authlete_ruby_sdk 0.0.2.beta → 0.0.5.pre.beta

data/lib/authlete/hardware_security_keys.rb

@@ -39,8 +39,10 @@ module Authlete
     end
 
 
-    sig { params(hsk_create_request: Models::Components::HskCreateRequest, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::HskCreateApiResponse) }
-    def create(hsk_create_request:, service_id:, timeout_ms: nil)
+
+
+    sig { params(hsk_create_request: Models::Components::HskCreateRequest, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::HskCreateApiResponse) }
+    def create(hsk_create_request:, service_id:, timeout_ms: nil, http_headers: nil)
       # create - Create Security Key
       request = Models::Operations::HskCreateApiRequest.new(
         service_id: service_id,
@@ -60,7 +62,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -96,6 +98,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -193,8 +198,8 @@ module Authlete
     end
 
 
-    sig { params(service_id: ::String, handle: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::HskDeleteApiResponse) }
-    def destroy(service_id:, handle:, timeout_ms: nil)
+    sig { params(service_id: ::String, handle: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::HskDeleteApiResponse) }
+    def destroy(service_id:, handle:, timeout_ms: nil, http_headers: nil)
       # destroy - Delete Security Key
       request = Models::Operations::HskDeleteApiRequest.new(
         service_id: service_id,
@@ -238,6 +243,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -335,8 +343,8 @@ module Authlete
     end
 
 
-    sig { params(service_id: ::String, handle: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::HskGetApiResponse) }
-    def retrieve(service_id:, handle:, timeout_ms: nil)
+    sig { params(service_id: ::String, handle: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::HskGetApiResponse) }
+    def retrieve(service_id:, handle:, timeout_ms: nil, http_headers: nil)
       # retrieve - Get Security Key
       request = Models::Operations::HskGetApiRequest.new(
         service_id: service_id,
@@ -380,6 +388,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -477,8 +488,8 @@ module Authlete
     end
 
 
-    sig { params(service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::HskGetListApiResponse) }
-    def list(service_id:, timeout_ms: nil)
+    sig { params(service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::HskGetListApiResponse) }
+    def list(service_id:, timeout_ms: nil, http_headers: nil)
       # list - List Security Keys
       request = Models::Operations::HskGetListApiRequest.new(
         service_id: service_id
@@ -521,6 +532,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -616,5 +630,5 @@ module Authlete
 
