authlete 1.0.24 → 1.1.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: ec596fd6d870c0035ee2425fa46196ac1b52a9d6
-  data.tar.gz: 059948b5a01074063771f602d1860c4d8c0f0c3f
+  metadata.gz: cb006019176ce727d7082df01b8dfb203196355f
+  data.tar.gz: 8d2ceba5ad8a6c3c558e06d78a709fff67db068e
 SHA512:
-  metadata.gz: bebb3f3c4d4426362ca20d5a04432520c2aacad9067fe5e7070bdd1c8c46d372c5be4ae0d5141933f468810a4524c27b2208ef090607d0b94cfc35db4329602c
-  data.tar.gz: e00b22aa7280f7145f3752b1c89ac441de7a98df45f471cef88538049cc9cb28359d90cee4cddbf87feb58d88b1d6a4b81b2df2ece252ad8b6eb4c4dc4e09d04
+  metadata.gz: 24e8bdbe35decd978515837684ab16c8e264a431a1ff0d33ed5372bbdb93c83ce9a118810c17ac5984d72ac92d29933e6e4ad59870c0c187a45c4f59c79965a2
+  data.tar.gz: d13c223cec60659b62309f4f1ace44800666a6d09518e7ac575f22b7964ac94210b1c7c86170723783b0c50d850abcdd391d7cc8779e32e49a0504f59ac9106f

data/.gitignore

@@ -12,4 +12,5 @@
 *.o
 *.a
 mkmf.log
-.idea/
+.idea/
+.DS_Store

data/Makefile

@@ -0,0 +1,40 @@
+#
+# Copyright (C) 2020 Authlete, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing,
+# software distributed under the License is distributed on an
+# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+# either express or implied. See the License for the specific
+# language governing permissions and limitations under the
+# License.
+
+
+#==================================================
+# VARIABLES
+#==================================================
+RAKE = rake
+
+
+#==================================================
+# TARGETS
+#==================================================
+.PHONY: _default help test
+
+
+_default: help
+
+
+help:
+	@printf '%s\n' \
+	"help - shows this help text." \
+	"test - runs tests."
+
+test:
+	$(RAKE) test
+

data/Rakefile

@@ -1,2 +1,7 @@
 require "bundler/gem_tasks"
+require "rake/testtask"
 
+# Add "test" task
+Rake::TestTask.new do |t|
+  t.pattern = 'test/**/test_*.rb'
+end

data/authlete.gemspec

@@ -6,8 +6,8 @@ require 'authlete/version'
 Gem::Specification.new do |spec|
   spec.name          = "authlete"
   spec.version       = Authlete::VERSION
-  spec.authors       = ["Takahiko Kawasaki"]
-  spec.email         = ["taka@authlete.com"]
+  spec.authors       = ["Takahiko Kawasaki", "Hideki Ikeda"]
+  spec.email         = ["admin@authlete.com"]
   spec.summary       = "A library for Authlete Web APIs"
   spec.description   = "A library for Authlete Web APIs. See https://docs.authlete.com/ for details."
   spec.homepage      = "https://www.authlete.com/"

data/lib/authlete.rb

@@ -1,6 +1,6 @@
 # :nodoc:
 #
-# Copyright (C) 2014-2018 Authlete, Inc.
+# Copyright (C) 2014-2020 Authlete, Inc.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -18,18 +18,16 @@
 require 'authlete/version'
 
 
-# == Authlete Module
-#
-# A library for Authlete Web APIs.
 module Authlete
   autoload :AuthenticationServer, 'authlete/authentication-server'
   autoload :Api, 'authlete/api'
   autoload :Exception, 'authlete/exception'
+  autoload :ParamInitializer, 'authlete/model/param-initializer'
   autoload :Utility, 'authlete/utility'
 
