auth0 5.0.1 → 5.1.0

data/lib/auth0/api/v2/tickets.rb

@@ -15,9 +15,11 @@ module Auth0
         # @param identity [hash] Used to verify secondary, federated, and passwordless-email identities.
         #   * :user_id [string] user_id of the identity.
         #   * :provider [string] provider of the identity.
+        # @param client_id [string] client id
+        # @param organization_id [string] organization id
         #
         # @return [json] Returns the created ticket url.
-        def post_email_verification(user_id, result_url: nil, ttl_sec: nil, identity: nil)
+        def post_email_verification(user_id, result_url: nil, ttl_sec: nil, identity: nil, client_id: nil, organization_id: nil)
           if user_id.to_s.empty?
             raise Auth0::InvalidParameter, 'Must supply a valid user id to post an email verification'
           end
@@ -27,6 +29,8 @@ module Auth0
             result_url: result_url,
             ttl_sec: ttl_sec.is_a?(Integer) ? ttl_sec : nil
           }
+          request_params[:client_id] = client_id unless client_id.nil?
+          request_params[:organization_id] = organization_id unless organization_id.nil?
 
           if identity
             unless identity.is_a? Hash
@@ -53,6 +57,8 @@ module Auth0
         # @param includeEmailInRedirect [boolean] Whether or not we include the email as part of the returnUrl
         # in the reset_email
         # @param new_password [string] The password to be set for the user once the ticket is used.
+        # @param client_id [string] client id
+        # @param organization_id [string] organization id
         #
         # @return [json] Returns the created ticket url.
         def post_password_change(
@@ -63,7 +69,10 @@ module Auth0
             ttl_sec: nil,
             mark_email_as_verified: nil,
             includeEmailInRedirect: nil,
-            new_password: nil)
+            new_password: nil,
+            client_id: nil,
+            organization_id: nil
+          )
 
           booleans = [true, false]
           path = "#{tickets_path}/password-change"
@@ -77,6 +86,9 @@ module Auth0
             includeEmailInRedirect: booleans.include?(includeEmailInRedirect) ? includeEmailInRedirect : nil,
             new_password: new_password
           }
+          request_params[:client_id] = client_id unless client_id.nil?
+          request_params[:organization_id] = organization_id unless organization_id.nil?
+
           post(path, request_params)
         end
 

data/lib/auth0/api/v2/users.rb

@@ -308,6 +308,18 @@ module Auth0
           post "#{users_path}/#{user_id}/multifactor/actions/invalidate-remember-browser"
         end
 
+
+        # Get a list of organizations for a user.
+        #
+        # @param user_id [string] The user_id of the permissions to get.
+        #
+        # @return [json] Returns organizations for the given user_id.
+        def get_user_organizations(user_id)
+          raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
+
+          get "#{users_path}/#{user_id}/organizations"
+        end
+
         private
 
         # Users API path

data/lib/auth0/exception.rb

@@ -38,6 +38,8 @@ module Auth0
   class MissingUserId < Auth0::Exception; end
   # exception for unset client_id
   class MissingClientId < Auth0::Exception; end
+  # exception for unset organization_id
+  class MissingOrganizationId < Auth0::Exception; end
   # exception for an unset parameter
   class MissingParameter < Auth0::Exception; end
   # Api v2 access denied

data/lib/auth0/mixins/initializer.rb

@@ -18,6 +18,7 @@ module Auth0
         extend Auth0::Api::AuthenticationEndpoints
         @client_id = options[:client_id]
         @client_secret = options[:client_secret]
+        @organization = options[:organization]
         initialize_api(options)
       end
 
