer_id}/{item_id}/update-quantity",
+        "x-full-url": "https://api.stack-auth.com/api/v1/payments/purchases/validate-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5562,7 +5454,115 @@
               "application/json": {
                 "schema": {
                   "type": "object",
-                  "properties": {}
+                  "properties": {
+                    "product": {
+                      "type": "object",
+                      "properties": {
+                        "display_name": {
+                          "type": "string"
+                        },
+                        "customer_type": {
+                          "type": "string"
+                        },
+                        "free_trial": {
+                          "type": "array",
+                          "items": {
+                            "type": "number"
+                          }
+                        },
+                        "server_only": {
+                          "type": "boolean",
+                          "default": true
+                        },
+                        "stackable": {
+                          "type": "boolean",
+                          "default": false
+                        },
+                        "prices": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "included_items": {
+                          "type": "object",
+                          "properties": {},
+                          "required": []
+                        },
+                        "client_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                        },
+                        "client_read_only_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                        },
+                        "server_metadata": {
+                          "type": "object",
+                          "example": {
+                            "featureFlag": true,
+                            "source": "marketing-campaign"
+                          },
+                          "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the product here."
+                        }
+                      },
+                      "required": [
+                        "display_name",
+                        "customer_type"
+                      ]
+                    },
+                    "stripe_account_id": {
+                      "type": "string"
+                    },
+                    "project_id": {
+                      "type": "string"
+                    },
+                    "project_logo_url": {
+                      "type": "string"
+                    },
+                    "already_bought_non_stackable": {
+                      "type": "boolean"
+                    },
+                    "conflicting_products": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "product_id": {
+                            "type": "string"
+                          },
+                          "display_name": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "product_id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "test_mode": {
+                      "type": "boolean"
+                    },
+                    "charges_enabled": {
+                      "type": "boolean"
+                    }
+                  },
+                  "required": [
+                    "stripe_account_id",
+                    "project_id",
+                    "already_bought_non_stackable",
+                    "conflicting_products",
+                    "test_mode",
+                    "charges_enabled"
+                  ]
                 }
               }
             }
@@ -5570,22 +5570,11 @@
         }
       }
     },
-    "/team-permissions": {
+    "/project-permissions": {
       "get": {
-        "summary": "List team permissions of a user",
-        "description": "Query and filter the permission with `team_id`, `user_id`, and `permission_id`. Note that this might contain the permissions with the same permission ID across different teams and users. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
+        "summary": "List project permissions",
+        "description": "Query and filter the permission with `user_id` and `permission_id`. `(user_id, permission_id)` together uniquely identify a permission.",
         "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
-              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
-            },
-            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
-            "required": false
-          },
           {
             "name": "user_id",
             "in": "query",
@@ -5623,7 +5612,7 @@
         "tags": [
           "Permissions"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
+        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -5646,17 +5635,11 @@
                             "type": "string",
                             "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
                             "description": "The unique identifier of the user"
-                          },
-                          "team_id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
                           }
                         },
                         "required": [
                           "id",
-                          "user_id",
-                          "team_id"
+                          "user_id"
                         ]
                       }
                     },
@@ -5682,126 +5665,31 @@
         }
       }
     },
-    "/project-permissions": {
-      "get": {
-        "summary": "List project permissions",
-        "description": "Query and filter the permission with `user_id` and `permission_id`. `(user_id, permission_id)` together uniquely identify a permission.",
+    "/project-permissions/{user_id}/{permission_id}": {
+      "post": {
+        "summary": "Grant a global permission to a user",
+        "description": "Grant a global permission to a user (the permission must be created first on the Stack dashboard)",
         "parameters": [
           {
             "name": "user_id",
-            "in": "query",
+            "in": "path",
             "schema": {
               "type": "string",
-              "example": "me",
-              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
             },
-            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": false
           },
           {
             "name": "permission_id",
-            "in": "query",
+            "in": "path",
             "schema": {
               "type": "string",
-              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
-              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+              "example": "read_secret_info",
+              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
             },
-            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
-            "required": false
-          },
-          {
-            "name": "recursive",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "true",
-              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
-            },
-            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Permissions"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/project-permissions",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string",
-                            "example": "read_secret_info",
-                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The unique identifier of the user"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "user_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/project-permissions/{user_id}/{permission_id}": {
-      "post": {
-        "summary": "Grant a global permission to a user",
-        "description": "Grant a global permission to a user (the permission must be created first on the Stack dashboard)",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": false
-          },
-          {
-            "name": "permission_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "read_secret_info",
-              "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
-            },
-            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
+            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`",
             "required": false
           }
         ],
@@ -5905,6 +5793,118 @@
         }
       }
     },
+    "/team-permissions": {
+      "get": {
+        "summary": "List team permissions of a user",
+        "description": "Query and filter the permission with `team_id`, `user_id`, and `permission_id`. Note that this might contain the permissions with the same permission ID across different teams and users. `(team_id, user_id, permission_id)` together uniquely identify a permission.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "cce084a3-28b7-418e-913e-c8ee6d802ea4",
+              "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned."