   module Model
+    autoload :Base, 'authlete/model/base'
     autoload :Client, 'authlete/model/client'
-    autoload :ClientList, 'authlete/model/client-list'
     autoload :ClientExtension, 'authlete/model/client-extension'
     autoload :Hashable, 'authlete/model/hashable'
     autoload :Result, 'authlete/model/result'
@@ -37,7 +35,6 @@ module Authlete
     autoload :Property, 'authlete/model/property'
     autoload :Scope, 'authlete/model/scope'
     autoload :Service, 'authlete/model/service'
-    autoload :ServiceList, 'authlete/model/service-list'
     autoload :ServiceOwner, 'authlete/model/service-owner'
     autoload :SnsCredentials, 'authlete/model/sns-credentials'
     autoload :TaggedValue, 'authlete/model/tagged-value'
@@ -48,13 +45,23 @@ module Authlete
       autoload :AuthorizationFailRequest, 'authlete/model/request/authorization-fail-request'
       autoload :AuthorizationIssueRequest, 'authlete/model/request/authorization-issue-request'
       autoload :AuthorizationRequest, 'authlete/model/request/authorization-request'
+      autoload :BackchannelAuthenticationCompleteRequest, 'authlete/model/request/backchannel-authentication-complete-request'
+      autoload :BackchannelAuthenticationFailRequest, 'authlete/model/request/backchannel-authentication-fail-request'
+      autoload :BackchannelAuthenticationIssueRequest, 'authlete/model/request/backchannel-authentication-issue-request'
+      autoload :BackchannelAuthenticationRequest, 'authlete/model/request/backchannel-authentication-request'
+      autoload :Base, 'authlete/model/request/base'
       autoload :ClientAuthorizationDeleteRequest, 'authlete/model/request/client-authorization-delete-request'
       autoload :ClientAuthorizationGetListRequest, 'authlete/model/request/client-authorization-get-list-request'
       autoload :ClientAuthorizationUpdateRequest, 'authlete/model/request/client-authorization-update-request'
+      autoload :ClientRegistrationRequest, 'authlete/model/request/client-registration-request'
       autoload :ClientSecretUpdateRequest, 'authlete/model/request/client-secret-update-request'
       autoload :DeveloperAuthenticationCallbackRequest, 'authlete/model/request/developer-authentication-callback-request'
+      autoload :DeviceAuthorizationRequest, 'authlete/model/request/device-authorization-request'
+      autoload :DeviceCompleteRequest, 'authlete/model/request/device-complete-request'
+      autoload :DeviceVerificationRequest, 'authlete/model/request/device-verification-request'
       autoload :GrantedScopesRequest, 'authlete/model/request/granted-scopes-request'
       autoload :IntrospectionRequest, 'authlete/model/request/introspection-request'
+      autoload :PushedAuthReqRequest, 'authlete/model/request/pushed-auth-req-request'
       autoload :RevocationRequest, 'authlete/model/request/revocation-request'
       autoload :StandardIntrospectionRequest, 'authlete/model/request/standard-introspection-request'
       autoload :TokenCreateRequest, 'authlete/model/request/token-create-request'
@@ -67,27 +74,39 @@ module Authlete
     end
 
     module Response
+      autoload :AccessToken, 'authlete/model/response/access-token'
       autoload :AuthenticationCallbackResponse, 'authlete/model/response/authentication-callback-response'
       autoload :AuthorizationFailResponse, 'authlete/model/response/authorization-fail-response'
       autoload :AuthorizationIssueResponse, 'authlete/model/response/authorization-issue-response'
       autoload :AuthorizationResponse, 'authlete/model/response/authorization-response'
-      autoload :ClientAuthorizationGetListResponse, 'authlete/model/response/client-authorization-get-list-response'
+      autoload :AuthorizedClientListResponse, 'authlete/model/response/authorized-client-list-response'
+      autoload :BackchannelAuthenticationCompleteResponse, 'authlete/model/response/backchannel-authentication-complete-response'
+      autoload :BackchannelAuthenticationFailResponse, 'authlete/model/response/backchannel-authentication-fail-response'
+      autoload :BackchannelAuthenticationIssueResponse, 'authlete/model/response/backchannel-authentication-issue-response'
+      autoload :BackchannelAuthenticationResponse, 'authlete/model/response/backchannel-authentication-response'
+      autoload :ClientListResponse, 'authlete/model/response/client-list-response'
+      autoload :ClientRegistrationResponse, 'authlete/model/response/client-registration-response'
       autoload :ClientSecretRefreshResponse, 'authlete/model/response/client-secret-refresh-response'
       autoload :ClientSecretUpdateResponse, 'authlete/model/response/client-secret-update-response'
       autoload :ClientSecretRefreshResponse, 'authlete/model/response/client-secret-refresh-response'
       autoload :DeveloperAuthenticationCallbackResponse, 'authlete/model/response/developer-authentication-callback-response'
+      autoload :DeviceAuthorizationResponse, 'authlete/model/response/device-authorization-response'
+      autoload :DeviceCompleteResponse, 'authlete/model/response/device-complete-response'
+      autoload :DeviceVerificationResponse, 'authlete/model/response/device-verification-response'
       autoload :GrantedScopesGetResponse, 'authlete/model/response/granted-scopes-get-response'
       autoload :IntrospectionResponse, 'authlete/model/response/introspection-response'
+      autoload :PushedAuthReqResponse, 'authlete/model/response/pushed-auth-req-response'
       autoload :RevocationResponse, 'authlete/model/response/revocation-response'
-      autoload :ServiceCreatableResponse, 'authlete/model/response/service-creatable-response'
+      autoload :ServiceListResponse, 'authlete/model/response/service-list-response'
       autoload :StandardIntrospectionResponse, 'authlete/model/response/standard-introspection-response'
       autoload :TokenCreateResponse, 'authlete/model/response/token-create-response'
       autoload :TokenFailResponse, 'authlete/model/response/token-fail-response'
       autoload :TokenIssueResponse, 'authlete/model/response/token-issue-response'
+      autoload :TokenListResponse, 'authlete/model/response/token-list-response'
       autoload :TokenResponse, 'authlete/model/response/token-response'
       autoload :TokenUpdateResponse, 'authlete/model/response/token-update-response'
       autoload :UserInfoIssueResponse, 'authlete/model/response/user-info-issue-response'
       autoload :UserInfoResponse, 'authlete/model/response/user-info-response'
     end
   end
-end
+end