@@ -58,7 +59,8 @@ module Auth0
       def initialize_v2(options)
         extend Auth0::Api::V2
         @token = options[:access_token] || options[:token]
-        @token = api_token.token if @token.nil? && @client_id && @client_secret
+        api_identifier = options[:api_identifier] || "https://#{@domain}/api/v2/"
+        @token = api_token(audience: api_identifier).token if @token.nil? && @client_id && @client_secret
       end
 
       def api_v2?(options)

data/lib/auth0/mixins/validation.rb

@@ -100,11 +100,13 @@ module Auth0
           issuer = @context[:issuer]
           audience = @context[:audience]
           max_age = @context[:max_age]
+          org = @context[:organization]
 
           raise Auth0::InvalidParameter, 'Must supply a valid leeway' unless leeway.is_a?(Integer) && leeway >= 0
           raise Auth0::InvalidParameter, 'Must supply a valid nonce' unless nonce.nil? || !nonce.to_s.empty?
           raise Auth0::InvalidParameter, 'Must supply a valid issuer' unless issuer.nil? || !issuer.to_s.empty?
           raise Auth0::InvalidParameter, 'Must supply a valid audience' unless audience.nil? || !audience.to_s.empty?
+          raise Auth0::InvalidParameter, 'Must supply a valid organization' unless org.nil? || !org.to_s.empty?
 
           unless max_age.nil? || (max_age.is_a?(Integer) && max_age >= 0)
             raise Auth0::InvalidParameter, 'Must supply a valid max_age'
@@ -118,6 +120,7 @@ module Auth0
           validate_nonce(claims, nonce) if nonce
           validate_azp(claims, audience) if claims['aud'].is_a?(Array) && claims['aud'].count > 1
           validate_auth_time(claims, max_age, leeway) if max_age
+          validate_org(claims, org) if org
         end
         # rubocop:enable Metrics/MethodLength, Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
 
@@ -184,6 +187,17 @@ module Auth0
           end
         end
 
+        def validate_org(claims, expected)
+          unless claims.key?('org_id') && claims['org_id'].is_a?(String)
+            raise Auth0::InvalidIdToken, 'Organization Id (org_id) claim must be a string present in the ID token'
+          end
+
+          unless expected == claims['org_id']
+            raise Auth0::InvalidIdToken, "Organization Id (org_id) claim value mismatch in the ID token; expected \"#{expected}\","\
+                                         " found \"#{claims['org_id']}\""
+          end
+        end
+
         def validate_azp(claims, expected)
           unless claims.key?('azp') && claims['azp'].is_a?(String)
             raise Auth0::InvalidIdToken, 'Authorized Party (azp) claim must be a string present in the ID token'

data/lib/auth0/version.rb

@@ -1,4 +1,4 @@
 # current version of gem
 module Auth0
-  VERSION = '5.0.1'.freeze
+  VERSION = '5.1.0'.freeze
 end

data/spec/lib/auth0/api/v2/branding_spec.rb

@@ -0,0 +1,70 @@
+require 'spec_helper'
+describe Auth0::Api::V2::Branding do
+  before :all do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Auth0::Api::V2::Branding)
+    dummy_instance.extend(Auth0::Mixins::Initializer)
+    @instance = dummy_instance
+  end
+
+  context '.branding' do
+    it { expect(@instance).to respond_to(:branding) }
+
+    it 'is expected to call get /api/v2/branding' do
+      expect(@instance).to receive(:get).with('/api/v2/branding')
+      expect { @instance.branding }.not_to raise_error
+    end
+
+    it 'is expected to respond to a get_branding method' do
+      expect(@instance).to respond_to(:get_branding)
+    end
+  end
+
+  context '.patch_branding' do
+    it { expect(@instance).to respond_to(:patch_branding) }
+    it 'is expected to call post /api/v2/branding' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/branding',
+        template: 'Test'
+      )
+      expect { @instance.patch_branding({ template: 'Test' }) }.not_to raise_error
+    end
+
+    it 'is expected to respond to a get_branding method' do
+      expect(@instance).to respond_to(:update_branding)
+    end
+  end
+
+  context '.branding_templates_for_universal_login' do
+    it { expect(@instance).to respond_to(:branding) }
+
+    it 'is expected to call get /api/v2/branding/templates/universal-login' do
+      expect(@instance).to receive(:get).with('/api/v2/branding/templates/universal-login')
+      expect { @instance.branding_templates_for_universal_login }.not_to raise_error
+    end
+
+    it 'is expected to respond to a get_branding_templates_for_universal_login method' do
+      expect(@instance).to respond_to(:get_branding_templates_for_universal_login)
+    end
+  end
+
+  context '.put_branding_templates_for_universal_login' do
+    it { expect(@instance).to respond_to(:put_branding_templates_for_universal_login) }
+    it 'is expected to call put /api/v2/branding/templates/universal-login' do
+      expect(@instance).to receive(:put).with(
+        '/api/v2/branding/templates/universal-login', template: 'Template'
+      )
+      expect do
+        @instance.put_branding_templates_for_universal_login(template: 'Template')
+      end.not_to raise_error
+    end
+  end
+
+  context '.delete_branding_templates_for_universal_login' do
+    it { expect(@instance).to respond_to(:delete_branding_templates_for_universal_login) }
+    it 'is expected to call delete /api/v2/branding/templates/universal-login' do
+      expect(@instance).to receive(:delete).with('/api/v2/branding/templates/universal-login')
+      expect { @instance.delete_branding_templates_for_universal_login() }.not_to raise_error
+    end
+  end
+end

