stytchauth
diff --git a/‎Stytch.net/Clients/b2b/RBACOrganizations.cs‎
Lines changed: 8 additions & 0 deletions b/‎Stytch.net/Clients/b2b/RBACOrganizations.cs‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎Stytch.net/Clients/b2b/Sessions.cs‎
Lines changed: 1 addition & 4 deletions b/‎Stytch.net/Clients/b2b/Sessions.cs‎
Lines changed: 1 addition & 4 deletions
diff --git a/‎Stytch.net/Clients/consumer/M2MClients.cs‎
Lines changed: 3 additions & 3 deletions b/‎Stytch.net/Clients/consumer/M2MClients.cs‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎Stytch.net/Clients/consumer/MagicLinks.cs‎
Lines changed: 24 additions & 10 deletions b/‎Stytch.net/Clients/consumer/MagicLinks.cs‎
Lines changed: 24 additions & 10 deletions
diff --git a/‎Stytch.net/Clients/consumer/Sessions.cs‎
Lines changed: 0 additions & 3 deletions b/‎Stytch.net/Clients/consumer/Sessions.cs‎
Lines changed: 0 additions & 3 deletions
diff --git a/‎Stytch.net/Clients/consumer/WebAuthn.cs‎
Lines changed: 16 additions & 21 deletions b/‎Stytch.net/Clients/consumer/WebAuthn.cs‎
Lines changed: 16 additions & 21 deletions
diff --git a/‎Stytch.net/Models/B2B/DiscoveryIntermediateSessions.cs‎
Lines changed: 1 addition & 1 deletion b/‎Stytch.net/Models/B2B/DiscoveryIntermediateSessions.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Stytch.net/Models/B2B/DiscoveryOrganizations.cs‎
Lines changed: 5 additions & 5 deletions b/‎Stytch.net/Models/B2B/DiscoveryOrganizations.cs‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎Stytch.net/Models/B2B/MagicLinks.cs‎
Lines changed: 1 addition & 1 deletion b/‎Stytch.net/Models/B2B/MagicLinks.cs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Stytch.net/Models/B2B/MagicLinksEmail.cs‎
Lines changed: 9 additions & 9 deletions b/‎Stytch.net/Models/B2B/MagicLinksEmail.cs‎
Lines changed: 9 additions & 9 deletions
@@ -29,6 +29,10 @@ public RBACOrganizations(HttpClient client, ClientConfig config)
         }
 
         /// <summary>
+        /// 
+        /// The organization RBAC policy feature is currently in private beta and must be enabled for your
+        /// Workspace. Please contact Stytch support at support@stytch.com to request access.
+        /// 
         /// Get the active RBAC Policy for a specific Organization within your Stytch Project. An Organization RBAC
         /// Policy contains the roles that have been defined specifically for that organization, allowing for
         /// organization-specific permissioning models.
@@ -77,6 +81,10 @@ B2BRBACOrganizationsGetOrgPolicyRequest request
             }
         }
         /// <summary>
+        /// 
+        /// The organization RBAC policy feature is currently in private beta and must be enabled for your
+        /// Workspace. Please contact Stytch support at support@stytch.com to request access.
+        /// 
         /// Set the RBAC Policy for a specific Organization within your Stytch Project. An Organization RBAC Policy
         /// allows you to define roles that are specific to that organization, providing fine-grained control over
         /// permissions at the organization level.
 
@@ -251,10 +251,7 @@ B2BSessionsExchangeRequest request
         /// This session can be used with the Stytch SDKs and APIs.
         /// 
         /// The Access Token must contain the `full_access` scope (only available to First Party clients) and must
-        /// not be more than 5 minutes old. Access Tokens may only be exchanged a single time. 
-        /// 
-        /// The Member Session returned will be the same Member Session that was active in your application (the
-        /// authorizing party) during the initial authorization flow.
+        /// not be more than 5 minutes old. Access Tokens may only be exchanged a single time.
         /// 
         /// Because the Member previously completed MFA and satisfied all Organization authentication requirements
         /// at the time of the original Access Token issuance, this endpoint will never return an
 