data/lib/authlete/api.rb

@@ -1,6 +1,6 @@
 # :nodoc:
 #
-# Copyright (C) 2014-2018 Authlete, Inc.
+# Copyright (C) 2014-2020 Authlete, Inc.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -21,70 +21,46 @@ require 'rest-client'
 
 
 module Authlete
-  # == Authlete::Api Module
-  #
-  # A web client that accesses Authlete Web APIs.
-  #
   class Api
     include Authlete::Utility
 
-    # The host which provides Authlete Web APIs.
-    # For example, <tt>https://dev-api.authlete.com</tt>
     attr_accessor :host
-
-    # The API key of a service owner.
     attr_accessor :service_owner_api_key
-
-    # The API secret of a service owner.
     attr_accessor :service_owner_api_secret
-
-    # The API key of a service.
     attr_accessor :service_api_key
-
-    # The API secret of a service.
     attr_accessor :service_api_secret
-
-    # Extra HTTP headers
     attr_accessor :extra_headers
 
     private
 
-    # The constructor which takes a hash containing configuration
-    # parameters. Valid configuration parameter names are as follows.
-    #
-    # - <tt>:host</tt>
-    # - <tt>:service_owner_api_key</tt>
-    # - <tt>:service_owner_api_secret</tt>
-    # - <tt>:service_api_key</tt>
-    # - <tt>:service_api_secret</tt>
-    #
     def initialize(config = {})
-      @host                     = extract_value(config, :host)
-      @service_owner_api_key    = extract_value(config, :service_owner_api_key)
-      @service_owner_api_secret = extract_value(config, :service_owner_api_secret)
-      @service_api_key          = extract_value(config, :service_api_key)
-      @service_api_secret       = extract_value(config, :service_api_secret)
+      @host                     = config[:host]
+      @service_owner_api_key    = config[:service_owner_api_key]
+      @service_owner_api_secret = config[:service_owner_api_secret]
+      @service_api_key          = config[:service_api_key]
+      @service_api_secret       = config[:service_api_secret]
+      @extra_headers            = nil
     end
 
     def call_api(method, path, content_type, payload, user, password)
       headers = {}
 
-      headers.merge!(:content_type => content_type) unless content_type.nil?
+      headers.merge!(content_type: content_type) unless content_type.nil?
 
       headers.merge!(@extra_headers) unless @extra_headers.nil?
 
       response = execute(
-        :method   => method,
-        :url      => @host + path,
-        :headers  => headers,
-        :payload  => payload,
-        :user     => user,
-        :password => password
+        method:   method,
+        url:      @host + path,
+        headers:  headers,
+        payload:  payload,
+        user:     user,
+        password: password
       )
 
       body = body_as_string(response)
 
-      body.nil? ? nil : JSON.parse(response.body.to_s, :symbolize_names => true)
+      body && JSON.parse(body, symbolize_names: true)
     end
 
     def execute(parameters)
@@ -102,7 +78,7 @@ module Authlete
       response = exception.response
 
       # Create a base exception.
-      authlete_exception = Authlete::Exception.new(:message => message)
+      authlete_exception = Authlete::Exception.new(message: message)
 
       if response.nil?
         # No response information. Then, return an exception without HTTP
@@ -121,7 +97,7 @@ module Authlete
 
       begin
         # Parse the response body as a json.
-        response_body_json = JSON.parse(response_body.to_s, :symbolize_names => true)
+        response_body_json = JSON.parse(response_body.to_s, symbolize_names: true)
       rescue
         # Failed to parse the response body as a json. Then, return an exception
         # without HTTP response information.
@@ -145,11 +121,11 @@ module Authlete
 
       body = response.body.to_s
 
-      body.length == 0 ? nil : body
+      body.empty? ? nil : body
     end
 
     def on_general_exception(exception)
-      Authlete::Exception.new(:message => exception.message)
+      Authlete::Exception.new(message: exception.message)
     end
 
     def call_api_service_owner(method, path, content_type, payload)
@@ -182,26 +158,10 @@ module Authlete
       end
     end
 
