auth0 5.4.0 → 5.7.0

data/Gemfile.lock

@@ -0,0 +1,233 @@
+PATH
+  remote: .
+  specs:
+    auth0 (5.7.0)
+      addressable (~> 2.8)
+      jwt (~> 2.2)
+      rest-client (~> 2.1)
+      retryable (~> 3.0)
+      zache (~> 0.12)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    actionpack (7.0.2.2)
+      actionview (= 7.0.2.2)
+      activesupport (= 7.0.2.2)
+      rack (~> 2.0, >= 2.2.0)
+      rack-test (>= 0.6.3)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.0, >= 1.2.0)
+    actionview (7.0.2.2)
+      activesupport (= 7.0.2.2)
+      builder (~> 3.1)
+      erubi (~> 1.4)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.1, >= 1.2.0)
+    activesupport (7.0.2.2)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+    addressable (2.8.0)
+      public_suffix (>= 2.0.2, < 5.0)
+    ast (2.4.2)
+    builder (3.2.4)
+    codecov (0.6.0)
+      simplecov (>= 0.15, < 0.22)
+    coderay (1.1.3)
+    concurrent-ruby (1.1.9)
+    coveralls (0.7.1)
+      multi_json (~> 1.3)
+      rest-client
+      simplecov (>= 0.7)
+      term-ansicolor
+      thor
+    crack (0.4.5)
+      rexml
+    crass (1.0.6)
+    diff-lcs (1.5.0)
+    docile (1.4.0)
+    domain_name (0.5.20190701)
+      unf (>= 0.0.5, < 1.0.0)
+    dotenv (2.7.6)
+    dotenv-rails (2.7.6)
+      dotenv (= 2.7.6)
+      railties (>= 3.2)
+    erubi (1.10.0)
+    faker (2.19.0)
+      i18n (>= 1.6, < 2)
+    ffi (1.15.5)
+    formatador (1.1.0)
+    fuubar (2.5.1)
+      rspec-core (~> 3.0)
+      ruby-progressbar (~> 1.4)
+    gem-release (0.7.4)
+    guard (2.17.0)
+      formatador (>= 0.2.4)
+      listen (>= 2.7, < 4.0)
+      lumberjack (>= 1.0.12, < 2.0)
+      nenv (~> 0.1)
+      notiffany (~> 0.0)
+      pry (>= 0.9.12)
+      shellany (~> 0.0)
+      thor (>= 0.18.1)
+    guard-compat (1.2.1)
+    guard-rspec (4.7.3)
+      guard (~> 2.1)
+      guard-compat (~> 1.1)
+      rspec (>= 2.99.0, < 4.0)
+    hashdiff (1.0.1)
+    http-accept (1.7.0)
+    http-cookie (1.0.4)
+      domain_name (~> 0.5)
+    i18n (1.10.0)
+      concurrent-ruby (~> 1.0)
+    jwt (2.3.0)
+    listen (3.7.1)
+      rb-fsevent (~> 0.10, >= 0.10.3)
+      rb-inotify (~> 0.9, >= 0.9.10)
+    loofah (2.14.0)
+      crass (~> 1.0.2)
+      nokogiri (>= 1.5.9)
+    lumberjack (1.2.8)
+    method_source (0.9.2)
+    mime-types (3.4.1)
+      mime-types-data (~> 3.2015)
+    mime-types-data (3.2022.0105)
+    mini_portile2 (2.7.1)
+    minitest (5.15.0)
+    multi_json (1.15.0)
+    nenv (0.3.0)
+    netrc (0.11.0)
+    nokogiri (1.13.1)
+      mini_portile2 (~> 2.7.0)
+      racc (~> 1.4)
+    notiffany (0.1.3)
+      nenv (~> 0.1)
+      shellany (~> 0.0)
+    parallel (1.21.0)
+    parser (3.1.0.0)
+      ast (~> 2.4.1)
+    pry (0.12.2)
+      coderay (~> 1.1.0)
+      method_source (~> 0.9.0)
