authlete_ruby_sdk 0.0.2.beta → 0.0.5.pre.beta

data/lib/authlete/dynamic_client_registration.rb

@@ -39,66 +39,15 @@ module Authlete
     end
 
 
-    sig { params(request_body: Models::Operations::ClientRegistrationApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::ClientRegistrationApiResponse) }
-    def register(request_body:, service_id:, timeout_ms: nil)
+
+
+    sig { params(request_body: Models::Operations::ClientRegistrationApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::ClientRegistrationApiResponse) }
+    def register(request_body:, service_id:, timeout_ms: nil, http_headers: nil)
       # register - Register Client
       # Register a client. This API is supposed to be used to implement a client registration endpoint that
       # complies with [RFC 7591](https://datatracker.ietf.org/doc/html/rfc7591) (OAuth 2.0 Dynamic Client
       # Registration Protocol).
-      # ### Description
-      # This API is supposed to be called from the within the implementation of the client registration
-      # endpoint of the authorization server. The authorization server implementation should retrieve
-      # the value of `action` from the response and take the following steps according to the value.
-      # **INTERNAL\_SERVER\_ERROR**
-      # When the value of `action` is `INTERNAL\_SERVER\_ERROR`, it means that the API call from the authorization
-      # server implementation was wrong or that an error occurred in Authlete.
-      # In either case, from a viewpoint of the client or developer, it is an error on the server side.
-      # Therefore, the authorization server implementation should generate a response with "500 Internal
-      # Server Error"s and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 500 Internal Server Error
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # The endpoint implementation may return another different response to the client or developer since
-      # "500 Internal Server Error" is not required by the specification.
-      # **BAD\_REQUEST**
-      # When the value of `action` is `BAD\_REQUEST`, it means that the request from the client or developer
-      # was wrong.
-      # The authorization server implementation should generate a response with "400 Bad Request" and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used
-      # as the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # **CREATED**
-      # When the value of `action` is `CREATED`, it means that the request from the client or developer is
-      # valid.
-      # The authorization server implementation should generate a response to the client or developer with
-      # "201 CREATED" and `application/json`.
-      # The `responseContent` a JSON string which can be used as the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 201 CREATED
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # 
+      #
       request = Models::Operations::ClientRegistrationApiRequest.new(
         service_id: service_id,
         request_body: request_body
@@ -117,7 +66,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -153,6 +102,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -250,85 +202,13 @@ module Authlete
     end
 
 
-    sig { params(request_body: Models::Operations::ClientRegistrationGetApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::ClientRegistrationGetApiResponse) }
-    def retrieve(request_body:, service_id:, timeout_ms: nil)
+    sig { params(request_body: Models::Operations::ClientRegistrationGetApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::ClientRegistrationGetApiResponse) }
+    def retrieve(request_body:, service_id:, timeout_ms: nil, http_headers: nil)
       # retrieve - Get Client
       # Get a dynamically registered client. This API is supposed to be used to implement a client registration
       # management endpoint that complies with [RFC 7592](https://datatracker.ietf.org/doc/html/rfc7592)
       # (OAuth 2.0 Dynamic Registration Management).
-      # ### Description
-      # This API is supposed to be called from the within the implementation of the client registration
-      # management endpoint of the authorization server. The authorization server implementation should
-      # retrieve the value of `action` from the response and take the following steps according to the value.
-      # **INTERNAL\_SERVER\_ERROR**
-      # When the value of `action` is `INTERNAL\_SERVER\_ERROR`, it means that the API call from the authorization
-      # server implementation was wrong or that an error occurred in Authlete.
-      # In either case, from a viewpoint of the client or developer, it is an error on the server side.
-      # Therefore, the authorization server implementation should generate a response to the client or developer
-      # with "500 Internal Server Error"s and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 500 Internal Server Error
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # The endpoint implementation may return another different response to the client or developer since
-      # "500 Internal Server Error" is not required by the specification.
-      # **BAD\_REQUEST**
-      # When the value of `action` is `BAD\_REQUEST`, it means that the request from the client or developer
-      # was wrong.
-      # The authorization server implementation should generate a response to the client or developer with
-      # "400 Bad Request" and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # **UNAUTHORIZED**
-      # When the value of `action` is `UNAUTHORIZED`, it means that the registration access token used by
-      # the client configuration request (RFC 7592) is invalid, or the client application which the token
-      # is tied to does not exist any longer or is invalid.
-      # The HTTP status of the response returned to the client application must be "401 Unauthorized" and
-      # the content type must be `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the endpoint implementation should generate and return
-      # to the client application.
-      # ```
-      # HTTP/1.1 401 Unauthorized
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # NOTE: The `UNAUTHORIZED` value was added in October, 2021. See the description of
-      # `Service.unauthorizedOnClientConfigSupported` for details.
-      # **OK**
-      # When the value of `action` is `OK`, it means that the request from the client or developer is valid.
-      # The authorization server implementation should generate a response to the client or developer with
-      # "200 OK" and `application/json`.
-      # The `responseContent` a JSON string which can be used as the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 200 OK
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # 
+      #
       request = Models::Operations::ClientRegistrationGetApiRequest.new(
         service_id: service_id,
         request_body: request_body
@@ -347,7 +227,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -383,6 +263,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -480,85 +363,13 @@ module Authlete
     end
 