-    def emit_rack_error_message(request, message)
-      begin
-        # Logging if possible.
-        request.env['rack.errors'].write("ERROR: #{message}\n")
-      rescue => e
-      end
-    end
-
     def to_query(params)
-      if params.nil? || params.size == 0
-        return ""
-      end
-
-      array = []
-
-      params.each do |key, value|
-        array.push("#{key}=#{value}")
-      end
+      return '' if params.nil? or params.empty?
 
-      "?" + array.join("&")
+      '?' + params.map { |k, v| "#{k.to_s}=#{v.to_s}" }.join('&')
     end
 
     def to_hash(object)
@@ -212,442 +172,299 @@ module Authlete
       return object.to_hash if object.respond_to?('to_hash')
 
       # Otherwise, raise an exception.
-      Authlete::Exception.new(:message => "Failed to convert the object to a hash.")
+      Authlete::Exception.new(message: "Failed to convert the object to a hash.")
+    end
+
+    def extract_requestable_scopes(hash)
+      hash.kind_of?(Hash) ? hash[:requestableScopes] : nil
     end
 
     public
 
-    # Call Authlete's /api/auth/authorization API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::AuthorizationRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::AuthorizationResponse is returned.
-    # On error, Authlete::Exception is raised.
     def authorization(request)
       hash = call_api_json_service("/api/auth/authorization", to_hash(request))
 
       Authlete::Model::Response::AuthorizationResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/authorization/issue API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::AuthorizationIssueRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::AuthorizationIssueResponse is returned.
-    # On error, Authlete::Exception is raised.
     def authorization_issue(request)
       hash = call_api_json_service("/api/auth/authorization/issue", to_hash(request))
 
       Authlete::Model::Response::AuthorizationIssueResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/authorization/fail API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::AuthorizationFailRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::AuthorizationFailResponse is returned.
-    # On error, Authlete::Exception is raised.
     def authorization_fail(request)
       hash = call_api_json_service("/api/auth/authorization/fail", to_hash(request))
 
       Authlete::Model::Response::AuthorizationFailResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/token API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::TokenRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::TokenResponse is returned.
-    # On error, Authlete::Exception is raised.
     def token(request)
       hash = call_api_json_service("/api/auth/token", to_hash(request))
 
       Authlete::Model::Response::TokenResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/token/issue API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::TokenIssueRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::TokenIssueResponse is returned.
-    # On error, Authlete::Exception is raised.
     def token_issue(request)
       hash = call_api_json_service("/api/auth/token/issue", to_hash(request))
 
       Authlete::Model::Response::TokenIssueResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/token/fail API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::TokenFailRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::TokenFailResponse is returned.
-    # On error, Authlete::Exception is raised.
     def token_fail(request)
       hash = call_api_json_service("/api/auth/token/fail", to_hash(request))
 
       Authlete::Model::Response::TokenFailResponse.new(hash)
     end
 
-    # Call Authlete's /api/service/creatable API.
-    #
-    # On success, an instance of Authlete::Model::Response::ServiceCreatableResponse is returned.
-    # On error, Authlete::Exception is raised.
-    def service_creatable
-      hash = call_api_service_owner(:get, "/api/service/creatable", nil, nil)
-
-      Authlete::Model::Response::ServiceCreatableResponse.new(hash)
-    end
-
-    # Call Authlete's /api/service/create API.
-    #
-    # <tt>service</tt> is the content of a new service to create. The type of
-    # the given object is either <tt>Hash</tt> or any object which
-    # responds to <tt>to_hash</tt>. In normal cases, Authlete::Model::Service
-    # (which responds to <tt>to_hash</tt>) should be used.
-    #
-    # On success, an instance of Authlete::Model::ServiceList is returned.
-    # On error, Authlete::Exception is raised.
     def service_create(service)
       hash = call_api_json_service_owner("/api/service/create", to_hash(service))
 
       Authlete::Model::Service.new(hash)
     end
 
-    # Call Authlete's /api/service/delete/{api_key} API.
-    #
-    # On error, Authlete::Exception is raised.
     def service_delete(api_key)
       call_api_service_owner(:delete, "/api/service/delete/#{api_key}", nil, nil)
     end
 
