auth0 5.6.0 → 5.8.0

data/Gemfile.lock

@@ -0,0 +1,233 @@
+PATH
+  remote: .
+  specs:
+    auth0 (5.8.0)
+      addressable (~> 2.8)
+      jwt (~> 2.2)
+      rest-client (~> 2.1)
+      retryable (~> 3.0)
+      zache (~> 0.12)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    actionpack (7.0.2.3)
+      actionview (= 7.0.2.3)
+      activesupport (= 7.0.2.3)
+      rack (~> 2.0, >= 2.2.0)
+      rack-test (>= 0.6.3)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.0, >= 1.2.0)
+    actionview (7.0.2.3)
+      activesupport (= 7.0.2.3)
+      builder (~> 3.1)
+      erubi (~> 1.4)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.1, >= 1.2.0)
+    activesupport (7.0.2.3)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+    addressable (2.8.0)
+      public_suffix (>= 2.0.2, < 5.0)
+    ast (2.4.2)
+    builder (3.2.4)
+    codecov (0.6.0)
+      simplecov (>= 0.15, < 0.22)
+    coderay (1.1.3)
+    concurrent-ruby (1.1.10)
+    coveralls (0.7.1)
+      multi_json (~> 1.3)
+      rest-client
+      simplecov (>= 0.7)
+      term-ansicolor
+      thor
+    crack (0.4.5)
+      rexml
+    crass (1.0.6)
+    diff-lcs (1.5.0)
+    docile (1.4.0)
+    domain_name (0.5.20190701)
+      unf (>= 0.0.5, < 1.0.0)
+    dotenv (2.7.6)
+    dotenv-rails (2.7.6)
+      dotenv (= 2.7.6)
+      railties (>= 3.2)
+    erubi (1.10.0)
+    faker (2.20.0)
+      i18n (>= 1.8.11, < 2)
+    ffi (1.15.5)
+    formatador (1.1.0)
+    fuubar (2.5.1)
+      rspec-core (~> 3.0)
+      ruby-progressbar (~> 1.4)
+    gem-release (0.7.4)
+    guard (2.17.0)
+      formatador (>= 0.2.4)
+      listen (>= 2.7, < 4.0)
+      lumberjack (>= 1.0.12, < 2.0)
+      nenv (~> 0.1)
+      notiffany (~> 0.0)
+      pry (>= 0.9.12)
+      shellany (~> 0.0)
+      thor (>= 0.18.1)
+    guard-compat (1.2.1)
+    guard-rspec (4.7.3)
+      guard (~> 2.1)
+      guard-compat (~> 1.1)
+      rspec (>= 2.99.0, < 4.0)
+    hashdiff (1.0.1)
+    http-accept (1.7.0)
+    http-cookie (1.0.4)
+      domain_name (~> 0.5)
+    i18n (1.10.0)
+      concurrent-ruby (~> 1.0)
+    jwt (2.3.0)
+    listen (3.7.1)
+      rb-fsevent (~> 0.10, >= 0.10.3)
+      rb-inotify (~> 0.9, >= 0.9.10)
+    loofah (2.15.0)
+      crass (~> 1.0.2)
+      nokogiri (>= 1.5.9)
+    lumberjack (1.2.8)
+    method_source (0.9.2)
+    mime-types (3.4.1)
+      mime-types-data (~> 3.2015)
+    mime-types-data (3.2022.0105)
+    mini_portile2 (2.8.0)
+    minitest (5.15.0)
+    multi_json (1.15.0)
+    nenv (0.3.0)
+    netrc (0.11.0)
+    nokogiri (1.13.3)
+      mini_portile2 (~> 2.8.0)
+      racc (~> 1.4)
+    notiffany (0.1.3)
+      nenv (~> 0.1)
+      shellany (~> 0.0)
+    parallel (1.22.0)
+    parser (3.1.1.0)
+      ast (~> 2.4.1)
+    pry (0.12.2)
+      coderay (~> 1.1.0)
+      method_source (~> 0.9.0)
+    pry-nav (0.3.0)
+      pry (>= 0.9.10, < 0.13.0)
+    public_suffix (4.0.6)
+    racc (1.6.0)
+    rack (2.2.3)
+    rack-test (0.8.3)
+      rack (>= 1.0, < 3)
+    rails-dom-testing (2.0.3)
+      activesupport (>= 4.2.0)
+      nokogiri (>= 1.6)
+    rails-html-sanitizer (1.4.2)