@@ -108,11 +108,11 @@ M2MClientsSearchRequest request
             }
         }
         /// <summary>
-        /// Updates an existing M2M Client. You can use this endpoint to activate or deactivate a M2M Client by
+        /// Updates an existing M2M Client. You can use this endpoint to activate or deactivate an M2M Client by
         /// changing its `status`. A deactivated M2M Client will not be allowed to perform future token exchange
         /// flows until it is reactivated.
         /// 
-        /// **Important:** Deactivating a M2M Client will not invalidate any existing JWTs issued to the client,
+        /// **Important:** Deactivating an M2M Client will not invalidate any existing JWTs issued to the client,
         /// only prevent it from receiving new ones.
         /// To protect more-sensitive routes, pass a lower `max_token_age` value
         /// when[authenticating the token](https://stytch.com/docs/b2b/api/authenticate-m2m-token)[authenticating the token](https://stytch.com/docs/api/authenticate-m2m-token).
@@ -156,7 +156,7 @@ M2MClientsUpdateRequest request
         /// <summary>
         /// Deletes the M2M Client.
         /// 
-        /// **Important:** Deleting a M2M Client will not invalidate any existing JWTs issued to the client, only
+        /// **Important:** Deleting an M2M Client will not invalidate any existing JWTs issued to the client, only
         /// prevent it from receiving new ones.
         /// To protect more-sensitive routes, pass a lower `max_token_age` value
         /// when[authenticating the token](https://stytch.com/docs/b2b/api/authenticate-m2m-token)[authenticating the token](https://stytch.com/docs/api/authenticate-m2m-token).
 
@@ -72,18 +72,32 @@ MagicLinksAuthenticateRequest request
             }
         }
         /// <summary>
-        /// Create an Embeddable Magic Link token for a User. Access to this endpoint is restricted. To enable it,
-        /// please send us a note at support@stytch.com.
+        /// Create an Embeddable Magic Link token for a User.
         /// 
-        /// ### Next steps
-        /// Send the returned `token` value to the end user in a link which directs to your application. When the
-        /// end user follows your link, collect the token, and call
-        /// [Authenticate Magic Link](https://stytch.com/docs/api/authenticate-magic-link) to complete
-        /// authentication.
+        /// ### Important usage notes
         /// 
-        /// **Note:** Authenticating an Embeddable Magic Link token will **not** result in any of the Stytch User's
-        /// factors (email address or phone number) being marked as verified, as Stytch cannot confirm where the
-        /// user received the token.
+        /// Carefully review the following notes before using Embeddable Magic Links:
+        /// 
+        /// * Embeddable Magic Link tokens are **sensitive values**. You should handle and store them securely.
+        /// * Authenticating an Embeddable Magic Link token will not mark any of a user's delivery factors (email
+        /// address or phone number) as verified, since we cannot confirm how the token was sent to the user.
+        /// * Embeddable Magic Links are only available in our Consumer API, and not our B2B API.
+        /// 
+        /// When sending Embeddable Magic Links via email:
+        /// 
+        /// * Deliverability is paramount. Carefully test your email copy to ensure it reaches your users' inboxes.
+        /// Small changes can result in your emails being sent to spam.
+        /// * In some cases, email security bots may follow links within incoming emails before your users open
+        /// them. This consumes the Embeddable Magic Link token, preventing the user from logging in when they later
+        /// click the link. Our Email Magic Links product automatically prevents this (details
+        /// [here](https://stytch.com/docs/consumer-auth/authentication/magic-links/redirect-routing)). However,
+        /// when sending your own emails containing Embeddable Magic Links, you'll be responsible for detecting and
+        /// stopping bot traffic using tools like CAPTCHA or
+        /// [Device Fingerprinting](https://stytch.com/docs/fraud-risk/device-fingerprinting/overview).
+        /// 
+        /// We also recommend checking out our
+        /// [Trusted Auth Tokens](https://stytch.com/docs/consumer-auth/authentication/trusted-auth-tokens/overview)
+        /// product, which is available in both our Consumer and B2B APIs and can be a better fit for some use cases.
         /// </summary>
         public async Task<MagicLinksCreateResponse> Create(
             MagicLinksCreateRequest request
 
@@ -202,9 +202,6 @@ SessionsMigrateRequest request
         /// underlying User. 
         /// This session can be used with the Stytch SDKs and APIs.
         /// 
-        /// The Session returned will be the same Session that was active in your application (the authorizing
-        /// party) during the initial authorization flow.
-        /// 
         /// The Access Token must contain the `full_access` scope (only available to First Party clients) and must
         /// not be more than 5 minutes old. Access Tokens may only be exchanged a single time.
         /// </summary>
 