-    # Call Authlete's /api/service/get/{api_key} API.
-    #
-    # <tt>api_key</tt> is the API key of the service whose information
-    # you want to get.
-    #
-    # On success, an instance of Authlete::Model::Service is returned.
-    # On error, Authlete::Exception is raised.
     def service_get(api_key)
       hash = call_api_service_owner(:get, "/api/service/get/#{api_key}", nil, nil)
 
       Authlete::Model::Service.new(hash)
     end
 
-    # Call Authlete's /api/service/get/list API.
-    #
-    # <tt>params</tt> is an optional hash which contains query parameters
-    # for /api/service/get/list API. <tt>:start</tt> and <tt>:end</tt> are
-    # a start index (inclusive) and an end index (exclusive), respectively.
-    #
-    # On success, an instance of Authlete::Model::ServiceList is returned.
-    # On error, Authlete::Exception is raised.
     def service_get_list(params = nil)
       hash = call_api_service_owner(:get, "/api/service/get/list#{to_query(params)}", nil, nil)
 
-      Authlete::Model::ServiceList.new(hash)
+      Authlete::Model::Response::ServiceListResponse.new(hash)
     end
 
-    # Call Authlete's /api/service/update/{api_key} API.
-    #
-    # <tt>api_key</tt> is the API key of the service whose information
-    # you want to get.
-    #
-    # <tt>service</tt> is the new content of the service. The type of
-    # the given object is either <tt>Hash</tt> or any object which
-    # responds to <tt>to_hash</tt>. In normal cases, Authlete::Model::Service
-    # (which responds to <tt>to_hash</tt>) should be used.
-    #
-    # On success, an instance of Authlete::Model::Service is returned.
-    # On error, Authlete::Exception is raised.
     def service_update(api_key, service)
       hash = call_api_json_service_owner("/api/service/update/#{api_key}", to_hash(service))
 
       Authlete::Model::Service.new(hash)
     end
 
-    # Call Authlete's /api/serviceowner/get/self API.
-    #
-    # On success, an instance of Authlete::Model::ServiceOwner is returned.
-    # On error, Authlete::Exception is raised.
     def serviceowner_get_self
       hash = call_api_service_owner(:get, "/api/serviceowner/get/self", nil, nil)
 
       Authlete::Model::ServiceOwner.new(hash)
     end
 
-    # Call Authlete's /api/client/create API.
-    #
-    # <tt>client</tt> is the content of a new service to create. The type of
-    # the given object is either <tt>Hash</tt> or any object which
-    # responds to <tt>to_hash</tt>. In normal cases, Authlete::Model::Client
-    # (which responds to <tt>to_hash</tt>) should be used.
-    #
-    # On success, an instance of Authlete::Model::ClientList is returned.
-    # On error, Authlete::Exception is raised.
     def client_create(client)
       hash = call_api_json_service("/api/client/create", to_hash(client))
 
       Authlete::Model::Client.new(hash)
     end
 
-    # Call Authlete's /api/client/delete/{clientId} API.
-    #
-    # <tt>client_id</tt> is the client ID of a client.
-    #
-    # On error, Authlete::Exception is raised.
     def client_delete(client_id)
       call_api_service(:delete, "/api/client/delete/#{client_id}", nil, nil)
     end
 
-    # Call Authlete's /api/client/get/{clientId} API.
-    #
-    # <tt>client_id</tt> is the client ID of a client.
-
-    # On success, an instance of Authlete::Model::Client is returned.
-    # On error, Authlete::Exception is raised.
     def client_get(client_id)
       hash = call_api_service(:get, "/api/client/get/#{client_id}", nil, nil)
 
       Authlete::Model::Client.new(hash)
     end
 
-    # Call Authlete's /api/client/get/list API.
-    #
-    # <tt>params</tt> is an optional hash which contains query parameters
-    # for /api/client/get/list API. <tt>:start</tt> and <tt>:end</tt> are
-    # a start index (inclusive) and an end index (exclusive), respectively.
-    #
-    # On success, an instance of Authlete::Model::ClientList is returned.
-    # On error, Authlete::Exception is raised.
     def client_get_list(params = nil)
       hash = call_api_service(:get, "/api/client/get/list#{to_query(params)}", nil, nil)
 
-      Authlete::Model::ClientList.new(hash)
+      Authlete::Model::Response::ClientListResponse.new(hash)
     end
 
-    # Call Authlete's /api/client/update/{clientId} API.
-    #
-    # <tt>client</tt> is the new content of the client. The type of
-    # the given object is either <tt>Hash</tt> or any object which
-    # responds to <tt>to_hash</tt>. In normal cases, Authlete::Model::Client
-    # (which responds to <tt>to_hash</tt>) should be used.
-    #
-    # On success, an instance of Authlete::Model::Client is returned.
-    # On error, Authlete::Exception is raised.
     def client_update(client)
-      hash = call_api_json_service("/api/client/update/#{client[:clientId]}", to_hash(client))
+      hash = call_api_json_service("/api/client/update/#{client.clientId}", to_hash(client))
 