+    pry-nav (0.3.0)
+      pry (>= 0.9.10, < 0.13.0)
+    public_suffix (4.0.6)
+    racc (1.6.0)
+    rack (2.2.3)
+    rack-test (0.8.3)
+      rack (>= 1.0, < 3)
+    rails-dom-testing (2.0.3)
+      activesupport (>= 4.2.0)
+      nokogiri (>= 1.6)
+    rails-html-sanitizer (1.4.2)
+      loofah (~> 2.3)
+    railties (7.0.2.2)
+      actionpack (= 7.0.2.2)
+      activesupport (= 7.0.2.2)
+      method_source
+      rake (>= 12.2)
+      thor (~> 1.0)
+      zeitwerk (~> 2.5)
+    rainbow (3.1.1)
+    rake (13.0.6)
+    rb-fsevent (0.11.1)
+    rb-inotify (0.10.1)
+      ffi (~> 1.0)
+    regexp_parser (2.2.1)
+    rest-client (2.1.0)
+      http-accept (>= 1.7.0, < 2.0)
+      http-cookie (>= 1.0.2, < 2.0)
+      mime-types (>= 1.16, < 4.0)
+      netrc (~> 0.8)
+    retryable (3.0.5)
+    rexml (3.2.5)
+    rspec (3.11.0)
+      rspec-core (~> 3.11.0)
+      rspec-expectations (~> 3.11.0)
+      rspec-mocks (~> 3.11.0)
+    rspec-core (3.11.0)
+      rspec-support (~> 3.11.0)
+    rspec-expectations (3.11.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.11.0)
+    rspec-mocks (3.11.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.11.0)
+    rspec-support (3.11.0)
+    rubocop (1.25.1)
+      parallel (~> 1.10)
+      parser (>= 3.1.0.0)
+      rainbow (>= 2.2.2, < 4.0)
+      regexp_parser (>= 1.8, < 3.0)
+      rexml
+      rubocop-ast (>= 1.15.1, < 2.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 3.0)
+    rubocop-ast (1.15.2)
+      parser (>= 3.0.1.1)
+    rubocop-rails (2.13.2)
+      activesupport (>= 4.2.0)
+      rack (>= 1.1)
+      rubocop (>= 1.7.0, < 2.0)
+    ruby-progressbar (1.11.0)
+    shellany (0.0.1)
+    simplecov (0.21.2)
+      docile (~> 1.1)
+      simplecov-html (~> 0.11)
+      simplecov_json_formatter (~> 0.1)
+    simplecov-html (0.12.3)
+    simplecov_json_formatter (0.1.4)
+    sync (0.5.0)
+    term-ansicolor (1.7.1)
+      tins (~> 1.0)
+    terminal-notifier-guard (1.7.0)
+    thor (1.2.1)
+    timecop (0.9.4)
+    tins (1.31.0)
+      sync
+    tzinfo (2.0.4)
+      concurrent-ruby (~> 1.0)
+    unf (0.1.4)
+      unf_ext
+    unf_ext (0.0.8)
+    unicode-display_width (2.1.0)
+    vcr (6.0.0)
+    webmock (3.14.0)
+      addressable (>= 2.8.0)
+      crack (>= 0.3.2)
+      hashdiff (>= 0.4.0, < 2.0.0)
+    zache (0.12.0)
+    zeitwerk (2.5.4)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  auth0!
+  bundler
+  codecov
+  coveralls
+  dotenv-rails (~> 2.0)
+  faker (~> 2.0)
+  fuubar (~> 2.0)
+  gem-release (~> 0.7)
+  guard-rspec (~> 4.5)
+  pry (~> 0.10)
+  pry-nav (~> 0.2)
+  rack (~> 2.1)
+  rack-test (~> 0.6)
+  rake (~> 13.0)
+  rspec (~> 3.5)
+  rubocop
+  rubocop-rails
+  simplecov
+  terminal-notifier-guard
+  timecop
+  vcr
+  webmock
+
+BUNDLED WITH
+   1.17.2