+      loofah (~> 2.3)
+    railties (7.0.2.3)
+      actionpack (= 7.0.2.3)
+      activesupport (= 7.0.2.3)
+      method_source
+      rake (>= 12.2)
+      thor (~> 1.0)
+      zeitwerk (~> 2.5)
+    rainbow (3.1.1)
+    rake (13.0.6)
+    rb-fsevent (0.11.1)
+    rb-inotify (0.10.1)
+      ffi (~> 1.0)
+    regexp_parser (2.2.1)
+    rest-client (2.1.0)
+      http-accept (>= 1.7.0, < 2.0)
+      http-cookie (>= 1.0.2, < 2.0)
+      mime-types (>= 1.16, < 4.0)
+      netrc (~> 0.8)
+    retryable (3.0.5)
+    rexml (3.2.5)
+    rspec (3.11.0)
+      rspec-core (~> 3.11.0)
+      rspec-expectations (~> 3.11.0)
+      rspec-mocks (~> 3.11.0)
+    rspec-core (3.11.0)
+      rspec-support (~> 3.11.0)
+    rspec-expectations (3.11.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.11.0)
+    rspec-mocks (3.11.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.11.0)
+    rspec-support (3.11.0)
+    rubocop (1.26.1)
+      parallel (~> 1.10)
+      parser (>= 3.1.0.0)
+      rainbow (>= 2.2.2, < 4.0)
+      regexp_parser (>= 1.8, < 3.0)
+      rexml
+      rubocop-ast (>= 1.16.0, < 2.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 3.0)
+    rubocop-ast (1.16.0)
+      parser (>= 3.1.1.0)
+    rubocop-rails (2.14.2)
+      activesupport (>= 4.2.0)
+      rack (>= 1.1)
+      rubocop (>= 1.7.0, < 2.0)
+    ruby-progressbar (1.11.0)
+    shellany (0.0.1)
+    simplecov (0.21.2)
+      docile (~> 1.1)
+      simplecov-html (~> 0.11)
+      simplecov_json_formatter (~> 0.1)
+    simplecov-html (0.12.3)
+    simplecov_json_formatter (0.1.4)
+    sync (0.5.0)
+    term-ansicolor (1.7.1)
+      tins (~> 1.0)
+    terminal-notifier-guard (1.7.0)
+    thor (1.2.1)
+    timecop (0.9.5)
+    tins (1.31.0)
+      sync
+    tzinfo (2.0.4)
+      concurrent-ruby (~> 1.0)
+    unf (0.1.4)
+      unf_ext
+    unf_ext (0.0.8.1)
+    unicode-display_width (2.1.0)
+    vcr (6.1.0)
+    webmock (3.14.0)
+      addressable (>= 2.8.0)
+      crack (>= 0.3.2)
+      hashdiff (>= 0.4.0, < 2.0.0)
+    zache (0.12.0)
+    zeitwerk (2.5.4)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  auth0!
+  bundler
+  codecov
+  coveralls
+  dotenv-rails (~> 2.0)
+  faker (~> 2.0)
+  fuubar (~> 2.0)
+  gem-release (~> 0.7)
+  guard-rspec (~> 4.5)
+  pry (~> 0.10)
+  pry-nav (~> 0.2)
+  rack (~> 2.1)
+  rack-test (~> 0.6)
+  rake (~> 13.0)
+  rspec (~> 3.5)
+  rubocop
+  rubocop-rails
+  simplecov
+  terminal-notifier-guard
+  timecop
+  vcr
+  webmock
+
+BUNDLED WITH
+   1.17.2

data/README.md

@@ -45,7 +45,7 @@ end
 ... and a Controller to handle that route:
 
 ```ruby
-# app/controllers/all_users_controllers.rb
+# app/controllers/all_users_controller.rb
 require 'auth0'
 
 class AllUsersController < ApplicationController

data/lib/auth0/api/authentication_endpoints.rb

@@ -152,7 +152,7 @@ module Auth0
       # @param password [string] User's new password. This is only available
       #   on legacy tenants with change password v1 flow enabled
       # @param connection_name [string] Database connection name
-      # @deprecated Use {#password_reset} instead.