       Authlete::Model::Client.new(hash)
     end
 
-    # Call Authlete's /api/client/secret/refresh/{clientIdentifier} API.
-    #
-    # <tt>clientIdentifier</tt> is the client ID or the client ID alias of a client.
-    #
-    # On success, an instance of Authlete::Model::Response::ClientSecretRefreshResponse is returned.
-    # On error, Authlete::Exception is raised.
     def refresh_client_secret(client_identifier)
       hash = call_api_service(:get, "/api/client/secret/refresh/#{client_identifier}", nil, nil)
 
       Authlete::Model::Response::ClientSecretRefreshResponse.new(hash)
     end
 
-    # Call Authlete's /api/client/secret/update/{clientIdentifier} API.
-    #
-    # <tt>client_identifier</tt> is the client ID or the client ID alias of a client.
-    # <tt>client_secret</tt> is the client secret of a client.
-    #
-    # On success, an instance of Authlete::Model::Response::ClientSecretUpdateResponse is returned.
-    # On error, Authlete::Exception is raised.
     def update_client_secret(client_identifier, client_secret)
-      request = Authlete::Model::Request::ClientSecretUpdateRequest.new(:client_secret => client_secret)
+      request = Authlete::Model::Request::ClientSecretUpdateRequest.new(clientSecret: client_secret)
 
       hash = call_api_json_service("/api/client/secret/update/#{client_identifier}", request.to_hash)
 
       Authlete::Model::Response::ClientSecretUpdateResponse.new(hash)
     end
 
-    # Call Authlete's /api/client/authorization/get/list API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::ClientSecretUpdateRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::ClientAuthorizationListResponse is returned.
-    # On error, Authlete::Exception is raised.
     def get_client_authorization_list(request)
       hash = call_api_json_service("/api/client/authorization/get/list", to_hash(request))
 
-      Authlete::Model::Response::ClientAuthorizationListResponse.new(hash)
+      Authlete::Model::Response::AuthorizedClientListResponse.new(hash)
     end
 
-    # Call Authlete's /api/client/authorization/update API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::ClientSecretUpdateRequest.
-    #
-    # On error, Authlete::Exception is raised.
     def update_client_authorization(client_id, request)
       call_api_json_service("/api/client/authorization/update/#{client_id}", to_hash(request))
     end
 
-    # Call Authlete's /api/client/authorization/delete/{clientId} API.
-    #
-    # <tt>client_id</tt> is the client ID of a client.
-    # <tt>subject</tt> is the unique ID of an end user.
-    #
-    # On error, Authlete::Exception is raised.
     def delete_client_authorization(client_id, subject)
-      request = Authlete::Model::Request::ClientAuthorizationDeleteRequest.new(:subject => subject)
+      request = Authlete::Model::Request::ClientAuthorizationDeleteRequest.new(subject: subject)
 
       call_api_json_service("/api/client/authorization/delete/#{client_id}", request.to_hash)
     end
 
-    # Call Authlete's /api/auth/introspection API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::IntrospectionRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::IntrospectionResponse is returned.
-    # On error, Authlete::Exception is raised.
     def introspection(request)
       hash = call_api_json_service('/api/auth/introspection', to_hash(request))
 
       Authlete::Model::Response::IntrospectionResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/introspection/standard API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::StandardIntrospectionRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::StandardIntrospectionResponse is returned.
-    # On error, Authlete::Exception is raised.
     def standard_introspection(request)
       hash = call_api_json_service('/api/auth/introspection/standard', to_hash(request))
 
       Authlete::Model::Response::StandardIntrospectionResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/revocation API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::RevocationRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::RevocationResponse is returned.
-    # On error, Authlete::Exception is raised.
     def revocation(request)
       hash = call_api_json_service("/api/auth/revocation", to_hash(request))
 
       Authlete::Model::Response::RevocationResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/userinfo API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::UserInfoRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::UserInfoResponse is returned.
-    # On error, Authlete::Exception is raised.
     def user_info(request)
       hash = call_api_json_service("/api/auth/userinfo", to_hash(request))
 
       Authlete::Model::Response::UserInfoResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/userinfo/issue API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::UserInfoIssueRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::UserInfoIssueResponse is returned.
-    # On error, Authlete::Exception is raised.
     def user_info_issue(request)
       hash = call_api_json_service("/api/auth/userinfo/issue", to_hash(request))
 
