- Added MFA_AS_SERVICE as Application SignOn mode for the list_applications() operation.

- Added generic solution to the model_generic.mustache and generated SDK for the issue of deserialization of application.

Author: BinoyOza-okta

docs/ApplicationSignOnMode.md

@@ -1,6 +1,6 @@
 # ApplicationSignOnMode
 
-Authentication mode for the app  | signOnMode | Description | | ---------- | ----------- | | AUTO_LOGIN | Secure Web Authentication (SWA) | | BASIC_AUTH | HTTP Basic Authentication with Okta Browser Plugin | | BOOKMARK | Just a bookmark (no-authentication) | | BROWSER_PLUGIN | Secure Web Authentication (SWA) with Okta Browser Plugin | | OPENID_CONNECT | Federated Authentication with OpenID Connect (OIDC) | | SAML_1_1 | Federated Authentication with SAML 1.1 WebSSO (not supported for custom apps) | | SAML_2_0 | Federated Authentication with SAML 2.0 WebSSO | | SECURE_PASSWORD_STORE | Secure Web Authentication (SWA) with POST (plugin not required) | | WS_FEDERATION | Federated Authentication with WS-Federation Passive Requestor Profile |  Select the `signOnMode` for your custom app: 
+Authentication mode for the app  | signOnMode | Description | | ---------- | ----------- | | AUTO_LOGIN | Secure Web Authentication (SWA) | | BASIC_AUTH | HTTP Basic Authentication with Okta Browser Plugin | | BOOKMARK | Just a bookmark (no-authentication) | | BROWSER_PLUGIN | Secure Web Authentication (SWA) with Okta Browser Plugin | | OPENID_CONNECT | Federated Authentication with OpenID Connect (OIDC) | | SAML_1_1 | Federated Authentication with SAML 1.1 WebSSO (not supported for custom apps) | | SAML_2_0 | Federated Authentication with SAML 2.0 WebSSO | | SECURE_PASSWORD_STORE | Secure Web Authentication (SWA) with POST (plugin not required) | | WS_FEDERATION | Federated Authentication with WS-Federation Passive Requestor Profile | | MFA_AS_SERVICE | Application to use Okta's MFA as a service for RDP |  Select the `signOnMode` for your custom app: 
 
 ## Properties
 

okta/models/action_provider.py

@@ -115,6 +115,9 @@ def from_dict(cls, obj: Dict[str, Any]) -> Optional[Union[WorkflowActionProvider
         # Import from okta.models to ensure class identity consistency with lazy imports
         models = import_module("okta.models")
         if object_type == "WorkflowActionProvider":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.WorkflowActionProvider.from_dict(obj)
 
         raise ValueError(

okta/models/app_config.py

@@ -110,6 +110,9 @@ def from_dict(
         # Import from okta.models to ensure class identity consistency with lazy imports
         models = import_module("okta.models")
         if object_type == "AppConfigActiveDirectory":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AppConfigActiveDirectory.from_dict(obj)
 
         raise ValueError(

okta/models/application.py

@@ -50,6 +50,7 @@
     from okta.models.basic_auth_application import BasicAuthApplication
     from okta.models.bookmark_application import BookmarkApplication
     from okta.models.browser_plugin_application import BrowserPluginApplication
+    from okta.models.application import Application
     from okta.models.open_id_connect_application import OpenIdConnectApplication
     from okta.models.saml11_application import Saml11Application
     from okta.models.saml_application import SamlApplication
@@ -59,7 +60,7 @@
     from okta.models.ws_federation_application import WsFederationApplication
 
 
-class Application(BaseModel):
+class Application(BaseModel):   # noqa: F811
     """
     Application
     """  # noqa: E501
@@ -209,6 +210,7 @@ def features_validate_enum(cls, value):
         "BASIC_AUTH": "BasicAuthApplication",
         "BOOKMARK": "BookmarkApplication",
         "BROWSER_PLUGIN": "BrowserPluginApplication",
+        "MFA_AS_SERVICE": "Application",
         "OPENID_CONNECT": "OpenIdConnectApplication",
         "SAML_1_1": "Saml11Application",
         "SAML_2_0": "SamlApplication",
@@ -241,6 +243,7 @@ def from_json(cls, json_str: str) -> Optional[
             BasicAuthApplication,
             BookmarkApplication,
             BrowserPluginApplication,
+            Application,
             OpenIdConnectApplication,
             Saml11Application,
             SamlApplication,
@@ -339,6 +342,7 @@ def from_dict(cls, obj: Dict[str, Any]) -> Optional[
             BasicAuthApplication,
             BookmarkApplication,
             BrowserPluginApplication,
+            Application,
             OpenIdConnectApplication,
             Saml11Application,
             SamlApplication,
@@ -352,22 +356,54 @@ def from_dict(cls, obj: Dict[str, Any]) -> Optional[
         # Import from okta.models to ensure class identity consistency with lazy imports
         models = import_module("okta.models")
         if object_type == "AutoLoginApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AutoLoginApplication.from_dict(obj)
         if object_type == "BasicAuthApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.BasicAuthApplication.from_dict(obj)
         if object_type == "BookmarkApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.BookmarkApplication.from_dict(obj)
         if object_type == "BrowserPluginApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.BrowserPluginApplication.from_dict(obj)
+        if object_type == "Application":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
+            return models.Application.from_dict(obj)
         if object_type == "OpenIdConnectApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.OpenIdConnectApplication.from_dict(obj)
         if object_type == "Saml11Application":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.Saml11Application.from_dict(obj)
         if object_type == "SamlApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.SamlApplication.from_dict(obj)
         if object_type == "SecurePasswordStoreApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.SecurePasswordStoreApplication.from_dict(obj)
         if object_type == "WsFederationApplication":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.WsFederationApplication.from_dict(obj)
 
