feat(api): add Google WPP to SDKs

stainless-app[bot] · stainless-app[bot] · commit cdb319c4f800 · 2025-12-09T15:33:35.000Z
docs(api): clarify error 422 for 3DS challenge response
feat(api): add IS_AFTER / IS_BEFORE operators to Auth Rule APIs
diff --git a/.stats.yml b/.stats.yml
@@ -1,4 +1,4 @@
 configured_endpoints: 176
-openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/lithic%2Flithic-3e50857d2b8f4c85922abf83df7b3c6894f5bd500d6226ff589476029bbb258b.yml
-openapi_spec_hash: 6bef8b283eb7292ad6f3f62d40fda699
+openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/lithic%2Flithic-abe6a4f82f696099fa8ecb1cc44f08979e17d56578ae7ea68b0e9182e21df508.yml
+openapi_spec_hash: d2ce51592a9a234c6f34a1168a31f91f
 config_hash: ba3fbfc99a1b8635d9e79e9e49d12952
diff --git a/src/resources/auth-rules/v2/v2.ts b/src/resources/auth-rules/v2/v2.ts
@@ -689,6 +689,8 @@ export type ConditionalOperation =
   | 'IS_GREATER_THAN_OR_EQUAL_TO'
   | 'IS_LESS_THAN'
   | 'IS_LESS_THAN_OR_EQUAL_TO'
+  | 'IS_AFTER'
+  | 'IS_BEFORE'
   | 'CONTAINS_ANY'
   | 'CONTAINS_ALL'
   | 'CONTAINS_NONE';
@@ -819,7 +821,7 @@ export namespace ConditionalTokenizationActionParameters {
 /**
  * A regex string, to be used with `MATCHES` or `DOES_NOT_MATCH`
  */
-export type ConditionalValue = string | number | Array<string>;
+export type ConditionalValue = string | number | Array<string> | (string & {});
 
 export interface MerchantLockParameters {
   /**
diff --git a/src/resources/cards/cards.ts b/src/resources/cards/cards.ts
@@ -785,57 +785,77 @@ export interface CardProvisionResponse {
   provisioning_payload?: string | ProvisionResponse;
 }
 
-export interface CardWebProvisionResponse {
-  /**
-   * JWS object required for handoff to Apple's script.
-   */
-  jws?: CardWebProvisionResponse.Jws;
-
-  /**
-   * A unique identifier for the JWS object.
-   */
-  state?: string;
-}
+export type CardWebProvisionResponse =
+  | CardWebProvisionResponse.AppleWebPushProvisioningResponse
+  | CardWebProvisionResponse.GoogleWebPushProvisioningResponse;
 
 export namespace CardWebProvisionResponse {
-  /**
-   * JWS object required for handoff to Apple's script.
-   */
-  export interface Jws {
+  export interface AppleWebPushProvisioningResponse {
     /**
-     * JWS unprotected headers containing header parameters that aren't
-     * integrity-protected by the JWS signature.
+     * JWS object required for handoff to Apple's script.
      */
-    header?: Jws.Header;
+    jws?: AppleWebPushProvisioningResponse.Jws;
 
     /**
-     * Base64url encoded JSON object containing the provisioning payload.
+     * A unique identifier for the JWS object.
      */
-    payload?: string;
+    state?: string;
+  }
 
+  export namespace AppleWebPushProvisioningResponse {
     /**
-     * Base64url encoded JWS protected headers containing the header parameters that
-     * are integrity-protected by the JWS signature.
+     * JWS object required for handoff to Apple's script.
      */
-    protected?: string;
+    export interface Jws {
+      /**
+       * JWS unprotected headers containing header parameters that aren't
+       * integrity-protected by the JWS signature.
+       */
+      header?: Jws.Header;
+
+      /**
+       * Base64url encoded JSON object containing the provisioning payload.
+       */
+      payload?: string;
+
+      /**
+       * Base64url encoded JWS protected headers containing the header parameters that
+       * are integrity-protected by the JWS signature.
+       */
+      protected?: string;
+
+      /**
+       * Base64url encoded signature of the JWS object.
+       */
+      signature?: string;
+    }
 
+    export namespace Jws {
+      /**
+       * JWS unprotected headers containing header parameters that aren't
+       * integrity-protected by the JWS signature.
+       */
+      export interface Header {
+        /**
+         * The ID for the JWS Public Key of the key pair used to generate the signature.
+         */
+        kid?: string;
+      }
+    }
+  }
+
+  export interface GoogleWebPushProvisioningResponse {
     /**
-     * Base64url encoded signature of the JWS object.
+     * A base64 encoded and encrypted payload representing card data for the Google Pay
+     * UWPP FPAN flow.
      */
-    signature?: string;
-  }
+    google_opc?: string;
 
-  export namespace Jws {
     /**
-     * JWS unprotected headers containing header parameters that aren't
-     * integrity-protected by the JWS signature.
+     * A base64 encoded and encrypted payload representing card data for the Google Pay
+     * UWPP tokenization flow.
      */
-    export interface Header {
-      /**
-       * The ID for the JWS Public Key of the key pair used to generate the signature.
-       */
-      kid?: string;
-    }
+    tsp_opc?: string;
   }
 }
 
@@ -1479,10 +1499,28 @@ export interface CardSearchByPanParams {
 }
 
 export interface CardWebProvisionParams {
+  /**
+   * Only applicable if `digital_wallet` is GOOGLE_PAY. Google Pay Web Push
+   * Provisioning device identifier required for the tokenization flow
+   */
+  client_device_id?: string;
+
+  /**
+   * Only applicable if `digital_wallet` is GOOGLE_PAY. Google Pay Web Push
+   * Provisioning wallet account identifier required for the tokenization flow
+   */
+  client_wallet_account_id?: string;
+
   /**
    * Name of digital wallet provider.
    */
-  digital_wallet?: 'APPLE_PAY';
+  digital_wallet?: 'APPLE_PAY' | 'GOOGLE_PAY';
+
+  /**
+   * Only applicable if `digital_wallet` is GOOGLE_PAY. Google Pay Web Push
+   * Provisioning session identifier required for the FPAN flow.
+   */
+  server_session_id?: string;
 }
 
 Cards.AggregateBalances = AggregateBalances;
