feat(types,clerkjs,backend): Add support for enterprise_sso strategy

[Nikpolik]

Description

This PR adds support for the new enterprise_sso strategy for signing in and signing up.

This strategy supersedes SAML to provide a single strategy as the entry point for Enterprise Single Sign On regardless of the underlying protocol used to authenticate the user. For now there are two new types of connections that are supported in addition to SAML, Custom OAuth and EASIE (multi-tenant OAuth).

This new strategy will is available from API version 2024-10-01 and after because the way the API responds for Sign In's with an email address that matches a SAML connection changes.

From this version and onwards the API will respond with a status of needs_first_factor, the only strategy that will be included in supported first factors is enterprise_sso and the email address that matched will be returned in the identifier field. This change was made to make a bit clear the next step required.

Changes

1. Include enterprise_sso in responses and request types.
2. Update Sign In response handling to take in to account enterprise_sso in supported first factors.
3. Update Sign Up response handling to take in to account enterprise_sso in missing fields
4. Update the SUPPORTED_API_VERSION constant to 2024-10-01

API Version 2024-10-01

Besides this change updating the version to 2024-10-01 will also enable the email's for Sign Ins from new clients feature.

Checklist

• pnpm test runs as expected.
• pnpm build runs as expected.
• (If applicable) JSDoc comments have been added or updated for any package exports
• (If applicable) Documentation has been updated (TODO)

Type of change

• 🐛 Bug fix
• 🌟 New feature
• 🔨 Breaking change
• 📖 Refactoring / dependency upgrade / documentation
• other:

[changeset-bot]

🦋 Changeset detected

Latest commit: 4af970e

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 22 packages

Name	Type
@clerk/clerk-js	Minor
@clerk/types	Patch
@clerk/backend	Patch
@clerk/chrome-extension	Patch
@clerk/clerk-expo	Patch
@clerk/astro	Patch
@clerk/elements	Patch
@clerk/expo-passkeys	Patch
@clerk/express	Patch
@clerk/fastify	Patch
@clerk/localizations	Patch
@clerk/nextjs	Patch
@clerk/nuxt	Patch
@clerk/clerk-react	Patch
@clerk/remix	Patch
@clerk/clerk-sdk-node	Patch
@clerk/shared	Patch
@clerk/tanstack-start	Patch
@clerk/testing	Patch
@clerk/themes	Patch
@clerk/ui	Patch
@clerk/vue	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[LauraBeatris]

javascript/packages/clerk-js/src/ui/components/UserProfile/AccountPage.tsx

Line 23 in a97a830

const showEnterpriseAccounts = user && user.enterpriseAccounts.length > 0;

@Nikpolik Could we update showEnterpriseAccounts here to check for userSettings.enteprise_sso.enabled

We're already checking for active accounts within EnterpriseAccountsSection, so it's not a bug, but better to explicitly check for enterprise_sso on the parent component as another layer of safety.

If tests start failing, we should probably introduce a withEnterpriseSso test helper.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
clerk-js-sandbox	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Nov 27, 2024 4:54pm

[LauraBeatris]

🔧 We should mark SamlStrategy as deprecated in favor of EnterpriseSSOStrategy:

/**
 * @deprecated Use `EnterpriseSSOStrategy` instead
 */
export type SamlStrategy = 'saml';

[Nikpolik]

Fixed f9c2194

Thanks for catching this, we need to mention it in the API docs as well I'll update them!

[LauraBeatris]

Good catch on the docs, we'll need to update it here:

https://github.com/clerk/clerk-docs/blob/3a68d1a415b9928f69b01afbb8936bcc719a877c/docs/custom-flows/saml-connections.mdx?plain=1#L47

[LauraBeatris]

Just need to update the changesets but overall looks good to me 👍🏻