         raise ValueError(

okta/models/application_feature.py

@@ -143,8 +143,14 @@ def from_dict(
         # Import from okta.models to ensure class identity consistency with lazy imports
         models = import_module("okta.models")
         if object_type == "InboundProvisioningApplicationFeature":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.InboundProvisioningApplicationFeature.from_dict(obj)
         if object_type == "UserProvisioningApplicationFeature":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.UserProvisioningApplicationFeature.from_dict(obj)
 
         raise ValueError(

okta/models/application_sign_on_mode.py

@@ -36,7 +36,8 @@ class ApplicationSignOnMode(str, Enum):
     Federated Authentication with OpenID Connect (OIDC) | | SAML_1_1 | Federated Authentication with SAML 1.1 WebSSO (not
     supported for custom apps) | | SAML_2_0 | Federated Authentication with SAML 2.0 WebSSO | | SECURE_PASSWORD_STORE |
     Secure Web Authentication (SWA) with POST (plugin not required) | | WS_FEDERATION | Federated Authentication with
-    WS-Federation Passive Requestor Profile |  Select the `signOnMode` for your custom app:
+    WS-Federation Passive Requestor Profile | | MFA_AS_SERVICE | Application to use Okta's MFA as a service for RDP |
+    Select the `signOnMode` for your custom app:
     """
 
     """
@@ -51,6 +52,7 @@ class ApplicationSignOnMode(str, Enum):
     SAML_2_0 = "SAML_2_0"
     SECURE_PASSWORD_STORE = "SECURE_PASSWORD_STORE"
     WS_FEDERATION = "WS_FEDERATION"
+    MFA_AS_SERVICE = "MFA_AS_SERVICE"
 
     @classmethod
     def from_json(cls, json_str: str) -> Self:

okta/models/authenticator_base.py

@@ -230,38 +230,89 @@ def from_dict(cls, obj: Dict[str, Any]) -> Optional[
         # Import from okta.models to ensure class identity consistency with lazy imports
         models = import_module("okta.models")
         if object_type == "AuthenticatorKeyCustomApp":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyCustomApp.from_dict(obj)
         if object_type == "AuthenticatorKeyDuo":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyDuo.from_dict(obj)
         if object_type == "AuthenticatorKeyExternalIdp":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyExternalIdp.from_dict(obj)
         if object_type == "AuthenticatorKeyGoogleOtp":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyGoogleOtp.from_dict(obj)
         if object_type == "AuthenticatorKeyEmail":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyEmail.from_dict(obj)
         if object_type == "AuthenticatorKeyPassword":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyPassword.from_dict(obj)
         if object_type == "AuthenticatorKeyOktaVerify":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyOktaVerify.from_dict(obj)
         if object_type == "AuthenticatorKeyOnprem":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyOnprem.from_dict(obj)
         if object_type == "AuthenticatorKeyPhone":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyPhone.from_dict(obj)
         if object_type == "AuthenticatorKeySecurityKey":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeySecurityKey.from_dict(obj)
         if object_type == "AuthenticatorKeySecurityQuestion":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeySecurityQuestion.from_dict(obj)
         if object_type == "AuthenticatorKeySmartCard":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeySmartCard.from_dict(obj)
         if object_type == "AuthenticatorKeySymantecVip":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeySymantecVip.from_dict(obj)
         if object_type == "AuthenticatorKeyTac":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyTac.from_dict(obj)
         if object_type == "AuthenticatorKeyWebauthn":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyWebauthn.from_dict(obj)
         if object_type == "AuthenticatorKeyYubikey":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorKeyYubikey.from_dict(obj)
         if object_type == "AuthenticatorSimple":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorSimple.from_dict(obj)
 
         raise ValueError(

okta/models/authenticator_method_base.py

@@ -179,32 +179,74 @@ def from_dict(cls, obj: Dict[str, Any]) -> Optional[
         # Import from okta.models to ensure class identity consistency with lazy imports
         models = import_module("okta.models")
         if object_type == "AuthenticatorMethodWithVerifiableProperties":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodWithVerifiableProperties.from_dict(obj)
         if object_type == "AuthenticatorMethodWithVerifiableProperties":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodWithVerifiableProperties.from_dict(obj)
         if object_type == "AuthenticatorMethodSimple":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodSimple.from_dict(obj)
         if object_type == "AuthenticatorMethodWithVerifiableProperties":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodWithVerifiableProperties.from_dict(obj)
         if object_type == "AuthenticatorMethodOtp":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodOtp.from_dict(obj)
         if object_type == "AuthenticatorMethodSimple":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodSimple.from_dict(obj)
         if object_type == "AuthenticatorMethodPush":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodPush.from_dict(obj)
         if object_type == "AuthenticatorMethodSimple":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodSimple.from_dict(obj)
         if object_type == "AuthenticatorMethodSignedNonce":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodSignedNonce.from_dict(obj)
         if object_type == "AuthenticatorMethodSimple":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodSimple.from_dict(obj)
         if object_type == "AuthenticatorMethodTac":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodTac.from_dict(obj)
         if object_type == "AuthenticatorMethodTotp":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodTotp.from_dict(obj)
         if object_type == "AuthenticatorMethodSimple":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodSimple.from_dict(obj)
         if object_type == "AuthenticatorMethodWebAuthn":
+            # Check if the discriminator maps to the same class to avoid infinite recursion
+            if object_type == cls.__name__:
+                return cls.model_validate(obj)
             return models.AuthenticatorMethodWebAuthn.from_dict(obj)
 
         raise ValueError(