+      # @deprecated Use {#reset_password} instead.
       def change_password(email, password, connection_name = UP_AUTH)
         raise Auth0::InvalidParameter, 'Must supply a valid email' if email.to_s.empty?
 

data/lib/auth0/api/v2/attack_protection.rb

@@ -0,0 +1,79 @@
+module Auth0
+  module Api
+    module V2
+      # Methods to use the attack-protection endpoints
+      module AttackProtection
+        attr_reader :attack_protection_path
+
+        # Get breached password detection settings
+        # @see https://auth0.com/docs/api/management/v2#!/Attack_Protection/get_breached_password_detection
+        # @return [json] The configuration for breached password detection
+        def breached_password_detection
+          get(breached_password_settings_path)
+        end
+        alias get_breached_password_detection_settings breached_password_detection
+
+        # Update breached password detection settings
+        # @see https://auth0.com/docs/api/management/v2#!/Attack_Protection/patch_breached_password_detection
+        # @param body [hash] See https://auth0.com/docs/api/management/v2#!/Attack_Protection/patch_breached_password_detection for available options
+        # @return [json] The configuration for breached password detection
+        def patch_breached_password_detection(body)
+          patch(breached_password_settings_path, body)
+        end
+
+        # Get brute force protection settings.
+        # @see https://auth0.com/docs/api/management/v2#!/Attack_Protection/get_brute_force_protection
+        # @return [json] The configuration for brute force protection
+        def brute_force_protection
+          get(brute_force_protection_settings_path)
+        end
+        alias get_brute_force_protection_settings brute_force_protection
+
+        # Update brute force protection settings.
+        # @see https://auth0.com/docs/api/management/v2#!/Attack_Protection/patch_brute_force_protection
+        # @param body [hash] See https://auth0.com/docs/api/management/v2#!/Attack_Protection/patch_brute_force_protection for available options
+        # @return [json] The configuration for brute force protection
+        def patch_brute_force_protection(body)
+          patch(brute_force_protection_settings_path, body)
+        end
+        alias update_brute_force_protection_settings patch_brute_force_protection
+
+        # Get suspicious IP throttling settings
+        # @see https://auth0.com/docs/api/management/v2#!/Attack_Protection/get_suspicious_ip_throttling
+        # @return The configuration for suspicious IP throttling
+        def suspicious_ip_throttling
+          get(suspicious_ip_throttling_settings_path)
+        end
+        alias get_suspicious_ip_throttling_settings suspicious_ip_throttling
+
+        # Update suspicious IP throttling settings
+        # @see https://auth0.com/docs/api/management/v2#!/Attack_Protection/patch_suspicious_ip_throttling
+        # @param body [hash] See https://auth0.com/docs/api/management/v2#!/Attack_Protection/patch_suspicious_ip_throttling for available options
+        # @return The configuration for suspicious IP throttling
+        def patch_suspicious_ip_throttling(body)
+          patch(suspicious_ip_throttling_settings_path, body)
+        end
+        alias update_suspicious_ip_throttling_settings patch_suspicious_ip_throttling
+
+        private
+        
+        def attack_protection_path
+          @attack_protection_path ||= '/api/v2/attack-protection'
+        end
+        alias update_breached_password_detection_settings patch_breached_password_detection
+        
+        def breached_password_settings_path
+          "#{attack_protection_path}/breached-password-detection"
+        end
+
+        def brute_force_protection_settings_path
+          "#{attack_protection_path}/brute-force-protection"
+        end
+
+        def suspicious_ip_throttling_settings_path
+          "#{attack_protection_path}/suspicious-ip-throttling"
+        end
+      end
+    end
+  end
+end

data/lib/auth0/api/v2/device_credentials.rb

@@ -13,18 +13,23 @@ module Auth0
         #   * :include_fields [boolean] True if the fields specified are to be included in the result, false otherwise.
         #   * :user_id [string] The user_id of the devices to retrieve.
         #   * :type [string] Type of credentials to retrieve. Must be 'public_key', 'refresh_token' or 'rotating_refresh_token'
+        #   * :page [integer] The page number. Zero based
+        #   * :per_page [integer] The amount of entries per page
+        #   * :include_totals [boolean] Return results inside an object that contains the total result count (true) or as a direct array of results (false, default).