       end
     end
-  end
+end
 end

data/lib/authlete/introspection.rb

@@ -39,134 +39,13 @@ module Authlete
     end
 
 
-    sig { params(introspection_request: Models::Components::IntrospectionRequest, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::AuthIntrospectionApiResponse) }
-    def process_request(introspection_request:, service_id:, timeout_ms: nil)
+
+
+    sig { params(introspection_request: Models::Components::IntrospectionRequest, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::AuthIntrospectionApiResponse) }
+    def process_request(introspection_request:, service_id:, timeout_ms: nil, http_headers: nil)
       # process_request - Process Introspection Request
       # This API gathers information about an access token.
-      # ### Description
-      # This API is supposed to be called from within the implementations of protected resource endpoints
-      # of the authorization server implementation in order to get information about the access token which
-      # was presented by the client application.
-      # In general, a client application accesses a protected resource endpoint of a service with an access
-      # token, and the implementation of the endpoint checks whether the presented access token has enough
-      # privileges (= scopes) to access the protected resource before returning the protected resource to
-      # the client application. To achieve this flow, the endpoint implementation has to know detailed
-      # information about the access token. Authlete `/auth/introspection` API can be used to get such information.
-      # The response from `/auth/introspection` API has some parameters. Among them, it is `action` parameter
-      # that the authorization server implementation should check first because it denotes the next action
-      # that the authorization server implementation should take. According to the value of `action`, the
-      # authorization server implementation must take the steps described below.
-      # **INTERNAL\_SERVER\_ERROR**
-      # When the value of `action` is `INTERNAL\_SERVER\_ERROR`, it means that the request from the authorization
-      # server implementation was wrong or that an error occurred in Authlete.
-      # In either case, from the viewpoint of the client application, it is an error on the server side.
-      # Therefore, the service implementation should generate a response to the client application with
-      # HTTP status of "500 Internal Server Error". Authlete recommends `application/json` as the content
-      # type although OAuth 2.0 specification does not mention the format of the error response when the
-      # redirect URI is not usable.
-      # The value of `responseContent` is a string which describes the error in the format of
-      # [RFC 6750](https://datatracker.ietf.org/doc/html/rfc6750) (OAuth 2.0 Bearer Token Usage), so if
-      # the protected resource of the service implementation wants to return an error response to the client
-      # application in the way that complies with RFC 6750 (in other words, if `accessTokenType` configuration
-      # parameter of the service is Bearer), the value of `responseContent` can be used as the value of
-      # `WWW-Authenticate` header.
-      # The following is an example response which complies with RFC 6750.
-      # ```
-      # HTTP/1.1 500 Internal Server Error
-      # Content-Type: application/json
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # {responseContent}
-      # ```
-      # **BAD\_REQUEST**
-      # When the value of `action` is `BAD\_REQUEST`, it means that the request from the client application
-      # does not contain an access token (= the request from the authorization server implementation to
-      # Authlete does not contain `token` request parameter).
-      # A response with HTTP status of "400 Bad Request" must be returned to the client application and
-      # the content type must be `application/json`.
-      # The value of `responseContent` is a string which describes the error in the format of [RFC
-      # 6750](https://datatracker.ietf.org/doc/html/rfc6750) (OAuth 2.0 Bearer Token Usage), so if the
-      # protected resource of the service implementation wants to return an error response to the client
-      # application in the way that complies with RFC 6750 (in other words, if `accessTokenType` configuration
-      # parameter of the service is `Bearer`), the value of `responseContent` can be used as the value of
-      # `WWW-Authenticate` header.
-      # The following is an example response which complies with RFC 6750.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # WWW-Authenticate: {responseContent}
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # ```
-      # **UNAUTHORIZED**
-      # When the value of `action` is `UNAUTHORIZED`, it means that the access token does not exist or has
-      # expired.
-      # The value of `responseContent` is a string which describes the error in the format of RFC