 
-    sig { params(request_body: Models::Operations::ClientRegistrationUpdateApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::ClientRegistrationUpdateApiResponse) }
-    def update(request_body:, service_id:, timeout_ms: nil)
+    sig { params(request_body: Models::Operations::ClientRegistrationUpdateApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::ClientRegistrationUpdateApiResponse) }
+    def update(request_body:, service_id:, timeout_ms: nil, http_headers: nil)
       # update - Update Client
       # Update a dynamically registered client. This API is supposed to be used to implement a client
       # registration management endpoint that complies with [RFC 7592](https://datatracker.ietf.org/doc/html/rfc7592)
       # (OAuth 2.0 Dynamic Registration Management).
-      # ### Description
-      # This API is supposed to be called from the within the implementation of the client registration
-      # management endpoint of the authorization server. The authorization server implementation should
-      # retrieve the value of `action` from the response and take the following steps according to the value.
-      # **INTERNAL\_SERVER\_ERROR**
-      # When the value of `action` is `INTERNAL\_SERVER\_ERROR`, it means that the API call from the authorization
-      # server implementation was wrong or that an error occurred in Authlete.
-      # In either case, from a viewpoint of the client or developer, it is an error on the server side.
-      # Therefore, the authorization server implementation should generate a response with "500 Internal
-      # Server Error"s and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 500 Internal Server Error
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # The endpoint implementation may return another different response to the client or developer since
-      # "500 Internal Server Error" is not required by the specification.
-      # **BAD\_REQUEST**
-      # When the value of `action` is `BAD\_REQUEST`, it means that the request from the client or developer
-      # was wrong.
-      # The authorization server implementation should generate a response with "400 Bad Request" and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # **UNAUTHORIZED**
-      # When the value of `action` is `UNAUTHORIZED`, it means that the registration access token used by
-      # the client configuration request (RFC 7592) is invalid, or the client application which the token
-      # is tied to does not exist any longer or is invalid.
-      # The HTTP status of the response returned to the client application must be "401 Unauthorized" and
-      # the content type must be `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the endpoint implementation should generate and return
-      # to the client application.
-      # ```
-      # HTTP/1.1 401 Unauthorized
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # NOTE: The `UNAUTHORIZED` value was added in October, 2021. See the description of
-      # `Service.unauthorizedOnClientConfigSupported` for details.
-      # **UPDATED**
-      # When the value of `action` is `UPDATED`, it means that the request from the client or developer is
-      # valid.
-      # The authorization server implementation should generate a response to the client or developer with
-      # "200 OK" and `application/json`.
-      # The `responseContent` a JSON string which can be used as the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 200 OK
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # 
+      #
       request = Models::Operations::ClientRegistrationUpdateApiRequest.new(
         service_id: service_id,
         request_body: request_body
@@ -577,7 +388,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -613,6 +424,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -710,82 +524,13 @@ module Authlete
     end
 