data/README.md

@@ -77,6 +77,10 @@ class AllUsersController < ApplicationController
       # Otherwise, you can pass in a Management API token directly for testing or temporary
       # access using the key below.
       # token: ENV['AUTH0_RUBY_API_TOKEN'],
+      #
+      # When passing a token, you can also specify when the token expires in seconds from epoch. Otherwise, expiry is set
+      # by default to an hour from now.
+      # token_expires_at: Time.now.to_i + 86400,
       domain: ENV['AUTH0_RUBY_DOMAIN'],
       api_version: 2,
       timeout: 15 # optional, defaults to 10
@@ -98,6 +102,12 @@ Finally, we'll add a view to display the results:
 
 This should show the parameters passed to the `users` method and a list of users that matched the query (or an empty array if none).
 
+### Token management
+
+If `token` is omitted, the SDK will attempt to fetch a new token using the `client_credentials` grant, provided that `client_id` and `client_secret` are provided in the configuration. Once the token is about to expire (or has already expired), a new token will be fetched and cached for future calls.
+
+For this to work, ensure your application can make a Client Credentials grant (Application settings in Auth0 > Advanced > Grant Types tab) and that the application is authorized for the Management API: https://auth0.com/docs/api-auth/config/using-the-auth0-dashboard
+
 ## Authentication
 
 In addition to the Management API, this SDK also provides access to [Authentication API](https://auth0.com/docs/api/authentication) endpoints with the `Auth0::API::AuthenticationEndpoints` module. For basic login capability, we suggest using our OmniAuth stategy [detailed here](https://auth0.com/docs/quickstart/webapp/rails/01-login). Other authentication tasks currently supported are:
@@ -117,14 +127,6 @@ Please note that this module implements endpoints that might be deprecated for n
 
 [Organizations](https://auth0.com/docs/organizations) is a set of features that provide better support for developers who build and maintain SaaS and Business-to-Business (B2B) applications.
 
-Using Organizations, you can:
-
-- Represent teams, business customers, partner companies, or any logical grouping of users that should have different ways of accessing your applications, as organizations.
-- Manage their membership in a variety of ways, including user invitation.
-- Configure branded, federated login flows for each organization.
-- Implement role-based access control, such that users can have different roles when authenticating in the context of different organizations.
-- Build administration capabilities into your products, using Organizations APIs, so that those businesses can manage their own organizations.
-
 Note that Organizations is currently only available to customers on our Enterprise and Startup subscription plans.
 
 #### Logging in with an Organization

data/auth0.gemspec

@@ -16,10 +16,11 @@ Gem::Specification.new do |s|
   s.executables   = `git ls-files -- bin/*`.split("\n").map { |f| File.basename(f) }
   s.require_paths = ['lib']
 
-  s.add_runtime_dependency 'rest-client', '~> 2.0.2' #2.1.0 has breaking changes
+  s.add_runtime_dependency 'rest-client', '~> 2.1'
   s.add_runtime_dependency 'jwt', '~> 2.2'
   s.add_runtime_dependency 'zache', '~> 0.12'
   s.add_runtime_dependency 'addressable', '~> 2.8'
+  s.add_runtime_dependency 'retryable', '~> 3.0'
 
   s.add_development_dependency 'bundler'
   s.add_development_dependency 'rake', '~> 13.0'

data/lib/auth0/api/authentication_endpoints.rb

@@ -22,16 +22,14 @@ module Auth0
         organization: @organization,
         audience: nil
       )
-
         request_params = {
           grant_type: 'client_credentials',
           client_id: client_id,
           client_secret: client_secret,
-          audience: audience,
-          organization: organization
+          audience: audience
         }
 
-        response = post('/oauth/token', request_params)
+        response = request_with_retry(:post, '/oauth/token', request_params)
         ::Auth0::ApiToken.new(response['access_token'], response['scope'], response['expires_in'])
       end
 
@@ -58,7 +56,7 @@ module Auth0
           code: code,
           redirect_uri: redirect_uri
         }
-        ::Auth0::AccessToken.from_response post('/oauth/token', request_params)
+        ::Auth0::AccessToken.from_response request_with_retry(:post, '/oauth/token', request_params)
       end
 
       # Get access and ID tokens using a refresh token.
@@ -83,7 +81,7 @@ module Auth0
           client_secret: client_secret,
           refresh_token: refresh_token
         }
-        ::Auth0::AccessToken.from_response post('/oauth/token', request_params)
+        ::Auth0::AccessToken.from_response request_with_retry(:post, '/oauth/token', request_params)
       end
 