-      # 6750 (OAuth 2.0 Bearer Token Usage), so if the protected resource of the service implementation
-      # wants to return an error response to the client application in the way that complies with [RFC
-      # 6750](https://datatracker.ietf.org/doc/html/rfc6750) (in other words, if `accessTokenType` configuration
-      # parameter of the service is `Bearer`), the value of `responseContent` can be used as the value of
-      # `WWW-Authenticate` header.
-      # The following is an example response which complies with RFC 6750.
-      # ```
-      # HTTP/1.1 401 Unauthorized
-      # WWW-Authenticate: {responseContent}
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # ```
-      # **FORBIDDEN**
-      # When the value of `action` is `FORBIDDEN`, it means that the access token does not cover the required
-      # scopes or that the subject associated with the access token is different from the subject contained
-      # in the request.
-      # A response with HTTP status of "400 Bad Request" must be returned to the client application and
-      # the content type must be `application/json`.
-      # The value of `responseContent` is a string which describes the error in the format of [RFC
-      # 6750](https://datatracker.ietf.org/doc/html/rfc6750) (OAuth 2.0 Bearer Token Usage), so if the
-      # protected resource of the service implementation wants to return an error response to the client
-      # application in the way that complies with RFC 6750 (in other words, if `accessTokenType` configuration
-      # parameter of the service is Bearer), the value of `responseContent` can be used as the value of
-      # `WWW-Authenticate` header.
-      # The following is an example response which complies with RFC 6750.
-      # ```
-      # HTTP/1.1 403 Forbidden
-      # WWW-Authenticate: {responseContent}
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # ```
-      # **OK**
-      # When the value of `action` is `OK`, it means that the access token which the client application
-      # presented is valid (= exists and has not expired).
-      # The implementation of the protected resource endpoint is supposed to return the protected resource
-      # to the client application.
-      # When action is `OK`, the value of `responseContent` is `"Bearer error=\"invalid\_request\""`. This
-      # is the simplest string which can be used as the value of `WWW-Authenticate` header to indicate
-      # "400 Bad Request". The implementation of the protected resource endpoint may use this string to
-      # tell the client application that the request was bad (e.g. in case necessary request parameters
-      # for the protected resource endpoint are missing). However, in such a case, the implementation
-      # should generate a more informative error message to help developers of client applications.
-      # The following is an example error response which complies with RFC 6750.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # WWW-Authenticate: {responseContent}
-      # Cache-Control: no-store
-      # Pragma: no-cache
-      # ```
-      # Basically, The value of `responseContent` is a string which describes the error in the format of
-      # [RFC 6750](https://datatracker.ietf.org/doc/html/rfc6750) (OAuth 2.0 Bearer Token Usage). So, if
-      # the service has selected `Bearer` as the value of `accessTokenType` configuration parameter, the
-      # value of `responseContent` can be used directly as the value of `WWW-Authenticate` header. However,
-      # if the service has selected another different token type, the service has to generate error messages
-      # for itself.
-      # \_**JWT-based access token**\_
-      # Since version 2.1, Authlete provides a feature to issue access tokens in JWT format. This feature
-      # can be enabled by setting a non-null value to the `accessTokenSignAlg` property of the service
-      # (see the description of the Service class for details). `/api/auth/introspection` API can accept
-      # access tokens in JWT format. However, note that the API does not return information contained in
-      # a given JWT-based access token but returns information stored in the database record which corresponds
-      # to the given JWT-based access token. Because attributes of the database record can be modified
-      # after the access token is issued (for example, by using `/api/auth/token/update` API), information
-      # returned by `/api/auth/introspection` API and information the given JWT-based access token holds
-      # may be different.
-      # 
+      #
       request = Models::Operations::AuthIntrospectionApiRequest.new(
         service_id: service_id,
         introspection_request: introspection_request
@@ -185,7 +64,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -221,6 +100,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -318,75 +200,12 @@ module Authlete
     end
 