+            },
+            "description": "Filter with the team ID. If set, only the permissions of the members in a specific team will be returned.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`"
+            },
+            "description": "Filter with the user ID. If set, only the permissions this user has will be returned. Client request must set `user_id=me`",
+            "required": false
+          },
+          {
+            "name": "permission_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "16399452-c4f3-4554-8e44-c2d67bb60360",
+              "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned"
+            },
+            "description": "Filter with the permission ID. If set, only the permissions with this specific ID will be returned",
+            "required": false
+          },
+          {
+            "name": "recursive",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "true",
+              "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed."
+            },
+            "description": "Whether to list permissions recursively. If set to `false`, only the permission the users directly have will be listed. If set to `true` all the direct and indirect permissions will be listed.",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Permissions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-permissions",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string",
+                            "example": "read_secret_info",
+                            "description": "The permission ID used to uniquely identify a permission. Can either be a custom permission with lowercase letters, numbers, `:`, and `_` characters, or one of the system permissions: `$update_team`, `$delete_team`, `$read_members`, `$remove_members`, `$invite_members`, `$manage_api_keys`"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "user_id",
+                          "team_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/team-permissions/{team_id}/{user_id}/{permission_id}": {
       "post": {
         "summary": "Grant a team permission to a user",
@@ -6302,6 +6302,46 @@
         }
       }
     },
+    "/auth/sessions/current/refresh": {
+      "post": {
+        "summary": "Refresh access token",
+        "description": "Get a new access token using a refresh token",
+        "parameters": [
+          {
+            "name": "x-stack-refresh-token",
+            "in": "header",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Sessions"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "access_token": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "access_token"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     "/auth/sessions/{id}": {
       "delete": {
         "summary": "Delete session",
@@ -6355,24 +6395,36 @@
         }
       }
     },
-    "/auth/sessions/current/refresh": {
-      "post": {
-        "summary": "Refresh access token",
-        "description": "Get a new access token using a refresh token",
+    "/team-invitations": {
+      "get": {
+        "summary": "List team invitations",
+        "description": "",
         "parameters": [
           {
-            "name": "x-stack-refresh-token",
-            "in": "header",
+            "name": "team_id",
+            "in": "query",
             "schema": {
-              "type": "string"
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
             },
-            "required": true
-          }
-        ],
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
+            },
+            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
+            "required": false
+          }
+        ],
         "tags": [
-          "Sessions"
+          "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/auth/sessions/current/refresh",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6381,12 +6433,52 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "access_token": {
-                      "type": "string"
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "id": {
+                            "type": "string"
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "team_display_name": {
+                            "type": "string"
+                          },
+                          "expires_at_millis": {
+                            "type": "number"
+                          },
+                          "recipient_email": {
+                            "type": "string"
+                          }
+                        },
+                        "required": [
+                          "id",
+                          "team_id",
+                          "team_display_name",
+                          "expires_at_millis",
+                          "recipient_email"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "access_token"
+                    "items"
                   ]
                 }
               }
@@ -6395,32 +6487,85 @@
         }
       }
     },
-    "/team-member-profiles": {
-      "get": {
-        "summary": "List team members profiles",
-        "description": "List team members profiles and filter by team ID and user ID",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
-          },
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string"
-            },
-            "required": false
+    "/team-invitations/accept": {
+      "post": {
+        "summary": "Accept the team invitation",
+        "description": "Accept invitation and add user to the team",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
           }
+        },
+        "tags": [
+          "Teams"
         ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/accept/check-code": {
+      "post": {
+        "summary": "Check if a team invitation code is valid",
+        "description": "Check if a team invitation code is valid without using it",
+        "parameters": [],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {
+                  "code": {
+                    "type": "string",
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
+                  }
+                },
+                "required": [
+                  "code"
+                ],
+                "example": {
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                }
+              }
+            }
+          }
+        },
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -6429,728 +6574,25 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "user": {
-                            "type": "object",
-                            "properties": {
-                              "id": {
-                                "type": "string",
-                                "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                                "description": "The unique identifier of the user"
-                              },
-                              "primary_email": {
-                                "type": "string",
-                                "example": "johndoe@example.com",
-                                "description": "Primary email"
-                              },
-                              "primary_email_verified": {
-                                "type": "boolean",
-                                "example": true,
-                                "description": "Whether the primary email has been verified to belong to this user"
-                              },
-                              "primary_email_auth_enabled": {
-                                "type": "boolean",
-                                "example": true,
-                                "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
-                              },
-                              "display_name": {
-                                "type": "string",
-                                "example": "John Doe",
-                                "description": "Human-readable user display name. This is not a unique identifier."
-                              },
-                              "selected_team": {
-                                "type": "object",
-                                "properties": {
-                                  "created_at_millis": {
-                                    "type": "number",
-                                    "example": 1630000000000,
-                                    "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                                  },
-                                  "server_metadata": {
-                                    "type": "object",
-                                    "example": {
-                                      "key": "value"
-                                    },
-                                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                                  },
-                                  "id": {
-                                    "type": "string",
-                                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                                    "description": "The unique identifier of the team"
-                                  },
-                                  "display_name": {
-                                    "type": "string",
-                                    "example": "My Team",
-                                    "description": "Human-readable team display name. This is not a unique identifier."