       # rubocop:disable Metrics/ParameterLists
@@ -123,7 +121,7 @@ module Auth0
           audience: audience,
           grant_type: realm ? 'http://auth0.com/oauth/grant-type/password-realm' : 'password'
         }
-        ::Auth0::AccessToken.from_response post('/oauth/token', request_params)
+        ::Auth0::AccessToken.from_response request_with_retry(:post, '/oauth/token', request_params)
       end
       # rubocop:enable Metrics/ParameterLists
 
@@ -143,16 +141,18 @@ module Auth0
           connection: connection_name,
           client_id: @client_id
         }
-        post('/dbconnections/signup', request_params)
+
+        request_with_retry(:post, '/dbconnections/signup', request_params)
       end
 
       # Change a user's password or trigger a password reset email.
       # @see https://auth0.com/docs/api/authentication#change-password
       # @see https://auth0.com/docs/connections/database/password-change
       # @param email [string] User's current email
-      # @param password [string] User's new password; empty to trigger a
-      #   password reset email
+      # @param password [string] User's new password. This is only available
+      #   on legacy tenants with change password v1 flow enabled
       # @param connection_name [string] Database connection name
+      # @deprecated Use {#password_reset} instead.
       def change_password(email, password, connection_name = UP_AUTH)
         raise Auth0::InvalidParameter, 'Must supply a valid email' if email.to_s.empty?
 
@@ -162,7 +162,29 @@ module Auth0
           connection: connection_name,
           client_id: @client_id
         }
-        post('/dbconnections/change_password', request_params)
+
+        request_with_retry(:post, '/dbconnections/change_password', request_params)
+      end
+
+      # Trigger a password reset email.
+      # @see https://auth0.com/docs/api/authentication#change-password
+      # @see https://auth0.com/docs/connections/database/password-change
+      # @param email [string] User's current email
+      # @param password [string] User's new password; empty to trigger a
+      #   password reset email
+      # @param connection_name [string] Database connection name
+      # @param client_id [string] Client ID override (to allow forwarding
+      #   to a different application's login URI on password reset success page)
+      def reset_password(email, connection_name = UP_AUTH, client_id = @client_id)
+        raise Auth0::InvalidParameter, 'Must supply a valid email' if email.to_s.empty?
+
+        request_params = {
+          email: email,
+          connection: connection_name,
+          client_id: client_id
+        }
+
+        request_with_retry(:post, '/dbconnections/change_password', request_params)
       end
 
       # Start Passwordless email login flow.
@@ -182,7 +204,8 @@ module Auth0
           client_id: @client_id,
           client_secret: @client_secret
         }
-        post('/passwordless/start', request_params)
+
+        request_with_retry(:post, '/passwordless/start', request_params)
       end
 
       # Start Passwordless SMS login flow.
@@ -198,28 +221,29 @@ module Auth0
           client_id: @client_id,
           client_secret: @client_secret
         }
-        post('/passwordless/start', request_params)
+
+        request_with_retry(:post, '/passwordless/start', request_params)
       end
 
       # Retrive SAML 2.0 metadata XML for an Application.
       # @see https://auth0.com/docs/api/authentication#get-metadata
       # @return [xml] SAML 2.0 metadata
       def saml_metadata
-        get("/samlp/metadata/#{@client_id}")
+        request_with_retry(:get, "/samlp/metadata/#{@client_id}")
       end
 
       # Retrieve WS-Federation metadata XML for a tenant.
       # @see https://auth0.com/docs/api/authentication#get-metadata36
       # @return [xml] WS-Federation metadata
       def wsfed_metadata
-        get('/wsfed/FederationMetadata/2007-06/FederationMetadata.xml')
+        request_with_retry(:get, '/wsfed/FederationMetadata/2007-06/FederationMetadata.xml')
       end
 