         #
         # @return [json] Returns the list of existing devices for the specified client_id.
         # rubocop:disable Metrics/AbcSize
-        def device_credentials(client_id, options = {})
+        def device_credentials(client_id = nil, options = {})
           request_params = {
             fields: options.fetch(:fields, nil),
             include_fields: options.fetch(:include_fields, nil),
             user_id: options.fetch(:user_id, nil),
             client_id: client_id,
-            type: options.fetch(:type, nil)
+            type: options.fetch(:type, nil),
+            page: options.fetch(:page, nil),
+            per_page: options.fetch(:per_page, nil),
+            include_totals: options.fetch(:include_totals, nil)
           }
-          raise Auth0::InvalidParameter, 'Must supply a valid client_id' if client_id.to_s.empty?
           if !request_params[:type].nil? && !%w(public_key refresh_token rotating_refresh_token).include?(request_params[:type])
             raise Auth0::InvalidParameter, 'Type must be one of \'public_key\', \'refresh_token\', \'rotating_refresh_token\''
           end

data/lib/auth0/api/v2/grants.rb

@@ -33,8 +33,8 @@ module Auth0
         def delete_grant(id, user_id)
           raise Auth0::InvalidParameter, 'Must specify a grant id as id' if id.to_s.empty?
           raise Auth0::InvalidParameter, 'Must specify a user id' if user_id.to_s.empty?
-          path = "#{grants_path}/#{id}?user_id=#{user_id}"
-          delete(path)
+          path = "#{grants_path}/#{id}"
+          delete(path, user_id: user_id)
         end
 
         private

data/lib/auth0/api/v2/organizations.rb

@@ -320,7 +320,7 @@ module Auth0
           body = {}
           body[:roles] = roles
 
-          delete(path, body)
+          delete_with_body(path, body)
         end
         alias remove_organizations_member_roles delete_organizations_member_roles
 

data/lib/auth0/api/v2.rb

@@ -23,6 +23,7 @@ require 'auth0/api/v2/logs'
 require 'auth0/api/v2/log_streams'
 require 'auth0/api/v2/resource_servers'
 require 'auth0/api/v2/guardian'
+require 'auth0/api/v2/attack_protection'
 
 module Auth0
   module Api
@@ -53,6 +54,7 @@ module Auth0
       include Auth0::Api::V2::ResourceServers
       include Auth0::Api::V2::Tenants
       include Auth0::Api::V2::Tickets
+      include Auth0::Api::V2::AttackProtection
     end
   end
 end

data/lib/auth0/mixins/validation.rb

@@ -286,7 +286,7 @@ module Auth0
 