-                                  },
-                                  "profile_image_url": {
-                                    "type": "string",
-                                    "example": "https://example.com/image.jpg",
-                                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                                  },
-                                  "client_metadata": {
-                                    "type": "object",
-                                    "example": {
-                                      "key": "value"
-                                    },
-                                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                                  },
-                                  "client_read_only_metadata": {
-                                    "type": "object",
-                                    "example": {
-                                      "key": "value"
-                                    },
-                                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                                  }
-                                },
-                                "required": [
-                                  "created_at_millis",
-                                  "id",
-                                  "display_name"
-                                ]
-                              },
-                              "selected_team_id": {
-                                "type": "string",
-                                "example": "team-id",
-                                "description": "ID of the team currently selected by the user"
-                              },
-                              "profile_image_url": {
-                                "type": "string",
-                                "example": "https://example.com/image.jpg",
-                                "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                              },
-                              "signed_up_at_millis": {
-                                "type": "number",
-                                "example": 1630000000000,
-                                "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
-                              },
-                              "client_metadata": {
-                                "type": "object",
-                                "example": {
-                                  "key": "value"
-                                },
-                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                              },
-                              "client_read_only_metadata": {
-                                "type": "object",
-                                "example": {
-                                  "key": "value"
-                                },
-                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                              },
-                              "server_metadata": {
-                                "type": "object",
-                                "example": {
-                                  "key": "value"
-                                },
-                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
-                              },
-                              "last_active_at_millis": {
-                                "type": "number",
-                                "example": 1630000000000,
-                                "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
-                              },
-                              "is_anonymous": {
-                                "type": "boolean"
-                              },
-                              "is_restricted": {
-                                "type": "boolean",
-                                "example": false,
-                                "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
-                              },
-                              "restricted_reason": {
-                                "type": "object",
-                                "properties": {
-                                  "type": {
-                                    "type": "string"
-                                  }
-                                },
-                                "required": [
-                                  "type"
-                                ],
-                                "example": null,
-                                "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
-                              },
-                              "restricted_by_admin": {
-                                "type": "boolean",
-                                "example": false,
-                                "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
-                              },
-                              "restricted_by_admin_reason": {
-                                "type": "string",
-                                "example": null,
-                                "description": "Public reason shown to the user explaining why they are restricted. Optional."
-                              },
-                              "restricted_by_admin_private_details": {
-                                "type": "string",
-                                "example": null,
-                                "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
-                              },
-                              "country_code": {
-                                "type": "string",
-                                "example": "US",
-                                "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
-                              },
-                              "risk_scores": {
-                                "type": "object",
-                                "properties": {
-                                  "sign_up": {
-                                    "type": "object",
-                                    "properties": {
-                                      "bot": {
-                                        "type": "number"
-                                      },
-                                      "free_trial_abuse": {
-                                        "type": "number"
-                                      }
-                                    },
-                                    "required": [
-                                      "bot",
-                                      "free_trial_abuse"
-                                    ]
-                                  }
-                                },
-                                "required": [
-                                  "sign_up"
-                                ],
-                                "example": {
-                                  "sign_up": {
-                                    "bot": 0,
-                                    "free_trial_abuse": 0
-                                  }
-                                },
-                                "description": "User risk scores used for sign-up risk evaluation."
-                              }
-                            },
-                            "required": [
-                              "id",
-                              "primary_email_verified",
-                              "primary_email_auth_enabled",
-                              "signed_up_at_millis",
-                              "last_active_at_millis",
-                              "is_anonymous",
-                              "is_restricted",
-                              "restricted_by_admin",
-                              "risk_scores"
-                            ]
-                          },
-                          "team_id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          },
-                          "user_id": {
-                            "type": "string",
-                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-                            "description": "The unique identifier of the user"
-                          },
-                          "display_name": {
-                            "type": "string",
-                            "example": "John Doe",
-                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
-                          },
-                          "profile_image_url": {
-                            "type": "string",
-                            "example": "https://example.com/image.jpg",
-                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                          }
-                        },
-                        "required": [
-                          "user",
-                          "team_id",
-                          "user_id"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/teams": {
-      "get": {
-        "summary": "List teams",
-        "description": "List all the teams in the project.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "me",
-              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
-            },
-            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "created_at_millis": {
-                            "type": "number",
-                            "example": 1630000000000,
-                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                          },
-                          "server_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                          },
-                          "id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          },
-                          "display_name": {
-                            "type": "string",
-                            "example": "My Team",
-                            "description": "Human-readable team display name. This is not a unique identifier."
-                          },
-                          "profile_image_url": {
-                            "type": "string",
-                            "example": "https://example.com/image.jpg",
-                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                          },
-                          "client_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                          },
-                          "client_read_only_metadata": {
-                            "type": "object",
-                            "example": {
-                              "key": "value"
-                            },
-                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                          }
-                        },
-                        "required": [
-                          "created_at_millis",
-                          "id",
-                          "display_name"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "post": {
-        "summary": "Create a team",
-        "description": "Create a new team and optionally add the current user as a member.",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "display_name": {
-                    "type": "string",
-                    "example": "My Team",
-                    "description": "Human-readable team display name. This is not a unique identifier."