 
-    sig { params(standard_introspection_request: Models::Components::StandardIntrospectionRequest, service_id: ::String, timeout_ms: T.nilable(Integer)).returns(Models::Operations::AuthIntrospectionStandardApiResponse) }
-    def standard_process(standard_introspection_request:, service_id:, timeout_ms: nil)
+    sig { params(standard_introspection_request: Models::Components::StandardIntrospectionRequest, service_id: ::String, timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::AuthIntrospectionStandardApiResponse) }
+    def standard_process(standard_introspection_request:, service_id:, timeout_ms: nil, http_headers: nil)
       # standard_process - Process OAuth 2.0 Introspection Request
       # This API exists to help your authorization server provide its own introspection API which complies
       # with [RFC 7662](https://tools.ietf.org/html/rfc7662) (OAuth 2.0 Token Introspection).
-      # ### Description
-      # This API is supposed to be called from within the implementations of the introspection endpoint
-      # of your service. The authorization server implementation should retrieve the value of `action` from
-      # the response and take the following steps according to the value.
-      # In general, a client application accesses a protected resource endpoint of a service with an access
-      # token, and the implementation of the endpoint checks whether the presented access token has enough
-      # privileges (= scopes) to access the protected resource before returning the protected resource to
-      # the client application. To achieve this flow, the endpoint implementation has to know detailed
-      # information about the access token. Authlete `/auth/introspection` API can be used to get such information.
-      # The response from `/auth/introspection` API has some parameters. Among them, it is `action` parameter
-      # that the authorization server implementation should check first because it denotes the next action
-      # that the authorization server implementation should take. According to the value of `action`, the
-      # authorization server implementation must take the steps described below.
-      # **INTERNAL\_SERVER\_ERROR**
-      # When the value of `action` is `INTERNAL\_SERVER\_ERROR`, it means that the request from the authorization
-      # server implementation was wrong or that an error occurred in Authlete.
-      # In either case, from the viewpoint of the client application, it is an error on the server side.
-      # Therefore, the service implementation should generate a response to the client application with
-      # HTTP status of "500 Internal Server Error".
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used
-      # as the entity body of the response if you want. Note that, however, [RFC 7662](https://datatracker.ietf.org/doc/html/rfc7662) does not mention anything about the response
-      # body of error responses.
-      # The following illustrates an example response which the introspection endpoint of the authorization
-      # server implementation generates and returns to the client application.
-      # ```
-      # HTTP/1.1 500 Internal Server Error
-      # Content-Type: application/json
-      # {responseContent}
-      # ```
-      # **BAD\_REQUEST**
-      # When the value of `action` is `BAD\_REQUEST`, it means that the request from the client application
-      # is invalid. This happens when the request from the client did not include the token request parameter.
-      # See "[2.1. Introspection Request](https://datatracker.ietf.org/doc/html/rfc7662#section-2.1)" in
-      # RFC 7662 for details about requirements for introspection requests.
-      # The HTTP status of the response returned to the client application should be "400 Bad Request".
-      # The value of `responseContent` is a JSON string which describes the error, so it can be used
-      # as the entity body of the response if you want. Note that, however, [RFC 7662](https://datatracker.ietf.org/doc/html/rfc7662)
-      # does not mention anything about the response body of error responses.
-      # The following illustrates an example response which the introspection endpoint of the authorization
-      # server implementation generates and returns to the client application.
-      # ```
-      # HTTP/1.1 400 Bad Request
-      # Content-Type: application/json
-      # {responseContent}
-      # ```
-      # **OK**
-      # When the value of `action` is `OK`, the request from the client application is valid.
-      # The HTTP status of the response returned to the client application must be "200 OK" and its content
-      # type must be `application/json`.
-      # The value of `responseContent` is a JSON string which complies with the introspection response
-      # defined in "2.2. Introspection Response" in RFC7662.
-      # The following illustrates the response which the introspection endpoint of your authorization server
-      # implementation should generate and return to the client application.
-      # ```
-      # HTTP/1.1 200 OK
-      # Content-Type: application/json
-      # {responseContent}
-      # ```
-      # Note that RFC 7662 says \_"To prevent token scanning attacks, **the endpoint MUST also require some
-      # form of authorization to access this endpoint**"\_. This means that you have to protect your introspection
-      # endpoint in some way or other. Authlete does not care about how your introspection endpoint is protected.
-      # In most cases, as mentioned in RFC 7662, "401 Unauthorized" is a proper response when an introspection
-      # request does not satisfy authorization requirements imposed by your introspection endpoint.
-      # 
+      #
       request = Models::Operations::AuthIntrospectionStandardApiRequest.new(
         service_id: service_id,
         standard_introspection_request: standard_introspection_request
@@ -405,7 +224,7 @@ module Authlete
       headers['content-type'] = req_content_type
       raise StandardError, 'request body is required' if data.nil? && form.nil?
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -441,6 +260,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -536,5 +358,5 @@ module Authlete
 