             # Clear the JWK set cache.
             def remove_jwks
-              @@cache.remove(:jwks)
+              @@cache.remove_by { true }
             end
           end
 
@@ -311,13 +311,13 @@ module Auth0
             result = fetch_jwks if force
 
             if result
-              @@cache.put(:jwks, result, lifetime: @lifetime)
+              @@cache.put(@jwks_url, result, lifetime: @lifetime)
               return result
             end
 
-            previous_value = @@cache.last(:jwks)
+            previous_value = @@cache.last(@jwks_url)
 
-            @@cache.get(:jwks, lifetime: @lifetime, dirty: true) do
+            @@cache.get(@jwks_url, lifetime: @lifetime, dirty: true) do
               new_value = fetch_jwks
 
               raise Auth0::InvalidIdToken, 'Could not fetch the JWK set' unless new_value || previous_value

data/lib/auth0/version.rb

@@ -1,4 +1,4 @@
 # current version of gem
 module Auth0
-  VERSION = '5.6.0'.freeze
+  VERSION = '5.8.0'.freeze
 end

data/spec/lib/auth0/api/v2/actions_spec.rb

@@ -17,14 +17,14 @@ describe Auth0::Api::V2::Actions do
 
     it 'is expected to get /api/v2/actions with custom parameters' do
       expect(@instance).to receive(:get).with(
-        '/api/v2/actions/actions',
+        '/api/v2/actions/actions', {
         trigger_id: 'post-login',
         action_name: 'loginHandler',
         deployed: true,
         per_page: 10,
         page: 1,
         installed: true
-      )
+      })
       expect do
         @instance.actions(
           'post-login',
@@ -71,9 +71,9 @@ describe Auth0::Api::V2::Actions do
 
     it 'is expected to post to /api/v2/actions' do
       expect(@instance).to receive(:post).with(
-        '/api/v2/actions',
+        '/api/v2/actions', {
           name: 'test_org'
-        )
+        })
       expect do
         @instance.create_action(
           name: 'test_org'
@@ -141,10 +141,10 @@ describe Auth0::Api::V2::Actions do
 
     it 'is expected to call get request to /api/v2/actions/actions/{id}/versions' do
       expect(@instance).to receive(:get).with(
-        '/api/v2/actions/actions/123/versions',
+        '/api/v2/actions/actions/123/versions', {
         per_page: nil,
         page: nil
-      )
+      })
       expect { @instance.actions_versions('123') }.not_to raise_error
     end
 
@@ -154,10 +154,10 @@ describe Auth0::Api::V2::Actions do
 
     it 'is expected to get /api/v2/actions/actions/{id}/versions with custom parameters' do
       expect(@instance).to receive(:get).with(
-        '/api/v2/actions/actions/123/versions',
+        '/api/v2/actions/actions/123/versions', {
         per_page: 10,
         page: 1
-      )
+      })
       expect do
         @instance.actions_versions(
           '123',
@@ -176,10 +176,10 @@ describe Auth0::Api::V2::Actions do
 
     it 'is expected to call get request to /api/v2/actions/triggers/{id}/bindings' do
       expect(@instance).to receive(:get).with(
-        '/api/v2/actions/triggers/123/bindings',
+        '/api/v2/actions/triggers/123/bindings', {
         per_page: nil,
         page: nil
-      )
+      })
       expect { @instance.trigger_bindings('123') }.not_to raise_error
     end
 
@@ -189,10 +189,10 @@ describe Auth0::Api::V2::Actions do
 
     it 'is expected to get /api/v2/actions/triggers/{id}/bindings with custom parameters' do
       expect(@instance).to receive(:get).with(
-        '/api/v2/actions/triggers/123/bindings',
+        '/api/v2/actions/triggers/123/bindings', {
         per_page: 10,
         page: 1
-      )
+      })
       expect do
         @instance.trigger_bindings(
           '123',
@@ -278,7 +278,7 @@ describe Auth0::Api::V2::Actions do
     it 'is expected to post to /api/v2/actions/{id}/test' do
       expect(@instance).to receive(:post).with(
         '/api/v2/actions/actions/123/test',
-          name: 'test_org'
+          { name: 'test_org' }
         )
       expect do
         @instance.test_action(

data/spec/lib/auth0/api/v2/attack_protection_spec.rb

@@ -0,0 +1,132 @@
+require 'spec_helper'
+
+describe Auth0::Api::V2::AttackProtection do
+  before :all do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Auth0::Api::V2::AttackProtection)
+    @instance = dummy_instance
+  end
+
+  context '.get breached-password-detection' do
+    it 'responds to a breached_password_detection method' do
+      expect(@instance).to respond_to(:breached_password_detection)
+    end
+
+    it 'responds to get_breached_password_detection_settings' do
+      expect(@instance).to respond_to(:get_breached_password_detection_settings)
+    end
+