@@ -38,13 +38,13 @@ public WebAuthn(HttpClient client, ClientConfig config)
         /// from
         /// [public_key_credential_creation_options](https://w3c.github.io/webauthn/#dictionary-makecredentialoptions)
         /// passed to the [navigator.credentials.create()](https://www.w3.org/TR/webauthn-2/#sctn-createCredential)
-        /// request via the public key argument. We recommend using the `create()` wrapper provided by the
-        /// webauthn-json library. 
+        /// request via the public key argument.
         /// 
-        /// If you are not using the [webauthn-json](https://github.com/github/webauthn-json) library, the
-        /// `public_key_credential_creation_options` will need to be converted to a suitable public key by
-        /// unmarshalling the JSON, base64 decoding the user ID field, and converting user ID and the challenge
-        /// fields into an array buffer.
+        /// When using built-in browser methods like `navigator.credentials.create()`, set the
+        /// `use_base64_url_encoding` option to `true`.
+        /// 
+        /// See our [WebAuthn setup guide](https://stytch.com/docs/guides/webauthn/api) for additional usage
+        /// instructions and example code.
         /// </summary>
         public async Task<WebAuthnRegisterStartResponse> RegisterStart(
             WebAuthnRegisterStartRequest request
@@ -87,12 +87,8 @@ WebAuthnRegisterStartRequest request
         /// [navigator.credentials.create()](https://www.w3.org/TR/webauthn-2/#sctn-createCredential) request to
         /// this endpoint as the `public_key_credential` parameter. 
         /// 
-        /// If the [webauthn-json](https://github.com/github/webauthn-json) library's `create()` method was used,
-        /// the response can be passed directly to the
-        /// [register endpoint](https://stytch.com/docs/api/webauthn-register). If not, some fields (the client data
-        /// and the attestation object) from the
-        /// [navigator.credentials.create()](https://www.w3.org/TR/webauthn-2/#sctn-createCredential) response will
-        /// need to be converted from array buffers to strings and marshalled into JSON.
+        /// See our [WebAuthn setup guide](https://stytch.com/docs/guides/webauthn/api) for additional usage
+        /// instructions and example code.
         /// </summary>
         public async Task<WebAuthnRegisterResponse> Register(
             WebAuthnRegisterRequest request
@@ -139,11 +135,13 @@ WebAuthnRegisterRequest request
         /// [navigator.credentials.get()](https://www.w3.org/TR/webauthn-2/#sctn-getAssertion) with the data from
         /// `public_key_credential_request_options` passed to the
         /// [navigator.credentials.get()](https://www.w3.org/TR/webauthn-2/#sctn-getAssertion) request via the
-        /// public key argument. We recommend using the `get()` wrapper provided by the webauthn-json library. 
+        /// public key argument.
+        /// 
+        /// When using built-in browser methods like `navigator.credentials.get()`, set the
+        /// `use_base64_url_encoding` option to `true`.
         /// 
-        /// If you are not using the [webauthn-json](https://github.com/github/webauthn-json) library, `the
-        /// public_key_credential_request_options` will need to be converted to a suitable public key by
-        /// unmarshalling the JSON and converting some the fields to array buffers.
+        /// See our [WebAuthn setup guide](https://stytch.com/docs/guides/webauthn/api) for additional usage
+        /// instructions and example code.
         /// </summary>
         public async Task<WebAuthnAuthenticateStartResponse> AuthenticateStart(
             WebAuthnAuthenticateStartRequest request
@@ -186,11 +184,8 @@ WebAuthnAuthenticateStartRequest request
         /// [navigator.credentials.get()](https://www.w3.org/TR/webauthn-2/#sctn-getAssertion) request to the
         /// authenticate endpoint. 
         /// 
-        /// If the [webauthn-json](https://github.com/github/webauthn-json) library's `get()` method was used, the
-        /// response can be passed directly to the
-        /// [authenticate endpoint](https://stytch.com/docs/api/webauthn-authenticate). If not some fields from the
-        /// [navigator.credentials.get()](https://www.w3.org/TR/webauthn-2/#sctn-getAssertion) response will need to
-        /// be converted from array buffers to strings and marshalled into JSON.
+        /// See our [WebAuthn setup guide](https://stytch.com/docs/guides/webauthn/api) for additional usage
+        /// instructions and example code.
         /// </summary>
         public async Task<WebAuthnAuthenticateResponse> Authenticate(
             WebAuthnAuthenticateRequest request
 
@@ -73,7 +73,7 @@ public class B2BDiscoveryIntermediateSessionsExchangeRequest
         /// pre-emptively send a one-time passcode (OTP) to the Member's phone number. The locale argument will be
         /// used to determine which language to use when sending the passcode.
         /// 
-        /// Parameter is a [IETF BCP 47 language tag](https://www.w3.org/International/articles/language-tags/),
+        /// Parameter is an [IETF BCP 47 language tag](https://www.w3.org/International/articles/language-tags/),
         /// e.g. `"en"`.
         /// 
         /// Currently supported languages are English (`"en"`), Spanish (`"es"`), and Brazilian Portuguese
 