       end
     end
-  end
+end
 end

data/lib/authlete/jose_object.rb

@@ -39,11 +39,13 @@ module Authlete
     end
 
 
-    sig { params(service_id: ::String, jose_verify_request: T.nilable(Models::Components::JoseVerifyRequest), timeout_ms: T.nilable(Integer)).returns(Models::Operations::JoseVerifyApiResponse) }
-    def jose_verify_api(service_id:, jose_verify_request: nil, timeout_ms: nil)
+
+
+    sig { params(service_id: ::String, jose_verify_request: T.nilable(Models::Components::JoseVerifyRequest), timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::JoseVerifyApiResponse) }
+    def jose_verify_api(service_id:, jose_verify_request: nil, timeout_ms: nil, http_headers: nil)
       # jose_verify_api - Verify JOSE
       # This API verifies a JOSE object.
-      # 
+      #
       request = Models::Operations::JoseVerifyApiRequest.new(
         service_id: service_id,
         jose_verify_request: jose_verify_request
@@ -61,7 +63,7 @@ module Authlete
       req_content_type, data, form = Utils.serialize_request_body(request, false, false, :jose_verify_request, :json)
       headers['content-type'] = req_content_type
 
-      if form
+      if form && !form.empty?
         body = Utils.encode_form(form)
       elsif Utils.match_content_type(req_content_type, 'application/x-www-form-urlencoded')
         body = URI.encode_www_form(T.cast(data, T::Hash[Symbol, Object]))
@@ -97,6 +99,9 @@ module Authlete
           req.headers.merge!(headers)
           req.options.timeout = timeout unless timeout.nil?
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -192,5 +197,5 @@ module Authlete
 
       end
     end
-  end
+end
 end

data/lib/authlete/jwk_set_endpoint.rb

@@ -39,18 +39,20 @@ module Authlete
     end
 
 
-    sig { params(service_id: ::String, include_private_keys: T.nilable(T::Boolean), pretty: T.nilable(T::Boolean), timeout_ms: T.nilable(Integer)).returns(Models::Operations::ServiceJwksGetApiResponse) }
-    def service_jwks_get_api(service_id:, include_private_keys: nil, pretty: nil, timeout_ms: nil)
+
+
+    sig { params(service_id: ::String, include_private_keys: T.nilable(T::Boolean), pretty: T.nilable(T::Boolean), timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::ServiceJwksGetApiResponse) }
+    def service_jwks_get_api(service_id:, include_private_keys: nil, pretty: nil, timeout_ms: nil, http_headers: nil)
       # service_jwks_get_api - Get JWK Set
       # This API gathers JWK Set information for a service so that its client applications can verify
       # signatures by the service and encrypt their requests to the service.
-      # ### Description
+      #
       # This API is supposed to be called from within the implementation of the jwk set endpoint of the
       # service where the service that supports OpenID Connect must expose its JWK Set information so that
       # client applications can verify signatures by the service and encrypt their requests to the service.
-      # The URI of the endpoint can be found as the value of `jwks\_uri` in [OpenID Provider Metadata](https://openid.net/specs/openid-connect-discovery-1\_0.html#ProviderMetadata)
-      # if the service supports [OpenID Connect Discovery 1.0](https://openid.net/specs/openid-connect-discovery-1\_0.html).
-      # 
+      # The URI of the endpoint can be found as the value of `jwks_uri` in [OpenID Provider Metadata](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata)
+      # if the service supports [OpenID Connect Discovery 1.0](https://openid.net/specs/openid-connect-discovery-1_0.html).
+      #
       request = Models::Operations::ServiceJwksGetApiRequest.new(
         service_id: service_id,
         include_private_keys: include_private_keys,
@@ -96,6 +98,9 @@ module Authlete
           req.options.timeout = timeout unless timeout.nil?
           req.params = query_params
           Utils.configure_request_security(req, security)
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
 
           @sdk_configuration.hooks.before_request(
             hook_ctx: SDKHooks::BeforeRequestHookContext.new(
@@ -152,6 +157,18 @@ module Authlete
         else
           raise ::Authlete::Models::Errors::APIError.new(status_code: http_response.status, body: http_response.env.response_body, raw_response: http_response), 'Unknown content type received'
         end
+      elsif Utils.match_status_code(http_response.status, ['204'])
+        http_response = @sdk_configuration.hooks.after_success(
+          hook_ctx: SDKHooks::AfterSuccessHookContext.new(
+            hook_ctx: hook_ctx
+          ),
+          response: http_response
+        )
+        return Models::Operations::ServiceJwksGetApiResponse.new(
+          status_code: http_response.status,
+          content_type: content_type,
+          raw_response: http_response
+        )
       elsif Utils.match_status_code(http_response.status, ['400', '401', '403'])
         if Utils.match_content_type(content_type, 'application/json')
           http_response = @sdk_configuration.hooks.after_success(
@@ -191,5 +208,5 @@ module Authlete
 