data/spec/lib/auth0/api/v2/connections_spec.rb

@@ -14,6 +14,7 @@ describe Auth0::Api::V2::Connections do
       expect(@instance).to receive(:get).with(
         '/api/v2/connections',
         strategy: nil,
+        name: nil,
         fields: nil,
         include_fields: nil,
         page: nil,
@@ -28,6 +29,7 @@ describe Auth0::Api::V2::Connections do
         include_fields: true,
         fields: 'name',
         strategy: nil,
+        name: nil,
         page: nil,
         per_page: nil
       )
@@ -42,6 +44,7 @@ describe Auth0::Api::V2::Connections do
         include_fields: true,
         fields: 'name,strategy',
         strategy: nil,
+        name: nil,
         page: nil,
         per_page: nil
       )
@@ -56,6 +59,7 @@ describe Auth0::Api::V2::Connections do
         page: 1,
         per_page: 10,
         strategy: nil,
+        name: nil,
         fields: nil,
         include_fields: nil
       )

data/spec/lib/auth0/api/v2/jobs_spec.rb

@@ -119,6 +119,17 @@ describe Auth0::Api::V2::Jobs do
       )
     end
 
+    it 'expect client to accept organization_id' do
+      expect(@instance).to receive(:post).with('/api/v2/jobs/verification-email',
+        user_id: 'user_id',
+        organization_id: 'org_id'
+      )
+
+      expect {
+        @instance.send_verification_email('user_id', organization_id: 'org_id')
+      }.not_to raise_error
+    end
+
     it 'should raise an error if the user_id is empty' do
       expect do
         @instance.send_verification_email('')