-                  },
-                  "creator_user_id": {
-                    "type": "string",
-                    "example": "me",
-                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
-                  },
-                  "client_read_only_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                  },
-                  "server_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                  },
-                  "profile_image_url": {
-                    "type": "string",
-                    "example": "https://example.com/image.jpg",
-                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                  },
-                  "client_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                  }
-                },
-                "required": [
-                  "display_name"
-                ],
-                "example": {
-                  "display_name": "My Team",
-                  "creator_user_id": "me",
-                  "client_read_only_metadata": {
-                    "key": "value"
-                  },
-                  "server_metadata": {
-                    "key": "value"
-                  },
-                  "profile_image_url": "https://example.com/image.jpg",
-                  "client_metadata": {
-                    "key": "value"
-                  }
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
-        "responses": {
-          "201": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "created_at_millis": {
-                      "type": "number",
-                      "example": 1630000000000,
-                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                    },
-                    "server_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                    }
-                  },
-                  "required": [
-                    "created_at_millis",
-                    "id",
-                    "display_name"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/team-invitations": {
-      "get": {
-        "summary": "List team invitations",
-        "description": "",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "The team ID to list invitations for. Required unless user_id is provided."
-            },
-            "description": "The team ID to list invitations for. Required unless user_id is provided.",
-            "required": false
-          },
-          {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id."
-            },
-            "description": "List invitations sent to this user's verified emails. Must be \"me\" for client access. Cannot be combined with team_id.",
-            "required": false
-          }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "items": {
-                      "type": "array",
-                      "items": {
-                        "type": "object",
-                        "properties": {
-                          "id": {
-                            "type": "string"
-                          },
-                          "team_id": {
-                            "type": "string",
-                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                            "description": "The unique identifier of the team"
-                          },
-                          "team_display_name": {
-                            "type": "string"
-                          },
-                          "expires_at_millis": {
-                            "type": "number"
-                          },
-                          "recipient_email": {
-                            "type": "string"
-                          }
-                        },
-                        "required": [
-                          "id",
-                          "team_id",
-                          "team_display_name",
-                          "expires_at_millis",
-                          "recipient_email"
-                        ]
-                      }
-                    },
-                    "pagination": {
-                      "type": "object",
-                      "properties": {
-                        "next_cursor": {
-                          "type": "string",
-                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
-                          "description": "The cursor to fetch the next page of results. null if there is no next page."
-                        }
-                      },
-                      "required": []
-                    }
-                  },
-                  "required": [
-                    "items"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/teams/{team_id}": {
-      "get": {
-        "summary": "Get a team",
-        "description": "Get a team by ID.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "created_at_millis": {
-                      "type": "number",
-                      "example": 1630000000000,
-                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                    },
-                    "server_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
-                    },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                    }
-                  },
-                  "required": [
-                    "created_at_millis",
-                    "id",
-                    "display_name"
-                  ]
-                }
-              }
-            }
-          }
-        }
-      },
-      "delete": {
-        "summary": "Delete a team",
-        "description": "Delete a team by ID.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "is_code_valid": {
+                      "type": "boolean"
                     }
                   },
                   "required": [
-                    "success"
+                    "is_code_valid"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "patch": {
-        "summary": "Update a team",
-        "description": "Update the team information by ID.",
-        "parameters": [
-          {
-            "name": "team_id",
-            "in": "path",
-            "schema": {
-              "type": "string"
-            },
-            "required": true
-          }
-        ],
+      }
+    },
+    "/team-invitations/accept/details": {
+      "post": {
+        "summary": "Get team invitation details",
+        "description": "Get additional information about a team invitation code",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -7158,50 +6600,17 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "client_read_only_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
-                  },
-                  "server_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                  },
-                  "display_name": {
-                    "type": "string",
-                    "example": "My Team",
-                    "description": "Human-readable team display name. This is not a unique identifier."
-                  },
-                  "profile_image_url": {
+                  "code": {
                     "type": "string",
-                    "example": "https://example.com/image.jpg",
-                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                  },
-                  "client_metadata": {
-                    "type": "object",
-                    "example": {
-                      "key": "value"
-                    },
-                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
+                    "description": "A 45 character code"
                   }
                 },
+                "required": [
+                  "code"
+                ],
                 "example": {
-                  "client_read_only_metadata": {
-                    "key": "value"
-                  },
-                  "server_metadata": {
-                    "key": "value"
-                  },
-                  "display_name": "My Team",
-                  "profile_image_url": "https://example.com/image.jpg",
-                  "client_metadata": {
-                    "key": "value"
-                  }
+                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
                 }
               }
             }
@@ -7210,7 +6619,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7219,52 +6628,16 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "created_at_millis": {
-                      "type": "number",
-                      "example": 1630000000000,
-                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
-                    },
-                    "server_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
-                    },
-                    "id": {
-                      "type": "string",
-                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
-                      "description": "The unique identifier of the team"
-                    },
-                    "display_name": {
-                      "type": "string",
-                      "example": "My Team",
-                      "description": "Human-readable team display name. This is not a unique identifier."
-                    },
-                    "profile_image_url": {
-                      "type": "string",
-                      "example": "https://example.com/image.jpg",
-                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
-                    },
-                    "client_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    "team_id": {
+                      "type": "string"
                     },
-                    "client_read_only_metadata": {
-                      "type": "object",
-                      "example": {
-                        "key": "value"
-                      },
-                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                    "team_display_name": {
+                      "type": "string"
                     }
                   },
                   "required": [
-                    "created_at_millis",
-                    "id",
-                    "display_name"
+                    "team_id",
+                    "team_display_name"
                   ]
                 }
               }
@@ -7351,28 +6724,122 @@
         "description": "",
         "parameters": [
           {
-            "name": "team_id",
+            "name": "team_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "description": "The team ID to list invitations for. Required unless user_id is provided."