 
-    sig { params(request_body: Models::Operations::ClientRegistrationDeleteApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::ClientRegistrationDeleteApiResponse) }
-    def destroy(request_body:, service_id:, timeout_ms: nil)
+    sig { params(request_body: Models::Operations::ClientRegistrationDeleteApiRequestBody, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::ClientRegistrationDeleteApiResponse) }
+    def destroy(request_body:, service_id:, timeout_ms: nil, http_headers: nil)
       # destroy - Delete Client
       # Delete a dynamically registered client. This API is supposed to be used to implement a client
       # registration management endpoint that complies with [RFC 7592](https://datatracker.ietf.org/doc/html/rfc7592)
       # (OAuth 2.0 Dynamic Registration Management).
-      # ### Description
-      # This API is supposed to be called from the within the implementation of the client registration
-      # management endpoint of the authorization server. The authorization server implementation should
-      # retrieve the value of `action` from the response and take the following steps according to the value.
-      # **INTERNAL\_SERVER\_ERROR**
-      # When the value of `action` is `INTERNAL\_SERVER\_ERROR`, it means that the API call from the authorization
-      # server implementation was wrong or that an error occurred in Authlete.
-      # In either case, from a viewpoint of the client or developer, it is an error on the server side.
-      # Therefore, the authorization server implementation should generate a response with "500 Internal
-      # Server Error"s and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 500 Internal Server Error
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # The endpoint implementation may return another different response to the client or developer since
-      # "500 Internal Server Error" is not required by the specification.
-      # **BAD\_REQUEST**
-      # When the value of `action` is `BAD\_REQUEST`, it means that the request from the client or developer
-      # was wrong.
-      # The authorization server implementation should generate a response with "400 Bad Request" and `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # **UNAUTHORIZED**
-      # When the value of `action` is `UNAUTHORIZED`, it means that the registration access token used by
-      # the client configuration request (RFC 7592) is invalid, or the client application which the token
-      # is tied to does not exist any longer or is invalid.
-      # The HTTP status of the response returned to the client application must be "401 Unauthorized" and
-      # the content type must be `application/json`.
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used as
-      # the entity body of the response.
-      # The following illustrates the response which the endpoint implementation should generate and return
-      # to the client application.
-      # ```
-      # HTTP/1.1 401 Unauthorized
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # NOTE: The `UNAUTHORIZED` value was added in October, 2021. See the description of
-      # `Service.unauthorizedOnClientConfigSupported` for details.
-      # **DELETED**
-      # When the value of `action` is `DELETED`, it means that the request from the client or developer is
-      # valid.
-      # The authorization server implementation should generate a response to the client or developer with
-      # "204 No Content".
-      # The following illustrates the response which the authorization server implementation should generate
-      # and return to the client or developer.
-      # ```
-      # HTTP/1.1 204 No Content
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # ```
-      # 
+      #
       request = Models::Operations::ClientRegistrationDeleteApiRequest.new(
         service_id: service_id,
         request_body: request_body
@@ -804,7 +549,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -840,6 +585,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -935,5 +683,5 @@ module Authlete
 