data/spec/lib/auth0/api/v2/organizations_spec.rb

@@ -0,0 +1,588 @@
+require 'spec_helper'
+describe Auth0::Api::V2::Organizations do
+  before :all do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Auth0::Api::V2::Organizations)
+    @instance = dummy_instance
+  end
+
+  context '.organizations' do
+    it 'is expected to respond to a organizations method' do
+      expect(@instance).to respond_to(:organizations)
+    end
+
+    it 'is expected to respond to a get_organizations method' do
+      expect(@instance).to respond_to(:get_organizations)
+    end
+
+    it 'is expected to get /api/v2/organizations' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations',
+        per_page: nil,
+        page: nil,
+        include_totals: nil
+      )
+      expect { @instance.organizations }.not_to raise_error
+    end
+
+    it 'is expected to get /api/v2/organizations with custom parameters' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations',
+        per_page: 10,
+        page: 1,
+        include_totals: true
+      )
+      expect do
+        @instance.organizations(
+          per_page: 10,
+          page: 1,
+          include_totals: true
+        )
+      end.not_to raise_error
+    end
+  end
+
+  context '.organization' do
+    it 'is expected to respond to a user method' do
+      expect(@instance).to respond_to(:organization)
+    end
+
+    it 'is expected to call get request to /api/v2/users/org_id' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id'
+      )
+      expect { @instance.organization('org_id') }.not_to raise_error
+    end
+
+    it 'is expected to raise an exception when the organization ID is empty' do
+      expect { @instance.organization(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+  end
+
+  context '.create_organization' do
+    it 'is expected to respond to a create_organization method' do
+      expect(@instance).to respond_to(:create_organization)
+    end
+
+    it 'is expected to post to /api/v2/organizations' do
+      expect(@instance).to receive(:post).with(
+        '/api/v2/organizations',
+          name: 'test_org'
+        )
+      expect do
+        @instance.create_organization(
+          name: 'test_org'
+        )
+      end.not_to raise_error
+    end
+  end
+
+  context '.delete_organization' do
+    it 'is expected to respond to a delete_organization method' do
+      expect(@instance).to respond_to :delete_organization
+    end
+
+    it 'is expected to call delete to /api/v2/organizations/org_id' do
+      expect(@instance).to receive(:delete).with('/api/v2/organizations/org_id')
+      expect { @instance.delete_organization('org_id') }.not_to raise_error
+    end
+
+    it 'is expected not to delete /api/v2/organizations if organization_id is blank' do
+      expect(@instance).not_to receive(:delete)
+      expect { @instance.delete_organization(nil) }.to raise_exception(
+        Auth0::MissingOrganizationId
+      )
+    end
+  end
+
+  context '.organization_by_name' do
+    it 'is expected to respond to a user method' do
+      expect(@instance).to respond_to(:organization_by_name)
+    end
+
+    it 'is expected to call get request to /api/v2/users/org_id' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/name/org_id'
+      )
+      expect { @instance.organization_by_name('org_id') }.not_to raise_error
+    end
+
+    it 'is expected to raise an exception when the organization ID is empty' do
+      expect { @instance.organization_by_name(nil) }.to raise_exception(Auth0::InvalidParameter)
+    end
+  end
+
+
+  context '.patch_organization' do
+    it 'is expected to respond to a patch_organization method' do
+      expect(@instance).to respond_to(:patch_organization)
+    end
+
+    it 'is expected to respond to a update_organization method' do
+      expect(@instance).to respond_to(:update_organization)
+    end
+
+    it 'is expected to patch /api/v2/organizations/org_id' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/organizations/org_id',
+        name: 'name'
+      )
+      @instance.patch_organization(
+        'org_id',
+        name: 'name'
+      )
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.patch_organization(nil, 'BODY') }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to raise an error when the body is empty' do
+      expect { @instance.patch_organization('org_id', nil) }.to raise_error 'Must supply a valid body'
+    end
+  end
+
+  context '.get_organizations_enabled_connections' do
+    it 'is expected to respond to a get_organizations_enabled_connections method' do
+      expect(@instance).to respond_to(:get_organizations_enabled_connections)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_enabled_connections(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to get enabled_connections for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/enabled_connections'
+      )
+      expect { @instance.get_organizations_enabled_connections('org_id') }.not_to raise_error
+    end
+
+    it 'is expected to get enabled_connections for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/enabled_connections'