+            },
+            "description": "The team ID to list invitations for. Required unless user_id is provided.",
+            "required": false
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-invitations/{id}/accept": {
+      "post": {
+        "summary": "Accept a team invitation by ID",
+        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          },
+          {
+            "name": "id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {}
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/team-member-profiles": {
+      "get": {
+        "summary": "List team members profiles",
+        "description": "List team members profiles and filter by team ID and user ID",
+        "parameters": [
+          {
+            "name": "user_id",
             "in": "query",
             "schema": {
-              "type": "string",
-              "description": "The team ID to list invitations for. Required unless user_id is provided."
+              "type": "string"
             },
-            "description": "The team ID to list invitations for. Required unless user_id is provided.",
             "required": false
           },
           {
-            "name": "id",
-            "in": "path",
+            "name": "team_id",
+            "in": "query",
             "schema": {
               "type": "string"
             },
-            "required": true
+            "required": false
           }
         ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-member-profiles",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -7381,14 +6848,257 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "user": {
+                            "type": "object",
+                            "properties": {
+                              "id": {
+                                "type": "string",
+                                "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                                "description": "The unique identifier of the user"
+                              },
+                              "primary_email": {
+                                "type": "string",
+                                "example": "johndoe@example.com",
+                                "description": "Primary email"
+                              },
+                              "primary_email_verified": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email has been verified to belong to this user"
+                              },
+                              "primary_email_auth_enabled": {
+                                "type": "boolean",
+                                "example": true,
+                                "description": "Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP"
+                              },
+                              "display_name": {
+                                "type": "string",
+                                "example": "John Doe",
+                                "description": "Human-readable user display name. This is not a unique identifier."
+                              },
+                              "selected_team": {
+                                "type": "object",
+                                "properties": {
+                                  "created_at_millis": {
+                                    "type": "number",
+                                    "example": 1630000000000,
+                                    "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                                  },
+                                  "server_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                                  },
+                                  "id": {
+                                    "type": "string",
+                                    "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                                    "description": "The unique identifier of the team"
+                                  },
+                                  "display_name": {
+                                    "type": "string",
+                                    "example": "My Team",
+                                    "description": "Human-readable team display name. This is not a unique identifier."
+                                  },
+                                  "profile_image_url": {
+                                    "type": "string",
+                                    "example": "https://example.com/image.jpg",
+                                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                                  },
+                                  "client_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                                  },
+                                  "client_read_only_metadata": {
+                                    "type": "object",
+                                    "example": {
+                                      "key": "value"
+                                    },
+                                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                                  }
+                                },
+                                "required": [
+                                  "created_at_millis",
+                                  "id",
+                                  "display_name"
+                                ]
+                              },
+                              "selected_team_id": {
+                                "type": "string",
+                                "example": "team-id",
+                                "description": "ID of the team currently selected by the user"
+                              },
+                              "profile_image_url": {
+                                "type": "string",
+                                "example": "https://example.com/image.jpg",
+                                "description": "URL of the profile image for user. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                              },
+                              "signed_up_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user signed up (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "client_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                              },
+                              "client_read_only_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                              },
+                              "server_metadata": {
+                                "type": "object",
+                                "example": {
+                                  "key": "value"
+                                },
+                                "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the user here."
+                              },
+                              "last_active_at_millis": {
+                                "type": "number",
+                                "example": 1630000000000,
+                                "description": "The time the user was last active (identify) => `(the number of milliseconds since epoch, January 1, 1970, UTC)`"
+                              },
+                              "is_anonymous": {
+                                "type": "boolean"
+                              },
+                              "is_restricted": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is in restricted state (has signed up but not completed onboarding requirements)"
+                              },
+                              "restricted_reason": {
+                                "type": "object",
+                                "properties": {
+                                  "type": {
+                                    "type": "string"
+                                  }
+                                },
+                                "required": [
+                                  "type"
+                                ],
+                                "example": null,
+                                "description": "The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted"
+                              },
+                              "restricted_by_admin": {
+                                "type": "boolean",
+                                "example": false,
+                                "description": "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules."
+                              },
+                              "restricted_by_admin_reason": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Public reason shown to the user explaining why they are restricted. Optional."
+                              },
+                              "restricted_by_admin_private_details": {
+                                "type": "string",
+                                "example": null,
+                                "description": "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above."
+                              },
+                              "country_code": {
+                                "type": "string",
+                                "example": "US",
+                                "description": "Best-effort ISO country code captured at sign-up time from request geo headers."
+                              },
+                              "risk_scores": {
+                                "type": "object",
+                                "properties": {
+                                  "sign_up": {
+                                    "type": "object",
+                                    "properties": {
+                                      "bot": {
+                                        "type": "number"
+                                      },
+                                      "free_trial_abuse": {
+                                        "type": "number"
+                                      }
+                                    },
+                                    "required": [
+                                      "bot",
+                                      "free_trial_abuse"
+                                    ]
+                                  }
+                                },
+                                "required": [
+                                  "sign_up"
+                                ],
+                                "example": {
+                                  "sign_up": {
+                                    "bot": 0,
+                                    "free_trial_abuse": 0
+                                  }
+                                },
+                                "description": "User risk scores used for sign-up risk evaluation."