       # Return the user information based on the Auth0 access token.
       # @see https://auth0.com/docs/api/authentication#get-user-info
       # @return [json] User information based on the Auth0 access token
       def userinfo(access_token)
-        get('/userinfo', {}, 'Authorization' => "Bearer #{access_token}")
+        request_with_retry(:get, '/userinfo', {}, 'Authorization' => "Bearer #{access_token}")
       end
 
       # Return an authorization URL.

data/lib/auth0/api/v2/actions.rb

@@ -0,0 +1,210 @@
+module Auth0
+  module Api
+    module V2
+      # Methods to use the actions endpoints
+      module Actions
+        include Auth0::Mixins::Validation
+
+        attr_reader :actions_path
+
+        # Get all actions.
+        # @see https://auth0.com/docs/api/management/v2#!/Actions/get_actions
+        # @param trigger_id [string] An actions extensibility point.
+        # @param action_name [string] The name of the action to retrieve.
+        # @param deployed [boolean] filter to only retrieve actions that are deployed.
+        # @param per_page [integer] The amount of entries per page. Default: 50. Max value: 100.
+        # @param page [integer] The page number. Zero based.
+        # @param installed [boolean] When true, return only installed actions. When false, return only custom actions. Returns all actions by default.
+        # @return [json] Actions and pagination info
+        def actions(trigger_id, action_name, deployed: nil, per_page: nil, page: nil, installed: nil)
+          raise Auth0::MissingTriggerId, 'Must supply a valid trigger_id' if trigger_id.to_s.empty?
+          raise Auth0::MissingActionName, 'Must supply a valid action_name' if action_name.to_s.empty?
+
+          request_params = {
+            trigger_id: trigger_id,
+            action_name: action_name,
+            deployed: deployed,
+            per_page: per_page,
+            page: page,
+            installed: installed
+          }
+          path = "#{actions_path}/actions"
+          get(path, request_params)
+        end
+        alias get_actions actions
+
+        # Create a new action.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/post_action
+        # @param body [hash] See https://auth0.com/docs/api/management/v2/#!/actions/post_action for available options
+        # @return [json] Returns the created action.
+        def create_action(body = {})
+          post(actions_path, body)
+        end
+
+        # Retrieve the set of triggers currently available within actions. A trigger is an extensibility point to which actions can be bound.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/get_triggers
+        #
+        # @return [json] Returns triggers of the action
+        def actions_triggers
+          path = "#{actions_path}/triggers"
+          get(path)
+        end
+
+        # Get an action by id.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/get_action
+        # @param action_id [string] The action_id of the user to retrieve.
+        #
+        # @return [json] Returns the action with the given action_id if it exists.
+        def action(action_id)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          path = "#{actions_path}/actions/#{action_id}"
+          get(path)
+        end
+        alias get_action action
+
+
+        # Deletes a single action given its id
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/delete_action
+        # @param action_id [string] The action ID
+        # @param force [boolean] Force action deletion detaching bindings (defaults to false)
+        def delete_action(action_id, force=false)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          path = "#{actions_path}/actions/#{action_id}"
+          delete(path, { force: force })
+        end
+
+        # Update an existing action.
+        # @see https://auth0.com/docs/api/management/v2/#!/Actions/patch_action
+        # @param action_id [string] The action ID
+        # @param body [hash] The optional parameters to update.
+        #
+        # @return [json] Returns the updated user.
+        def patch_action(action_id, body)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          raise Auth0::InvalidParameter, 'Must supply a valid body' if body.to_s.empty? || body.empty?
+          path = "#{actions_path}/actions/#{action_id}"
+          patch(path, body)
+        end
+        alias update_action patch_action
+
+        # Retrieve information about a specific execution of a trigger.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/get_action
+        # @param execution_id [string] The ID of the exeution to retrieve.
+        #
+        # @return [json] Returns the action with the given execution_id if it exists.
+        def execution(execution_id)
+          raise Auth0::MissingExecutionId, 'Must supply a valid execution_id' if execution_id.to_s.empty?
+          path = "#{actions_path}/executions/#{execution_id}"
+          get(path)
+        end
+        alias get_execution execution
+
+        # Retrieve all of an action's versions.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/versions
