feat(user): rename loginId to loginIdOrUserId in user management methods (#691)

* feat(user): rename loginId to loginIdOrUserId in user management methods

Renames the `loginId` parameter to `loginIdOrUserId` across 22 user
management methods to clarify that both login IDs and user IDs are
accepted identifiers, aligning with the go-sdk naming convention.

The JSON field sent to the Descope API remains `loginId` unchanged.
Adds `PatchUserOptionsUsingIdentifier` interface for `patchBatch` with
backward-compatible deprecated `loginId` field.

Resolves: descope/etc#14620

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

* fix(user): address patchBatch edge cases and update overload formatting

- Add runtime guard in patchBatch throwing if neither loginIdOrUserId
  nor loginId is provided
- Replace PatchUserOptionsUsingIdentifier interface with a union type
  that enforces at least one identifier at compile time
- Add tests for deprecated loginId backward-compat path and missing
  identifier error
- Revert update() overload 1 to single-line form (no-op formatting)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

* test(user): use loginId for user3 in main patchBatch test for BC coverage

The main test now mixes loginIdOrUserId (user1, user2) and loginId (user3),
covering backward compatibility inline without a separate test case.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

* fix(test): use synchronous toThrow for patchBatch missing-identifier test

The error is thrown synchronously inside Array.map before any promise
is created, so rejects.toThrow() never receives a rejected promise.
Switch to the synchronous expect(() => ...).toThrow() form.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

* chore: prettier fix

---------

Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>

Author: yosiharan

lib/management/user.test.ts

@@ -620,13 +620,13 @@ describe('Management User', () => {
       mockHttpClient.patch.mockResolvedValue(httpResponse);
       const resp: SdkResponse<PatchUserBatchResponse> = await management.user.patchBatch([
         {
-          loginId: 'user1',
+          loginIdOrUserId: 'user1',
           email: 'user1@example.com',
           displayName: 'User One',
           roles: ['role1'],
         },
         {
-          loginId: 'user2',
+          loginIdOrUserId: 'user2',
           phone: '+1234567890',
           verifiedPhone: true,
           customAttributes: { department: 'engineering' },
@@ -698,7 +698,7 @@ describe('Management User', () => {
       mockHttpClient.patch.mockResolvedValue(httpResponse);
       await management.user.patchBatch([
         {
-          loginId: 'user1',
+          loginIdOrUserId: 'user1',
           email: 'user1@example.com',
           phone: undefined,
           displayName: 'Updated Name',
@@ -718,6 +718,28 @@ describe('Management User', () => {
         ],
       });
     });
+
+    it('should support deprecated loginId field for backward compatibility', async () => {
+      const httpResponse = {
+        ok: true,
+        json: () => mockMgmtPatchBatchResponse,
+        clone: () => ({
+          json: () => Promise.resolve(mockMgmtPatchBatchResponse),
+        }),
+        status: 200,
+      };
+      mockHttpClient.patch.mockResolvedValue(httpResponse);
+      await management.user.patchBatch([{ loginId: 'user1', email: 'user1@example.com' }]);
+      expect(mockHttpClient.patch).toHaveBeenCalledWith(apiPaths.user.patchBatch, {
+        users: [{ loginId: 'user1', email: 'user1@example.com' }],
+      });
+    });
+
+    it('should throw if neither loginIdOrUserId nor loginId is provided', async () => {
+      await expect(
+        management.user.patchBatch([{ loginIdOrUserId: undefined, loginId: undefined } as any]),
+      ).rejects.toThrow('patchBatch: each user must have loginIdOrUserId or loginId');
+    });
   });
 
   describe('delete', () => {