+                              }
+                            },
+                            "required": [
+                              "id",
+                              "primary_email_verified",
+                              "primary_email_auth_enabled",
+                              "signed_up_at_millis",
+                              "last_active_at_millis",
+                              "is_anonymous",
+                              "is_restricted",
+                              "restricted_by_admin",
+                              "risk_scores"
+                            ]
+                          },
+                          "team_id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "user_id": {
+                            "type": "string",
+                            "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+                            "description": "The unique identifier of the user"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "John Doe",
+                            "description": "Human-readable team member display name. This is not a unique identifier. Note that this is separate from the display_name of the user."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team member. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          }
+                        },
+                        "required": [
+                          "user",
+                          "team_id",
+                          "user_id"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
                     }
                   },
                   "required": [
-                    "success"
+                    "items"
                   ]
                 }
               }
@@ -7397,53 +7107,6 @@
         }
       }
     },
-    "/team-invitations/accept": {
-      "post": {
-        "summary": "Accept the team invitation",
-        "description": "Accept invitation and add user to the team",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {}
-                }
-              }
-            }
-          }
-        }
-      }
-    },
     "/team-member-profiles/{team_id}/{user_id}": {
       "get": {
         "summary": "Get a team member profile",
@@ -8040,15 +7703,269 @@
             "description": "The ID of the user, or the special value `me` for the currently authenticated user",
             "required": false
           }
-        ],
+        ],
+        "requestBody": {
+          "required": true,
+          "content": {
+            "application/json": {
+              "schema": {
+                "type": "object",
+                "properties": {},
+                "example": {}
+              }
+            }
+          }
+        },
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "201": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "team_id": {
+                      "type": "string"
+                    },
+                    "user_id": {
+                      "type": "string"
+                    }
+                  },
+                  "required": [
+                    "team_id",
+                    "user_id"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "delete": {
+        "summary": "Remove a user from a team",
+        "description": "",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          },
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
+                    }
+                  },
+                  "required": [
+                    "success"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    "/teams": {
+      "get": {
+        "summary": "List teams",
+        "description": "List all the teams in the project.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "query",
+            "schema": {
+              "type": "string",
+              "example": "me",
+              "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API"
+            },
+            "description": "Filter for the teams that the user is a member of. Can be either `me` or an ID. Must be `me` in the client API",
+            "required": false
+          }
+        ],
+        "tags": [
+          "Teams"
+        ],
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
+        "responses": {
+          "200": {
+            "description": "Successful response",
+            "content": {
+              "application/json": {
+                "schema": {
+                  "type": "object",
+                  "properties": {
+                    "items": {
+                      "type": "array",
+                      "items": {
+                        "type": "object",
+                        "properties": {
+                          "created_at_millis": {
+                            "type": "number",
+                            "example": 1630000000000,
+                            "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                          },
+                          "server_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                          },
+                          "id": {
+                            "type": "string",
+                            "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                            "description": "The unique identifier of the team"
+                          },
+                          "display_name": {
+                            "type": "string",
+                            "example": "My Team",
+                            "description": "Human-readable team display name. This is not a unique identifier."
+                          },
+                          "profile_image_url": {
+                            "type": "string",
+                            "example": "https://example.com/image.jpg",
+                            "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                          },
+                          "client_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                          },
+                          "client_read_only_metadata": {
+                            "type": "object",
+                            "example": {
+                              "key": "value"
+                            },
+                            "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                          }
+                        },
+                        "required": [
+                          "created_at_millis",
+                          "id",
+                          "display_name"
+                        ]
+                      }
+                    },
+                    "pagination": {
+                      "type": "object",
+                      "properties": {
+                        "next_cursor": {
+                          "type": "string",
+                          "example": "b3d396b8-c574-4c80-97b3-50031675ceb2",
+                          "description": "The cursor to fetch the next page of results. null if there is no next page."
+                        }
+                      },
+                      "required": []
+                    }
+                  },
+                  "required": [
+                    "items"
+                  ]
+                }
+              }
+            }
+          }
+        }
+      },
+      "post": {
+        "summary": "Create a team",
+        "description": "Create a new team and optionally add the current user as a member.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
             "application/json": {
               "schema": {
                 "type": "object",
-                "properties": {},
-                "example": {}
+                "properties": {
+                  "display_name": {
+                    "type": "string",
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "creator_user_id": {
+                    "type": "string",
+                    "example": "me",
+                    "description": "The ID of the creator of the team. If not specified, the user will not be added to the team. Can be either \"me\" or the ID of the user. Only used on the client side."