       Authlete::Model::Response::UserInfoIssueResponse.new(hash)
     end
 
-    # Call Authlete's /api/service/jwks/get API.
-    #
-    # <tt>params</tt> is an optional hash which contains query parameters
-    # for /api/service/jwks/get API. The hash can contain the following parameters.
-    #
-    # <tt>:includePrivateKeys</tt>
-    #   This boolean value indicates whether the response should include the
-    #   private keys associated with the service or not. If "true", the private
-    #   keys are included in the response. The default value is "false".
-    #
-    # <tt>:pretty</tt>
-    #   This boolean value indicates whether the JSON in the response should
-    #   be formatted or not. If true, the JSON in the response is pretty-formatted.
-    #   The default value is false.
-    #
-    # On success, a JWK Set for a service is returned.
-    # On error, Authlete::Exception is raised.
     def get_service_jwks(params = nil)
       call_api_service(:get, "/api/service/jwks/get#{to_query(params)}", nil, nil)
     end
 
-    # Call Authlete's /api/service/configuration API.
-    #
-    # <tt>params</tt> is an optional hash which contains query parameters
-    # for /api/service/configuration API. The hash can contain the following
-    # parameter.
-    #
-    # <tt>:includePrivateKeys</tt>
-    #   This boolean value indicates whether the response should include the
-    #   private keys associated with the service or not. If "true", the private
-    #   keys are included in the response. The default value is "false".
-    #
-    # On success, configuration information of a service is returned.
-    # On error, Authlete::Exception is raised.
     def get_service_configuration(params = nil)
       call_api_service(:get, "/api/service/configuration#{to_query(params)}", nil, nil)
     end
 
-    # Call Authlete's /api/auth/token/create API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::TokenCreateRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::TokenCreateResponse is returned.
-    # On error, Authlete::Exception is raised.
     def token_create(request)
       hash = call_api_json_service("/api/auth/token/create", to_hash(request))
 
       Authlete::Model::Response::TokenCreateResponse.new(hash)
     end
 
-    # Call Authlete's /api/auth/token/update API.
-    #
-    # <tt>request</tt> is an instance of Authlete::Model::Request::TokenUpdateRequest.
-    #
-    # On success, an instance of Authlete::Model::Response::TokenUpdateResponse is returned.
-    # On error, Authlete::Exception is raised.
     def token_update(request)
       hash = call_api_json_service("/api/auth/token/update", to_hash(request))
 
       Authlete::Model::Response::TokenUpdateResponse.new(hash)
     end
 
-    # Call Authlete's /api/client/granted_scopes/get/{clientId} API.
-    #
-    # <tt>client_id</tt> is the client ID of a client.
-    # <tt>subject</tt> is the unique ID of an end user.
-    #
-    # On success, an instance of Authlete::Model::Response::GrantedScopesGetResponse is returned.
-    # On error, Authlete::Exception is raised.
+    def get_token_list(params = nil)
+      hash = call_api_service(:get, "/api/auth/token/get/list#{to_query(params)}", nil, nil)
+
+      Authlete::Model::Response::TokenListResponse.new(hash)
+    end
+
     def get_granted_scopes(client_id, subject)
-      request = Authlete::Model::Request::GrantedScopesRequest.new(:subject => subject)
+      request = Authlete::Model::Request::GrantedScopesRequest.new(subject: subject)
 
-      hash = call_api_json_service("/api/client/granted_scopes/get/#{client_id}", request.to_hash)
+      hash = call_api_json_service("/api/client/granted_scopes/get/#{client_id}", to_hash(request))
 