+    it 'is expected to get /api/v2/attack-protection/breached-password' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/attack-protection/breached-password-detection'
+      )
+
+      expect { @instance.breached_password_detection }.not_to raise_error
+    end
+  end
+
+  context '.patch breached-password-detection' do
+    it 'responds to a patch_breached_password_detection method' do
+      expect(@instance).to respond_to(:patch_breached_password_detection)
+    end
+
+    it 'responds to a update_breached_password_detection_settings method' do
+      expect(@instance).to respond_to(:update_breached_password_detection_settings)
+    end
+
+    it 'is expected to patch /api/v2/attack-protection/breached-password-detection' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/attack-protection/breached-password-detection',
+        {
+          enabled: true
+        }
+      )
+
+      @instance.patch_breached_password_detection({
+        enabled: true
+      })
+    end
+  end
+
+  context '.get brute_force_protection' do
+    it 'responds to brute_force_protection' do
+      expect(@instance).to respond_to(:brute_force_protection)
+    end
+
+    it 'responds to get_brute_force_protection_settings' do
+      expect(@instance).to respond_to(:get_brute_force_protection_settings)
+    end
+
+    it 'is expected to get /api/v2/attack-protection/brute-force-protection' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/attack-protection/brute-force-protection'
+      )
+
+      expect { @instance.brute_force_protection }.not_to raise_error
+    end
+  end
+
+  context '.patch brute-force-protection' do
+    it 'responds to patch_brute-force-protection' do
+      expect(@instance).to respond_to(:patch_brute_force_protection)
+    end
+
+    it 'responds to update_brute_force_protection_settings' do
+      expect(@instance).to respond_to(:update_brute_force_protection_settings)
+    end
+
+    it 'is expected to respond to patch /api/v2/attack-protection/brute-force-protection' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/attack-protection/brute-force-protection',
+        {
+          enabled: true
+        }
+      )
+
+      @instance.patch_brute_force_protection({
+        enabled: true
+      })
+    end
+  end
+
+  context '.get suspicious-ip-throttling' do
+    it 'responds to suspicious_ip_throttling' do
+      expect(@instance).to respond_to(:suspicious_ip_throttling)
+    end
+
+    it 'responds to get_suspicious_ip_throttling_settings' do
+      expect(@instance).to respond_to(:get_suspicious_ip_throttling_settings)
+    end
+
+    it 'is expected to get /api/v2/attack-protection/suspicious-ip-throttling' do
+      expect(@instance).to receive(:get).with(
+        '/api/v2/attack-protection/suspicious-ip-throttling'
+      )
+
+      expect { @instance.suspicious_ip_throttling }.not_to raise_error
+    end
+  end
+
+  context '.patch suspicious-ip-throttling' do
+    it 'responds to patch_suspicious_ip_throttling' do
+      expect(@instance).to respond_to(:patch_suspicious_ip_throttling)
+    end
+
+    it 'responds to update_suspicious_ip_throttling_settings' do
+      expect(@instance).to respond_to(:update_suspicious_ip_throttling_settings)
+    end
+
+    it 'is expected to patch /api/v2/attack-protection/suspicious-ip-throttling' do
+      expect(@instance).to receive(:patch).with(
+        '/api/v2/attack-protection/suspicious-ip-throttling',
+        {
+          enabled: true
+        }
+      )
+
+      @instance.patch_suspicious_ip_throttling({
+        enabled: true
+      })
+    end
+  end
+end

data/spec/lib/auth0/api/v2/blacklists_spec.rb

@@ -9,7 +9,7 @@ describe Auth0::Api::V2::Blacklists do
   context '.blacklisted_tokens' do
     it { expect(@instance).to respond_to(:blacklisted_tokens) }
     it 'is expected to call /api/v2/blacklists/tokens' do
-      expect(@instance).to receive(:get).with('/api/v2/blacklists/tokens', aud: nil)
+      expect(@instance).to receive(:get).with('/api/v2/blacklists/tokens', { aud: nil })
       expect { @instance.blacklisted_tokens }.not_to raise_error
     end
   end
@@ -17,7 +17,7 @@ describe Auth0::Api::V2::Blacklists do
   context '.add_token.to_blacklist' do
     it { expect(@instance).to respond_to(:add_token_to_blacklist) }
     it 'is expected to call post to /api/v2/blacklists/tokens' do
-      expect(@instance).to receive(:post).with('/api/v2/blacklists/tokens', aud: 'aud', jti: 'jti')
+      expect(@instance).to receive(:post).with('/api/v2/blacklists/tokens', { aud: 'aud', jti: 'jti' })
       @instance.add_token_to_blacklist('jti', 'aud')
     end
     it { expect { @instance.add_token_to_blacklist('', '') }.to raise_error 'Must specify a valid JTI' }