+                  },
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                  }
+                },
+                "required": [
+                  "display_name"
+                ],
+                "example": {
+                  "display_name": "My Team",
+                  "creator_user_id": "me",
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
+                }
               }
             }
           }
@@ -8056,7 +7973,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams",
         "responses": {
           "201": {
             "description": "Successful response",
@@ -8065,26 +7982,64 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "team_id": {
-                      "type": "string"
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
                     },
-                    "user_id": {
-                      "type": "string"
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "team_id",
-                    "user_id"
+                    "created_at_millis",
+                    "id",
+                    "display_name"
                   ]
                 }
               }
             }
           }
         }
-      },
-      "delete": {
-        "summary": "Remove a user from a team",
-        "description": "",
+      }
+    },
+    "/teams/{team_id}": {
+      "get": {
+        "summary": "Get a team",
+        "description": "Get a team by ID.",
         "parameters": [
           {
             "name": "team_id",
@@ -8093,23 +8048,12 @@
               "type": "string"
             },
             "required": true
-          },
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
           }
         ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-memberships/{team_id}/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -8118,98 +8062,76 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "success": {
-                      "type": "boolean",
-                      "description": "Always equal to true.",
-                      "example": true
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "success"
+                    "created_at_millis",
+                    "id",
+                    "display_name"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/team-invitations/{id}/accept": {
-      "post": {
-        "summary": "Accept a team invitation by ID",
-        "description": "Accepts a team invitation for the specified user. The user must have a verified email matching the invitation's recipient email. This marks the invitation as used and adds the user to the team.",
+      },
+      "delete": {
+        "summary": "Delete a team",
+        "description": "Delete a team by ID.",
         "parameters": [
           {
-            "name": "user_id",
-            "in": "query",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          },
-          {
-            "name": "id",
+            "name": "team_id",
             "in": "path",
             "schema": {
               "type": "string"
             },
             "required": true
           }
-        ],
-        "tags": [
-          "Teams"
-        ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/{id}/accept",
-        "responses": {
-          "200": {
-            "description": "Successful response",
-            "content": {
-              "application/json": {
-                "schema": {
-                  "type": "object",
-                  "properties": {}
-                }
-              }
-            }
-          }
-        }
-      }
-    },
-    "/team-invitations/accept/details": {
-      "post": {
-        "summary": "Get team invitation details",
-        "description": "Get additional information about a team invitation code",
-        "parameters": [],
-        "requestBody": {
-          "required": true,
-          "content": {
-            "application/json": {
-              "schema": {
-                "type": "object",
-                "properties": {
-                  "code": {
-                    "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
-                  }
-                },
-                "required": [
-                  "code"
-                ],
-                "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
-                }
-              }
-            }
-          }
-        },
+        ],
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/details",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -8218,29 +8140,34 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "team_id": {
-                      "type": "string"
-                    },
-                    "team_display_name": {
-                      "type": "string"
+                    "success": {
+                      "type": "boolean",
+                      "description": "Always equal to true.",
+                      "example": true
                     }
                   },
                   "required": [
-                    "team_id",
-                    "team_display_name"
+                    "success"
                   ]
                 }
               }
             }
           }
         }
-      }
-    },
-    "/team-invitations/accept/check-code": {
-      "post": {
-        "summary": "Check if a team invitation code is valid",
-        "description": "Check if a team invitation code is valid without using it",
-        "parameters": [],
+      },
+      "patch": {
+        "summary": "Update a team",
+        "description": "Update the team information by ID.",
+        "parameters": [
+          {
+            "name": "team_id",
+            "in": "path",
+            "schema": {
+              "type": "string"
+            },
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -8248,17 +8175,50 @@
               "schema": {
                 "type": "object",
                 "properties": {
-                  "code": {
+                  "client_read_only_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
+                  },
+                  "server_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                  },
+                  "display_name": {
                     "type": "string",
-                    "example": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2",
-                    "description": "A 45 character code"
+                    "example": "My Team",
+                    "description": "Human-readable team display name. This is not a unique identifier."
+                  },
+                  "profile_image_url": {
+                    "type": "string",
+                    "example": "https://example.com/image.jpg",
+                    "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                  },
+                  "client_metadata": {
+                    "type": "object",
+                    "example": {
+                      "key": "value"
+                    },
+                    "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
                   }
                 },
-                "required": [
-                  "code"
-                ],
                 "example": {
-                  "code": "u3h6gn4w24pqc8ya679inrhjwh1rybth6a7thurqhnpf2"
+                  "client_read_only_metadata": {
+                    "key": "value"
+                  },
+                  "server_metadata": {
+                    "key": "value"
+                  },
+                  "display_name": "My Team",
+                  "profile_image_url": "https://example.com/image.jpg",
+                  "client_metadata": {
+                    "key": "value"
+                  }
                 }
               }
             }
@@ -8267,7 +8227,7 @@
         "tags": [
           "Teams"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/team-invitations/accept/check-code",
+        "x-full-url": "https://api.stack-auth.com/api/v1/teams/{team_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -8276,12 +8236,52 @@
                 "schema": {
                   "type": "object",
                   "properties": {
-                    "is_code_valid": {
-                      "type": "boolean"
+                    "created_at_millis": {
+                      "type": "number",
+                      "example": 1630000000000,
+                      "description": "The time the team was created (the number of milliseconds since epoch, January 1, 1970, UTC)"
+                    },
+                    "server_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Server metadata. Used as a data store, only accessible from the server side. You can store secret information related to the team here."
+                    },
+                    "id": {
+                      "type": "string",
+                      "example": "ad962777-8244-496a-b6a2-e0c6a449c79e",
+                      "description": "The unique identifier of the team"
+                    },
+                    "display_name": {
+                      "type": "string",
+                      "example": "My Team",
+                      "description": "Human-readable team display name. This is not a unique identifier."
+                    },
+                    "profile_image_url": {
+                      "type": "string",
+                      "example": "https://example.com/image.jpg",
+                      "description": "URL of the profile image for team. Can be a Base64 encoded image. Must be smaller than 100KB. Please compress and crop to a square before passing in."
+                    },
+                    "client_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client."