+        # @param action_id [string] The ID of the action.
+        # @param per_page [integer] The amount of entries per page. Default: 50. Max value: 100.
+        # @param page [integer] The page number. Zero based
+        #
+        # @return [json] Returns the action with the given execution_id if it exists.
+        def actions_versions(action_id, page: nil, per_page: nil)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          path = "#{actions_path}/actions/#{action_id}/versions"
+          request_params = {
+            per_page: per_page,
+            page: page
+          }
+
+          get(path, request_params)
+        end
+        alias get_actions_versions actions_versions
+
+        # Retrieve the actions that are bound to a trigger.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/get_bindings
+        # @param trigger_id [string] An actions extensibility point.
+        # @param per_page [integer] The amount of entries per page. Default: 50. Max value: 100.
+        # @param page [integer] The page number. Zero based
+        #
+        # @return [json] Returns the action with the given trigger_id if it exists.
+        def trigger_bindings(trigger_id, page: nil, per_page: nil)
+          raise Auth0::MissingTriggerId, 'Must supply a valid trigger_id' if trigger_id.to_s.empty?
+          path = "#{actions_path}/triggers/#{trigger_id}/bindings"
+          request_params = {
+            per_page: per_page,
+            page: page
+          }
+
+          get(path, request_params)
+        end
+        alias get_trigger_bindings trigger_bindings
+
+        # Update the actions that are bound (i.e. attached) to a trigger.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/patch_bindings
+        # @param trigger_id [string] An actions extensibility point.
+        # @param body [hash] The optional parameters to update.
+        #
+        # @return [json] Returns the bindings that were updated.
+        def patch_trigger_bindings(trigger_id, body = nil)
+          raise Auth0::MissingTriggerId, 'Must supply a valid trigger_id' if trigger_id.to_s.empty?
+          raise Auth0::InvalidParameter, 'Must supply a valid body' if body.to_s.empty? || body.empty?
+          path = "#{actions_path}/triggers/#{trigger_id}/bindings"
+          patch(path, body)
+        end
+        alias update_trigger_bindings patch_trigger_bindings
+
+        # Retrieve a specific version of an action
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/get_action_version
+        # @param action_id [string]  The ID of the action.
+        # @param version_id [string]  The ID of the action version.
+        #
+        # @return [json] Returns the action.
+        def action_by_version(action_id, version_id)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          raise Auth0::MissingVersionId, 'Must supply a valid version_id' if version_id.to_s.empty?
+          path = "#{actions_path}/actions/#{action_id}/versions/#{version_id}"
+          get(path)
+        end
+        alias get_action_by_version action_by_version 
+
+        # Deploy an action.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/post_deploy_action
+        # @param action_id [string]  The ID of the action.
+        # @return [json] Returns the created action.
+        def deploy_action(action_id)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          path = "#{actions_path}/actions/#{action_id}/deploy"
+          post(path)
+        end
+
+        # Test an action.
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/post_test_action
+        # @param action_id [string]  The ID of the action.
+        # @param body [hash] See https://auth0.com/docs/api/management/v2/#!/actions/post_test_action for available options
+        # @return [json] Returns the created action.
+        def test_action(action_id, body = {})
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          raise Auth0::InvalidParameter, 'Must supply a valid body' if body.to_s.empty? || body.empty?
+          path = "#{actions_path}/actions/#{action_id}/test"
+          post(path, body)
+        end
+
+        # Performs the equivalent of a roll-back of an action to an earlier, specified version. 
+        # @see https://auth0.com/docs/api/management/v2/#!/actions/post_deploy_draft_version
+        # @param action_id [string]  The ID of the action.
+        # @param version_id [string]  The ID of the action version.
+        # @return [json] Returns the created action.
+        def rollback_action(action_id, version_id)
+          raise Auth0::MissingActionId, 'Must supply a valid action_id' if action_id.to_s.empty?
+          raise Auth0::MissingVersionId, 'Must supply a valid version_id' if version_id.to_s.empty?
+          path = "#{actions_path}/actions/#{action_id}/versions/#{version_id}/deploy"
+          post(path)
+        end
+
+        private
+        # actions API path
+        def actions_path
+          @actions_path ||= '/api/v2/actions'
+        end
+      end
+    end
+  end
+end