       end
     end
-  end
+end
 end

data/lib/authlete/federation.rb

@@ -39,72 +39,17 @@ module Authlete
     end
 
 
-    sig { params(service_id: ::String, request_body: T.nilable(Models::Operations::FederationConfigurationApiRequestBody), timeout_ms: T.nilable(Integer)).returns(Models::Operations::FederationConfigurationApiResponse) }
-    def configuration(service_id:, request_body: nil, timeout_ms: nil)
+
+
+    sig { params(service_id: ::String, request_body: T.nilable(Models::Operations::FederationConfigurationApiRequestBody), timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::FederationConfigurationApiResponse) }
+    def configuration(service_id:, request_body: nil, timeout_ms: nil, http_headers: nil)
       # configuration - Process Entity Configuration Request
       # This API gathers the federation configuration about a service.
       # The authorization server implementation should
       # retrieve the value of the `action`
       # response parameter from the API response and take the following steps
       # according to the value.
-      # ### `OK`
-      # When the value of the  `action` response
-      # parameter is `OK`, it means that Authlete
-      # could prepare an entity configuration successfully.
-      # In this case, the implementation of the entity configuration endpoint of the
-      # authorization server should return an HTTP response to the client application
-      # with the HTTP status code "`200 OK`" and the content type
-      # "`application/entity-statement+jwt`". The message body (= an entity
-      # configuration in the JWT format) of the response has been prepared by
-      # Authlete's `/federation/configuration` API and it is available as the
-      # `responseContent` response parameter.
-      # The implementation of the entity configuration endpoint can construct an
-      # HTTP response by doing like below.
-      # ```
-      # 200 OK
-      # Content-Type: application/entity-statement+jwt
-      # (Other HTTP headers)
-      # (the value of the responseContent response parameter)
-      # ```
-      # ### `NOT_FOUND`
-      # When the value of the  `action` response
-      # parameter is `NOT_FOUND`, it means that
-      # the service configuration has not enabled the feature of [OpenID Connect
-      # Federation 1.0](https://openid.net/specs/openid-connect-federation-1_0.html) and so the client application should have not access the
-      # entity configuration endpoint.
-      # In this case, the implementation of the entity configuration endpoint of the
-      # authorization server should return an HTTP response to the client application
-      # with the HTTP status code "`404 Not Found`" and the content type
-      # "`application/json`". The message body (= error information in the JSON
-      # format) of the response has been prepared by Authlete's
-      # `/federation/configuration` API and it is available as the
-      # `responseContent` response parameter.
-      # The implementation of the entity configuration endpoint can construct an
-      # HTTP response by doing like below.
-      # ```
-      # 404 Not Found
-      # Content-Type: application/json
-      # (Other HTTP headers)
-      # (the value of the responseContent response parameter)
-      # ```
-      # ### `INTERNAL_SERVER_ERROR`
-      # could prepare an entity configuration successfully.
-      # In this case, the implementation of the entity configuration endpoint of the
-      # authorization server should return an HTTP response to the client application
-      # with the HTTP status code "`200 OK`" and the content type
-      # "`application/entity-statement+jwt`". The message body (= an entity
-      # configuration in the JWT format) of the response has been prepared by
-      # Authlete's `/federation/configuration` API and it is available as the
-      # `responseContent` response parameter.
-      # The implementation of the entity configuration endpoint can construct an
-      # HTTP response by doing like below.
-      # ```
-      # 200 OK
-      # Content-Type: application/entity-statement+jwt
-      # (Other HTTP headers)
-      # (the value of the responseContent response parameter)
-      # ```
-      # 
+      #
       request = Models::Operations::FederationConfigurationApiRequest.new(
         service_id: service_id,
         request_body: request_body
@@ -122,7 +67,7 @@ module Authlete
       req_content_type, data, form = Utils.serialize_request_body(request, false, false, :request_body, :json)
       headers['content-type'] = req_content_type
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -158,6 +103,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -255,8 +203,8 @@ module Authlete
     end
 
 
-    sig { params(federation_registration_request: Models::Components::FederationRegistrationRequest, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::FederationRegistrationApiResponse) }
-    def registration(federation_registration_request:, service_id:, timeout_ms: nil)
+    sig { params(federation_registration_request: Models::Components::FederationRegistrationRequest, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::FederationRegistrationApiResponse) }
+    def registration(federation_registration_request:, service_id:, timeout_ms: nil, http_headers: nil)
       # registration - Process Federation Registration Request
       # The Authlete API is for implementations of the **federation registration
       # endpoint** that accepts "explicit client registration". Its details are
@@ -279,7 +227,7 @@ module Authlete
       # federation registration endpoint should call Authlete's
       # `/federation/registration` API with the trust chain set to the
       # `trustChain` request parameter.
-      # 
+      #
       request = Models::Operations::FederationRegistrationApiRequest.new(
         service_id: service_id,
         federation_registration_request: federation_registration_request
@@ -298,7 +246,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -334,6 +282,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -429,5 +380,5 @@ module Authlete
 
       end
     end
-  end
+end
 end

data/lib/authlete/grant_management.rb

@@ -39,12 +39,14 @@ module Authlete
     end
 
 
-    sig { params(g_m_request: Models::Components::GMRequest, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::GrantMApiResponse) }
-    def process_request(g_m_request:, service_id:, timeout_ms: nil)
+
+
+    sig { params(g_m_request: Models::Components::GMRequest, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::GrantMApiResponse) }
+    def process_request(g_m_request:, service_id:, timeout_ms: nil, http_headers: nil)
       # process_request - Process Grant Management Request
       # The API is for the implementation of the grant management endpoint which is
       # defined in "[Grant Management for OAuth 2.0](https://openid.net/specs/fapi-grant-management.html)".
-      # 
+      #
       request = Models::Operations::GrantMApiRequest.new(
         service_id: service_id,
         g_m_request: g_m_request
@@ -63,7 +65,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -99,6 +101,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -194,5 +199,5 @@ module Authlete
 
       end
     end
-  end
+end
 end