       end
     end
-  end
+end
 end

data/lib/authlete/lifecycle.rb

@@ -0,0 +1,151 @@
+# Code generated by Speakeasy (https://speakeasy.com). DO NOT EDIT.
+
+# typed: true
+# frozen_string_literal: true
+
+require 'faraday'
+require 'faraday/multipart'
+require 'faraday/retry'
+require 'sorbet-runtime'
+require_relative 'sdk_hooks/hooks'
+require_relative 'utils/retries'
+
+module Authlete
+  extend T::Sig
+  class Lifecycle
+    extend T::Sig
+    
+
+
+    sig { params(sdk_config: SDKConfiguration).void }
+    def initialize(sdk_config)
+      @sdk_configuration = sdk_config
+      
+    end
+
+    sig { params(base_url: String, url_variables: T.nilable(T::Hash[Symbol, T.any(String, T::Enum)])).returns(String) }
+    def get_url(base_url:, url_variables: nil)
+      sd_base_url, sd_options = @sdk_configuration.get_server_details
+
+      if base_url.nil?
+        base_url = sd_base_url
+      end
+
+      if url_variables.nil?
+        url_variables = sd_options
+      end
+
+      return Utils.template_url base_url, url_variables
+    end
+
+
+
+
+    sig { params(extended: T.nilable(T::Boolean), timeout_ms: T.nilable(Integer), http_headers: T.nilable(T::Hash[T.any(String, Symbol), String])).returns(Models::Operations::GetApiLifecycleHealthcheckResponse) }
+    def get_api_lifecycle_healthcheck(extended: nil, timeout_ms: nil, http_headers: nil)
+      # get_api_lifecycle_healthcheck - Health Check
+      # Perform a health check of the server.
+      #
+      request = Models::Operations::GetApiLifecycleHealthcheckRequest.new(
+        extended: extended
+      )
+      url, params = @sdk_configuration.get_server_details
+      base_url = Utils.template_url(url, params)
+      url = "#{base_url}/api/lifecycle/healthcheck"
+      headers = {}
+      headers = T.cast(headers, T::Hash[String, String])
+      query_params = Utils.get_query_params(Models::Operations::GetApiLifecycleHealthcheckRequest, request, nil)
+      headers['Accept'] = 'text/plain'
+      headers['user-agent'] = @sdk_configuration.user_agent
+
+      timeout = (timeout_ms.to_f / 1000) unless timeout_ms.nil?
+      timeout ||= @sdk_configuration.timeout
+      
+
+      connection = @sdk_configuration.client
+
+      hook_ctx = SDKHooks::HookContext.new(
+        config: @sdk_configuration,
+        base_url: base_url,
+        oauth2_scopes: nil,
+        operation_id: 'get_/api/lifecycle/healthcheck',
+        security_source: nil
+      )
+
+      error = T.let(nil, T.nilable(StandardError))
+      http_response = T.let(nil, T.nilable(Faraday::Response))
+      
+      
+      begin
+        http_response = T.must(connection).get(url) do |req|
+          req.headers.merge!(headers)
+          req.options.timeout = timeout unless timeout.nil?
+          req.params = query_params
+          http_headers&.each do |key, value|
+            req.headers[key.to_s] = value
+          end
+
+          @sdk_configuration.hooks.before_request(
+            hook_ctx: SDKHooks::BeforeRequestHookContext.new(
+              hook_ctx: hook_ctx
+            ),
+            request: req
+          )
+        end
+      rescue StandardError => e
+        error = e
+      ensure
+        if http_response.nil? || Utils.error_status?(http_response.status)
+          http_response = @sdk_configuration.hooks.after_error(
+            error: error,
+            hook_ctx: SDKHooks::AfterErrorHookContext.new(
+              hook_ctx: hook_ctx
+            ),
+            response: http_response
+          )
+        else
+          http_response = @sdk_configuration.hooks.after_success(
+            hook_ctx: SDKHooks::AfterSuccessHookContext.new(
+              hook_ctx: hook_ctx
+            ),
+            response: http_response
+          )
+        end
+        
+        if http_response.nil?
+          raise error if !error.nil?
+          raise 'no response'
+        end
+      end
+      
+      content_type = http_response.headers.fetch('Content-Type', 'application/octet-stream')
+      if Utils.match_status_code(http_response.status, ['200'])
+        if Utils.match_content_type(content_type, 'text/plain')
+          http_response = @sdk_configuration.hooks.after_success(
+            hook_ctx: SDKHooks::AfterSuccessHookContext.new(
+              hook_ctx: hook_ctx
+            ),
+            response: http_response
+          )
+          obj = http_response.env.body.force_encoding('UTF-8')
+
+          return Models::Operations::GetApiLifecycleHealthcheckResponse.new(
+            status_code: http_response.status,
+            content_type: content_type,
+            raw_response: http_response,
+            res: T.unsafe(obj)
+          )
+        else
+          raise ::Authlete::Models::Errors::APIError.new(status_code: http_response.status, body: http_response.env.response_body, raw_response: http_response), 'Unknown content type received'
+        end
+      elsif Utils.match_status_code(http_response.status, ['4XX'])
+        raise ::Authlete::Models::Errors::APIError.new(status_code: http_response.status, body: http_response.env.response_body, raw_response: http_response), 'API error occurred'
+      elsif Utils.match_status_code(http_response.status, ['500', '5XX'])
+        raise ::Authlete::Models::Errors::APIError.new(status_code: http_response.status, body: http_response.env.response_body, raw_response: http_response), 'API error occurred'
+      else
+        raise ::Authlete::Models::Errors::APIError.new(status_code: http_response.status, body: http_response.env.response_body, raw_response: http_response), 'Unknown status code received'
+
+      end
+    end
+end
+end