+      )
+      expect do
+        @instance.get_organizations_enabled_connections('org_id')
+      end.not_to raise_error
+    end
+  end
+
+  context '.get_organizations_enabled_connection' do
+    it 'is expected to respond to a get_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:get_organizations_enabled_connection)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_enabled_connection(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_enabled_connection('org_id', nil) }.to raise_exception(Auth0::InvalidParameter)
+    end
+
+    it 'is expected to get enabled connection for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/enabled_connections/connection_id'
+      )
+      expect { @instance.get_organizations_enabled_connection('org_id', 'connection_id') }.not_to raise_error
+    end
+
+    it 'is expected to get enabled connection for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/enabled_connections/connection_id'
+      )
+      expect do
+        @instance.get_organizations_enabled_connection('org_id', 'connection_id')
+      end.not_to raise_error
+    end
+  end
+
+  context '.patch_organizations_enabled_connection' do
+    it 'is expected to respond to a patch_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:patch_organizations_enabled_connection)
+    end
+
+    it 'is expected to respond to a update_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:update_organizations_enabled_connection)
+    end
+
+    it 'is expected to patch /api/v2/organizations/org_id/enabled_connections/connection_id' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/organizations/org_id/enabled_connections/connection_id',
+        {
+          assign_membership_on_login: false
+        }
+      )
+      @instance.patch_organizations_enabled_connection(
+        'org_id',
+        'connection_id',
+        assign_membership_on_login: false
+      )
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.patch_organizations_enabled_connection(nil, 'BODY') }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to raise an error when the connection_id is empty' do
+      expect { @instance.patch_organizations_enabled_connection('org_id', nil) }.to raise_error 'Must supply a valid connection id'
+    end
+
+    it 'is expected to raise an error when assign_membership_on_login is nil' do
+      expect { @instance.patch_organizations_enabled_connection('org_id', 'connection_id') }.to raise_error 'Must supply a valid assign_membership_on_login value'
+    end
+  end
+
+  context '.create_organizations_enabled_connection' do
+    it 'is expected to respond to a create_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:create_organizations_enabled_connection)
+    end
+
+    it 'is expected to respond to a add_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:add_organizations_enabled_connection)
+    end
+
+    it 'is expected to post /api/v2/organizations/org_id/enabled_connections' do
+      expect(@instance).to receive(:post).with(
+        '/api/v2/organizations/org_id/enabled_connections',
+        {
+          assign_membership_on_login: true
+        }
+      )
+      @instance.create_organizations_enabled_connection('org_id', assign_membership_on_login: true)
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.create_organizations_enabled_connection(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+  end
+
+  context '.delete_organizations_enabled_connection' do
+    it 'is expected to respond to a delete_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:delete_organizations_enabled_connection)
+    end
+
+    it 'is expected to respond to a remove_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:remove_organizations_enabled_connection)
+    end
+
+    it 'is expected to delete /api/v2/organizations/org_id/enabled_connections/connection_id' do
+      expect(@instance).to receive(:delete).with(
+        '/api/v2/organizations/org_id/enabled_connections/connection_id'
+      )
+      @instance.delete_organizations_enabled_connection('org_id', 'connection_id')
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.delete_organizations_enabled_connection(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+    
+    it 'is expected to raise an exception when the connection id is empty' do
+      expect { @instance.delete_organizations_enabled_connection('org_id', nil) }.to raise_error 'Must supply a valid connection id'
+    end
+  end
+
+  context '.get_organizations_invites' do
+    it 'is expected to respond to a get_organizations_invites method' do
+      expect(@instance).to respond_to(:get_organizations_invites)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_invites(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to get invitations for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/invitations'
+      )
+      expect { @instance.get_organizations_invites('org_id') }.not_to raise_error
+    end
+
+    it 'is expected to get invitations for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/invitations'
