feat(pki): Add binding to finalize pki enrollment

Needed to move `X509CertificateReference` to `common.py` to break a circular import when importing `AvailableDevice`.

Closes #11624

Author: FirelightFlagboy

bindings/electron/src/index.d.ts

@@ -287,6 +287,28 @@ export interface OrganizationInfo {
 }
 
 
+export interface PKILocalPendingEnrollment {
+    certRef: X509CertificateReference
+    addr: string
+    submittedOn: number
+    enrollmentId: string
+    payload: PkiEnrollmentSubmitPayload
+    encryptedKey: Uint8Array
+    encryptedKeyAlgo: string
+    ciphertext: Uint8Array
+}
+
+
+export interface PkiEnrollmentAnswerPayload {
+    userId: string
+    deviceId: string
+    deviceLabel: string
+    humanHandle: HumanHandle
+    profile: UserProfile
+    rootVerifyKey: Uint8Array
+}
+
+
 export interface PkiEnrollmentListItem {
     enrollmentId: string
     submittedOn: number
@@ -297,6 +319,14 @@ export interface PkiEnrollmentListItem {
 }
 
 
+export interface PkiEnrollmentSubmitPayload {
+    verifyKey: Uint8Array
+    publicKey: Uint8Array
+    deviceLabel: string
+    humanHandle: HumanHandle
+}
+
+
 export interface ServerConfig {
     userProfileOutsiderAllowed: boolean
     activeUsersLimit: ActiveUsersLimit
@@ -2789,6 +2819,20 @@ export type PkiEnrollmentAcceptError =
   | PkiEnrollmentAcceptErrorPkiOperationError
 
 
+// PkiEnrollmentFinalizeError
+export interface PkiEnrollmentFinalizeErrorInternal {
+    tag: "PkiEnrollmentFinalizeErrorInternal"
+    error: string
+}
+export interface PkiEnrollmentFinalizeErrorSaveError {
+    tag: "PkiEnrollmentFinalizeErrorSaveError"
+    error: string
+}
+export type PkiEnrollmentFinalizeError =
+  | PkiEnrollmentFinalizeErrorInternal
+  | PkiEnrollmentFinalizeErrorSaveError
+
+
 // PkiEnrollmentListError
 export interface PkiEnrollmentListErrorAuthorNotAllowed {
     tag: "PkiEnrollmentListErrorAuthorNotAllowed"
@@ -4800,6 +4844,12 @@ export function pathParent(
 export function pathSplit(
     path: string
 ): Promise<Array<string>>
+export function pkiEnrollmentFinalize(
+    config: ClientConfig,
+    save_strategy: DeviceSaveStrategy,
+    accepted: PkiEnrollmentAnswerPayload,
+    local_pending: PKILocalPendingEnrollment
+): Promise<Result<AvailableDevice, PkiEnrollmentFinalizeError>>
 export function pkiEnrollmentSubmit(
     config: ClientConfig,
     addr: string,