+                    },
+                    "client_read_only_metadata": {
+                      "type": "object",
+                      "example": {
+                        "key": "value"
+                      },
+                      "description": "Client read-only, server-writable metadata. Used as a data store, accessible from the client side. Do not store information that should not be exposed to the client. The client can read this data, but cannot modify it. This is useful for things like subscription status."
                     }
                   },
                   "required": [
-                    "is_code_valid"
+                    "created_at_millis",
+                    "id",
+                    "display_name"
                   ]
                 }
               }
@@ -8989,27 +8989,15 @@
         }
       }
     },
-    "/users/{user_id}": {
+    "/users/me": {
       "get": {
-        "summary": "Get user",
-        "description": "Gets a user by user ID.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
+        "summary": "Get current user",
+        "description": "Gets the currently authenticated user.",
+        "parameters": [],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9225,25 +9213,13 @@
         }
       },
       "delete": {
-        "summary": "Delete user",
-        "description": "Deletes a user. Use this with caution.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
+        "summary": "Delete current user",
+        "description": "Deletes the currently authenticated user. Use this with caution.",
+        "parameters": [],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9268,21 +9244,9 @@
         }
       },
       "patch": {
-        "summary": "Update user",
-        "description": "Updates a user. Only the values provided will be updated.",
-        "parameters": [
-          {
-            "name": "user_id",
-            "in": "path",
-            "schema": {
-              "type": "string",
-              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
-              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
-            },
-            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
-            "required": true
-          }
-        ],
+        "summary": "Update current user",
+        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
+        "parameters": [],
         "requestBody": {
           "required": true,
           "content": {
@@ -9432,7 +9396,7 @@
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9648,15 +9612,27 @@
         }
       }
     },
-    "/users/me": {
+    "/users/{user_id}": {
       "get": {
-        "summary": "Get current user",
-        "description": "Gets the currently authenticated user.",
-        "parameters": [],
+        "summary": "Get user",
+        "description": "Gets a user by user ID.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9872,13 +9848,25 @@
         }
       },
       "delete": {
-        "summary": "Delete current user",
-        "description": "Deletes the currently authenticated user. Use this with caution.",
-        "parameters": [],
+        "summary": "Delete user",
+        "description": "Deletes a user. Use this with caution.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",
@@ -9903,9 +9891,21 @@
         }
       },
       "patch": {
-        "summary": "Update current user",
-        "description": "Updates the currently authenticated user. Only the values provided will be updated.",
-        "parameters": [],
+        "summary": "Update user",
+        "description": "Updates a user. Only the values provided will be updated.",
+        "parameters": [
+          {
+            "name": "user_id",
+            "in": "path",
+            "schema": {
+              "type": "string",
+              "example": "3241a285-8329-4d69-8f3d-316e08cf140c",
+              "description": "The ID of the user, or the special value `me` for the currently authenticated user"
+            },
+            "description": "The ID of the user, or the special value `me` for the currently authenticated user",
+            "required": true
+          }
+        ],
         "requestBody": {
           "required": true,
           "content": {
@@ -10055,7 +10055,7 @@
         "tags": [
           "Users"
         ],
-        "x-full-url": "https://api.stack-auth.com/api/v1/users/me",
+        "x-full-url": "https://api.stack-auth.com/api/v1/users/{user_id}",
         "responses": {
           "200": {
             "description": "Successful response",

From fe7fe4cc84b7cfd47559440726581d1d6d2f5bf2 Mon Sep 17 00:00:00 2001
From: Konstantin Wohlwend <n2d4xc@gmail.com>
Date: Wed, 6 May 2026 11:36:59 -0700
Subject: [PATCH 13/13] Fix lint

---
 apps/backend/scripts/generate-openapi-fumadocs.ts | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/backend/scripts/generate-openapi-fumadocs.ts b/apps/backend/scripts/generate-openapi-fumadocs.ts
index 5021384c16..6b55da252c 100644
--- a/apps/backend/scripts/generate-openapi-fumadocs.ts
+++ b/apps/backend/scripts/generate-openapi-fumadocs.ts
@@ -4,6 +4,7 @@ import { webhookEvents } from '@stackframe/stack-shared/dist/interface/webhooks'
 import { writeFileSyncIfChanged } from '@stackframe/stack-shared/dist/utils/fs';
 import { HTTP_METHODS } from '@stackframe/stack-shared/dist/utils/http';
 import { typedKeys } from '@stackframe/stack-shared/dist/utils/objects';
+import { stringCompare } from '@stackframe/stack-shared/dist/utils/strings';
 import fs from 'fs';
 import { glob } from 'glob';
 import path from 'path';
@@ -29,7 +30,7 @@ async function main() {
   // Generate OpenAPI specs for each audience (let parseOpenAPI handle the filtering)
   const filePathPrefix = path.resolve(process.platform === "win32" ? "apps/src/app/api/latest" : "src/app/api/latest");
   const importPathPrefix = "@/app/api/latest";
-  const filePaths = [...await glob(filePathPrefix + "/**/route.{js,jsx,ts,tsx}")].sort((a, b) => a.localeCompare(b));
+  const filePaths = [...await glob(filePathPrefix + "/**/route.{js,jsx,ts,tsx}")].sort((a, b) => stringCompare(a, b));
 
   const endpoints = new Map(await Promise.all(filePaths.map(async (filePath) => {
     if (!filePath.startsWith(filePathPrefix)) {