+      )
+      expect do
+        @instance.get_organizations_invites('org_id')
+      end.not_to raise_error
+    end
+  end
+
+  context '.get_organizations_invite' do
+    it 'is expected to respond to a get_organizations_invite method' do
+      expect(@instance).to respond_to(:get_organizations_invite)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_invite(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_invite('org_id', nil) }.to raise_exception(Auth0::InvalidParameter)
+    end
+
+    it 'is expected to get enabled connection for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/invitations/invite_id'
+      )
+      expect { @instance.get_organizations_invite('org_id', 'invite_id') }.not_to raise_error
+    end
+
+    it 'is expected to get enabled connection for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/invitations/invite_id'
+      )
+      expect do
+        @instance.get_organizations_invite('org_id', 'invite_id')
+      end.not_to raise_error
+    end
+  end
+
+  context '.patch_organizations_enabled_connection' do
+    it 'is expected to respond to a patch_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:patch_organizations_enabled_connection)
+    end
+
+    it 'is expected to respond to a update_organizations_enabled_connection method' do
+      expect(@instance).to respond_to(:update_organizations_enabled_connection)
+    end
+
+    it 'is expected to patch /api/v2/organizations/org_id/enabled_connections/connection_id' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/organizations/org_id/enabled_connections/connection_id',
+        {
+          assign_membership_on_login: false
+        }
+      )
+      @instance.patch_organizations_enabled_connection(
+        'org_id',
+        'connection_id',
+        assign_membership_on_login: false
+      )
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.patch_organizations_enabled_connection(nil, 'BODY') }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to raise an error when the connection_id is empty' do
+      expect { @instance.patch_organizations_enabled_connection('org_id', nil) }.to raise_error 'Must supply a valid connection id'
+    end
+
+    it 'is expected to raise an error when assign_membership_on_login is nil' do
+      expect { @instance.patch_organizations_enabled_connection('org_id', 'connection_id') }.to raise_error 'Must supply a valid assign_membership_on_login value'
+    end
+  end
+
+  context '.create_organizations_invite' do
+    it 'is expected to respond to a create_organizations_invite method' do
+      expect(@instance).to respond_to(:create_organizations_invite)
+    end
+
+    it 'is expected to respond to a add_organizations_invite method' do
+      expect(@instance).to respond_to(:add_organizations_invite)
+    end
+
+    it 'is expected to post /api/v2/organizations/org_id/invitations' do
+      expect(@instance).to receive(:post).with(
+        '/api/v2/organizations/org_id/invitations',
+        {
+          ttl_sec: 60000
+        }
+      )
+      @instance.create_organizations_invite('org_id', ttl_sec: 60000)
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.create_organizations_invite(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+  end
+
+  context '.delete_organizations_invite' do
+    it 'is expected to respond to a delete_organizations_invite method' do
+      expect(@instance).to respond_to(:delete_organizations_invite)
+    end
+
+    it 'is expected to respond to a remove_organizations_invite method' do
+      expect(@instance).to respond_to(:remove_organizations_invite)
+    end
+
+    it 'is expected to delete /api/v2/organizations/org_id/invitations/invite_id' do
+      expect(@instance).to receive(:delete).with(
+        '/api/v2/organizations/org_id/invitations/invite_id'
+      )
+      @instance.delete_organizations_invite('org_id', 'invite_id')
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.delete_organizations_invite(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+    
+    it 'is expected to raise an exception when the invitation id is empty' do
+      expect { @instance.delete_organizations_invite('org_id', nil) }.to raise_error 'Must supply a valid invitation id'
+    end
+  end
+
+  context '.get_organizations_members' do
+    it 'is expected to respond to a get_organizations_members method' do
+      expect(@instance).to respond_to(:get_organizations_members)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_members(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to get invitations for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/members'
+      )
+      expect { @instance.get_organizations_members('org_id') }.not_to raise_error
+    end
+
+    it 'is expected to get members for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/members'
+      )
+      expect do
+        @instance.get_organizations_members('org_id')
+      end.not_to raise_error
+    end
+  end
+
+  context '.create_organizations_members' do
+    it 'is expected to respond to a create_organizations_members method' do