data/lib/authlete/models/components/access_token.rb

@@ -7,7 +7,6 @@
 module Authlete
   module Models
     module Components
-    
 
       class AccessToken
         extend T::Sig
@@ -22,28 +21,28 @@ module Authlete
         # The timestamp at which the refresh token will expire.
         field :refresh_token_expires_at, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshTokenExpiresAt') } }
         # The timestamp at which the access token was first created.
-        # 
+        #
         field :created_at, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('createdAt') } }
         # The timestamp at which the access token was last refreshed using the refresh token.
-        # 
+        #
         field :last_refreshed_at, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('lastRefreshedAt') } }
         # The ID of the client associated with the access token.
-        # 
+        #
         field :client_id, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientId') } }
         # The subject (= unique user ID) associated with the access token.
-        # 
+        #
         field :subject, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('subject') } }
         # The grant type of the access token when the access token was created.
-        # 
-        field :grant_type, Crystalline::Nilable.new(Models::Components::GrantType), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('grantType'), 'decoder': Utils.enum_from_string(Models::Components::GrantType, true) } }
+        #
+        field :grant_type, Crystalline::Nilable.new(Models::Components::GrantType), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('grantType'), 'decoder': ::Authlete::Utils.enum_from_string(Models::Components::GrantType, true) } }
         # The scopes associated with the access token.
-        # 
+        #
         field :scopes, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('scopes') } }
         # The properties associated with the access token.
-        # 
+        #
         field :properties, Crystalline::Nilable.new(Crystalline::Array.new(Models::Components::Property)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('properties') } }
         # The scopes associated with the refresh token.
-        # 
+        #
         field :refresh_token_scopes, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshTokenScopes') } }
 
         sig { params(access_token_hash: T.nilable(::String), access_token_expires_at: T.nilable(::Integer), refresh_token_hash: T.nilable(::String), refresh_token_expires_at: T.nilable(::Integer), created_at: T.nilable(::Integer), last_refreshed_at: T.nilable(::Integer), client_id: T.nilable(::Integer), subject: T.nilable(::String), grant_type: T.nilable(Models::Components::GrantType), scopes: T.nilable(T::Array[::String]), properties: T.nilable(T::Array[Models::Components::Property]), refresh_token_scopes: T.nilable(T::Array[::String])).void }