       Authlete::Model::Response::GrantedScopesGetResponse.new(hash)
     end
 
-    # Call Authlete's /api/client/granted_scopes/delete/{clientId} API.
-    #
-    # <tt>client_id</tt> is the client ID of a client.
-    # <tt>subject</tt> is the unique ID of an end user.
-    #
-    # On error, Authlete::Exception is raised.
     def delete_granted_scopes(client_id, subject)
-      request = Authlete::Model::Request::GrantedScopesRequest.new(:subject => subject)
+      request = Authlete::Model::Request::GrantedScopesRequest.new(subject: subject)
+
+      call_api_json_service("/api/client/granted_scopes/delete/#{client_id}", to_hash(request))
+    end
+
+    def get_requestable_scopes(client_id)
+      hash = call_api_service(:get, "/api/client/extension/requestable_scopes/get/#{client_id}", nil, nil)
+
+      extract_requestable_scopes(hash)
+    end
+
+    def set_requestable_scopes(client_id, scopes)
+      hash = call_api_json_service("/api/client/extension/requestable_scopes/update/#{client_id}", { requestableScopes: scopes })
+
+      extract_requestable_scopes(hash)
+    end
+
+    def delete_requestable_scopes(client_id)
+      call_api_service(:delete, "/api/client/extension/requestable_scopes/delete/#{client_id}", nil, nil)
+    end
+
+    def dynamic_client_register(request)
+      hash = call_api_json_service("/api/client/registration", to_hash(request))
+
+      Authlete::Model::Response::ClientRegistrationResponse.new(hash)
+    end
+
+    def dynamic_client_get(request)
+      hash = call_api_json_service("/api/client/registration/get", to_hash(request))
+
+      Authlete::Model::Response::ClientRegistrationResponse.new(hash)
+    end
+
+    def dynamic_client_update(request)
+      hash = call_api_json_service("/api/client/registration/update", to_hash(request))
+
+      Authlete::Model::Response::ClientRegistrationResponse.new(hash)
+    end
+
+    def dynamic_client_delete(request)
+      hash = call_api_json_service("/api/client/registration/delete", to_hash(request))
 
-      call_api_json_service("/api/client/granted_scopes/delete/#{client_id}", request.to_hash)
+      Authlete::Model::Response::ClientRegistrationResponse.new(hash)
+    end
+
+    def backchannel_authentication(request)
+      hash = call_api_json_service("/api/backchannel/authentication", to_hash(request))
+
+      Authlete::Model::Response::BackchannelAuthenticationResponse.new(hash)
+    end
+
+    def backchannel_authentication_issue(request)
+      hash = call_api_json_service("/api/backchannel/authentication/issue", to_hash(request))
+
+      Authlete::Model::Response::BackchannelAuthenticationIssueResponse.new(hash)
+    end
+
+    def backchannel_authentication_fail(request)
+      hash = call_api_json_service("/api/backchannel/authentication/fail", to_hash(request))
+
+      Authlete::Model::Response::BackchannelAuthenticationFailResponse.new(hash)
+    end
+
+    def backchannel_authentication_complete(request)
+      hash = call_api_json_service("/api/backchannel/authentication/complete", to_hash(request))
+
+      Authlete::Model::Response::BackchannelAuthenticationCompleteResponse.new(hash)
+    end
+
+    def device_authorization(request)
+      hash = call_api_json_service("/api/device/authorization", to_hash(request))
+
+      Authlete::Model::Response::DeviceAuthorizationResponse.new(hash)
+    end
+
+    def device_complete(request)
+      hash = call_api_json_service("/api/device/complete", to_hash(request))
+
+      Authlete::Model::Response::DeviceCompleteResponse.new(hash)
+    end
+
+    def device_verification(request)
+      hash = call_api_json_service("/api/device/verification", to_hash(request))
+
+      Authlete::Model::Response::DeviceVerificationResponse.new(hash)
+    end
+
+    def push_authorization_request(request)
+      hash = call_api_json_service("/api/pushed_auth_req", to_hash(request))
+
+      Authlete::Model::Response::PushedAuthReqResponse.new(hash)
     end
 
     # Ensure that the request contains a valid access token.
@@ -680,16 +497,16 @@ module Authlete
       if access_token.nil?
         # The request does not contain a valid access token.
         return Authlete::Model::Response::IntrospectionResponse.new(
-          :action          => 'BAD_REQUEST',
-          :responseContent => 'Bearer error="invalid_token",error_description="The request does not contain a valid access token."'
+          action:          'BAD_REQUEST',
+          responseContent: 'Bearer error="invalid_token",error_description="The request does not contain a valid access token."'
         )
       end
 
       # Create a request for Authlete's /api/auth/introspection API.
       request = Authlete::Model::Request::IntrospectionRequest.new(
-        :token   => access_token,
-        :scopes  => scopes,
-        :subject => subject
+        token:   access_token,
+        scopes:  scopes,
+        subject: subject
       )
 
       begin
@@ -704,13 +521,21 @@ module Authlete
 
         # Failed to introspect the access token.
         return Authlete::Model::Response::IntrospectionResponse.new(
-          :action          => 'INTERNAL_SERVER_ERROR',
-          :responseContent => "Bearer error=\"server_error\",error_description=\"#{message}\""
+          action:          'INTERNAL_SERVER_ERROR',
+          responseContent: "Bearer error=\"server_error\",error_description=\"#{message}\""
         )
       end
 
       # Return the response from Authlete's /api/auth/introspection API.
       result
     end
+
+    def emit_rack_error_message(request, message)
+      begin
+        # Logging if possible.
+        request.env['rack.errors'].write("ERROR: #{message}\n")
+      rescue => e
+      end
+    end
   end
-end
+end