+      expect(@instance).to respond_to(:create_organizations_members)
+    end
+
+    it 'is expected to respond to a add_organizations_members method' do
+      expect(@instance).to respond_to(:add_organizations_members)
+    end
+
+    it 'is expected to post /api/v2/organizations/org_id/members' do
+      expect(@instance).to receive(:post).with(
+        '/api/v2/organizations/org_id/members',
+        {
+          members: ['123', '456']
+        }
+      )
+      @instance.create_organizations_members('org_id', ['123', '456'])
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.create_organizations_members(nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+  end
+
+  context '.delete_organizations_members' do
+    it 'is expected to respond to a delete_organizations_members method' do
+      expect(@instance).to respond_to(:delete_organizations_members)
+    end
+
+    it 'is expected to respond to a remove_organizations_members method' do
+      expect(@instance).to respond_to(:remove_organizations_members)
+    end
+
+    it 'is expected to delete /api/v2/organizations/org_id/members' do
+      expect(@instance).to receive(:delete).with(
+        '/api/v2/organizations/org_id/members', {
+          members: ['123', '456']
+        }
+      )
+      @instance.delete_organizations_members('org_id', ['123', '456'])
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.delete_organizations_members(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+    
+    it 'is expected to raise an exception when the invitation id is empty' do
+      expect { @instance.delete_organizations_members('org_id', []) }.to raise_error 'Must supply an array of member ids'
+    end
+  end
+
+  context '.get_organizations_member_roles' do
+    it 'is expected to respond to a get_organizations_member_roles method' do
+      expect(@instance).to respond_to(:get_organizations_member_roles)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_member_roles(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+
+    it 'is expected to raise an exception when the org ID is empty' do
+      expect { @instance.get_organizations_member_roles('org_id', nil) }.to raise_exception(Auth0::InvalidParameter)
+    end
+
+    it 'is expected to get roles for a member in an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/members/user_id/roles'
+      )
+      expect { @instance.get_organizations_member_roles('org_id', 'user_id') }.not_to raise_error
+    end
+
+    it 'is expected to get members for an org' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/organizations/org_id/members/user_id/roles'
+      )
+      expect do
+        @instance.get_organizations_member_roles('org_id', 'user_id')
+      end.not_to raise_error
+    end
+  end
+
+  context '.create_organizations_member_roles' do
+    it 'is expected to respond to a create_organizations_member_roles method' do
+      expect(@instance).to respond_to(:create_organizations_member_roles)
+    end
+
+    it 'is expected to respond to a add_organizations_member_roles method' do
+      expect(@instance).to respond_to(:add_organizations_member_roles)
+    end
+
+    it 'is expected to post /api/v2/organizations/org_id/members/user_id/roles' do
+      expect(@instance).to receive(:post).with(
+        '/api/v2/organizations/org_id/members/user_id/roles',
+        {
+          roles: ['123', '456']
+        }
+      )
+      @instance.create_organizations_member_roles('org_id', 'user_id', ['123', '456'])
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.create_organizations_member_roles(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+  end
+
+  context '.delete_organizations_member_roles' do
+    it 'is expected to respond to a delete_organizations_member_roles method' do
+      expect(@instance).to respond_to(:delete_organizations_member_roles)
+    end
+
+    it 'is expected to respond to a remove_organizations_member_roles method' do
+      expect(@instance).to respond_to(:remove_organizations_member_roles)
+    end
+
+    it 'is expected to delete /api/v2/organizations/org_id/members/user_id/roles' do
+      expect(@instance).to receive(:delete).with(
+        '/api/v2/organizations/org_id/members/user_id/roles', {
+          roles: ['123', '456']
+        }
+      )
+      @instance.delete_organizations_member_roles('org_id', 'user_id', ['123', '456'])
+    end
+
+    it 'is expected to raise an exception when the organization id is empty' do
+      expect { @instance.delete_organizations_member_roles(nil, nil) }.to raise_exception(Auth0::MissingOrganizationId)
+    end
+    
+    it 'is expected to raise an exception when the invitation id is empty' do
+      expect { @instance.delete_organizations_member_roles('org_id', nil, nil) }.to raise_error 'Must supply a valid user id'
+    end
+
+    it 'is expected to raise an exception when the invitation id is empty' do
+      expect { @instance.delete_organizations_member_roles('org_id', 'user_id') }.to raise_error 'Must supply an array of role ids'
+    end
+  end
+end