@@ -401,6 +401,11 @@ public class B2BDiscoveryOrganizationsCreateResponse
         [JsonProperty("member")]
         public Member Member { get; set; }
         /// <summary>
+        /// The [Organization object](https://stytch.com/docs/b2b/api/organization-object).
+        /// </summary>
+        [JsonProperty("organization")]
+        public Organization Organization { get; set; }
+        /// <summary>
         /// Indicates whether the Member is fully authenticated. If false, the Member needs to complete an MFA step
         /// to log in to the Organization.
         /// </summary>
@@ -434,11 +439,6 @@ public class B2BDiscoveryOrganizationsCreateResponse
         [JsonProperty("member_session")]
         public MemberSession MemberSession { get; set; }
         /// <summary>
-        /// The [Organization object](https://stytch.com/docs/b2b/api/organization-object).
-        /// </summary>
-        [JsonProperty("organization")]
-        public Organization Organization { get; set; }
-        /// <summary>
         /// Information about the MFA requirements of the Organization and the Member's options for fulfilling MFA.
         /// </summary>
         [JsonProperty("mfa_required")]
 
@@ -79,7 +79,7 @@ public class B2BMagicLinksAuthenticateRequest
         /// pre-emptively send a one-time passcode (OTP) to the Member's phone number. The locale argument will be
         /// used to determine which language to use when sending the passcode.
         /// 
-        /// Parameter is a [IETF BCP 47 language tag](https://www.w3.org/International/articles/language-tags/),
+        /// Parameter is an [IETF BCP 47 language tag](https://www.w3.org/International/articles/language-tags/),
         /// e.g. `"en"`.
         /// 
         /// Currently supported languages are English (`"en"`), Spanish (`"es"`), and Brazilian Portuguese
 
@@ -73,14 +73,14 @@ public class B2BMagicLinksEmailInviteRequest
         [JsonProperty("untrusted_metadata")]
         public object UntrustedMetadata { get; set; }
         /// <summary>
-        /// Use a custom template for invite emails. By default, it will use your default email template. The
-        /// template must be a template
-        ///   using our built-in customizations or a custom HTML email for Magic Links - Invite.
+        /// Use a custom template for invite emails. By default, it will use your default email template. Templates
+        /// can be added in the [Stytch dashboard](https://stytch.com/dashboard/templates) using our built-in
+        /// customization options or custom HTML templates with type “Magic Links - Invite”.
         /// </summary>
         [JsonProperty("invite_template_id")]
         public string InviteTemplateId { get; set; }
         /// <summary>
-        /// Used to determine which language to use when sending the user this delivery method. Parameter is a
+        /// Used to determine which language to use when sending the user this delivery method. Parameter is an
         /// [IETF BCP 47 language tag](https://www.w3.org/International/articles/language-tags/), e.g. `"en"`.
         /// 
         /// Currently supported languages are English (`"en"`), Spanish (`"es"`), French (`"fr"`) and Brazilian
@@ -188,21 +188,21 @@ public class B2BMagicLinksEmailLoginOrSignupRequest
         [JsonProperty("pkce_code_challenge")]
         public string PkceCodeChallenge { get; set; }
         /// <summary>
-        /// Use a custom template for login emails. By default, it will use your default email template. The
-        /// template must be from Stytch's
-        /// built-in customizations or a custom HTML email for Magic Links - Login.
+        /// Use a custom template for login emails. By default, it will use your default email template. Templates
+        /// can be added in the [Stytch dashboard](https://stytch.com/dashboard/templates) using our built-in
+        /// customization options or custom HTML templates with type “Magic Links - Login”.
         /// </summary>
         [JsonProperty("login_template_id")]
         public string LoginTemplateId { get; set; }
         /// <summary>
         /// Use a custom template for signup emails. By default, it will use your default email template. The
         /// template must be from Stytch's
-        /// built-in customizations or a custom HTML email for Magic Links - Signup.
+        /// built-in customizations or a custom HTML email for “Magic Links - Signup”.
         /// </summary>
         [JsonProperty("signup_template_id")]
         public string SignupTemplateId { get; set; }
         /// <summary>
-        /// Used to determine which language to use when sending the user this delivery method. Parameter is a
+        /// Used to determine which language to use when sending the user this delivery method. Parameter is an
         /// [IETF BCP 47 language tag](https://www.w3.org/International/articles/language-tags/), e.g. `"en"`.
         /// 
         /// Currently supported languages are English (`"en"`), Spanish (`"es"`), French (`"fr"`) and Brazilian