RubyGems - cognito-sync-service - Versions diffs - 1.0.0 → 1.1.0 - Mend

cognito-sync-service 1.0.0 → 1.1.0

Files changed (31) hide show

checksums.yaml +4 -4
data/.env.example +5 -7
data/.gitignore +2 -3
data/.rubocop.yml +4 -0
data/.travis.yml +16 -0
data/CHANGELOG.md +5 -0
data/CONTRIBUTING.md +1 -1
data/Gemfile +3 -0
data/Gemfile.lock +44 -0
data/README.md +20 -7
data/built_with_pain_from_cognito.png +0 -0
data/cognito_sync_service.gemspec +2 -2
data/doc/c_find_by_access_token!.md +51 -0
data/doc/ca_create!.md +26 -1
data/doc/ca_delete!.md +9 -0
data/doc/ca_disable!.md +9 -0
data/doc/ca_enable!.md +34 -0
data/doc/ca_find!.md +10 -0
data/doc/ca_initiate_auth!.md +8 -0
data/doc/ca_refresh_tokens!.md +63 -0
data/doc/ca_respond_to_auth_challenge!.md +33 -14
data/doc/ca_set_user_password!.md +36 -0
data/doc/ca_update!.md +12 -0
data/lib/cognito-sync-service.rb +34 -0
data/lib/cognito-sync-service/version.rb +1 -1
data/logo.png +0 -0
metadata +12 -7
data/cognito-sync-service-0.2.0.gem +0 -0
data/cognito-sync-service-0.3.0.gem +0 -0
data/cognito-sync-service-0.3.1.gem +0 -0
data/cognito-sync-service-0.3.2.gem +0 -0

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4f20a19070b852a9b7b1ab7c35e8367c846433bd33ff02c229f115b9a0ccbd61
-  data.tar.gz: cb5fd49aa21266916985610f6e1d544600f39c17bceec7402849369953b6cc5a
+  metadata.gz: 409e8d0d186b2925e1b6811945c26a370e5ad3c7065f32057284dd9e7ba4e885
+  data.tar.gz: ea6db076ea88af154ef20f8980e8207502a2bc23935968f7c61291715a9f299e
 SHA512:
-  metadata.gz: fd0a5ec62544aa4d83b32cda8dd98e246dda3014cdcfd0ebdf2cdb87cd394b6377af89d3d4ab2032f4c7288db90de644960d2cfc268e3bc573097f99b495e7f1
-  data.tar.gz: 9328881954df7c1737869d212207344918db291571c73ba6cebbce5a2dc0634ab77918328b895c41f95f2d00dd93f706c011872c1a51a66ffcf3fbf23c43490c
+  metadata.gz: c91be559d76d03364504dbe1baaa687c8a3bdf1c28bafba97ce1c6eb7d18a97114090bd05b62738d1b909f74101baf464cb8549d00ae8e51672ff500ce311e48
+  data.tar.gz: 4a536617bedad414efec359545ebf110a5ae8c3273c067912f4f37b5d39934a4069fe8fc033a949e45672e1920e9156fbe2ae65ea1f2a3fd049129eafb892cd5

data/.env.example CHANGED

@@ -1,7 +1,5 @@
-development:
-  aws:
-    access_key_id: "access_key_id"
-    secret_access_key: "secret_access_key"
-    web_pool: "web_pool"
-    region: "region"
-    client_id: "client_id"
+ACCESS_KEY_ID: "access_key_id"
+SECRET_ACCESS_KEY: "secret_access_key"
+REGION: "region"
+POOL_ID: "pool_id"
+CLIENT_ID: "client_id"

data/.gitignore CHANGED

@@ -1,3 +1,4 @@
+*.gem
 /.bundle/
 /.yardoc
 /_yardoc/
@@ -5,11 +6,9 @@
 /pkg/
 /spec/reports/
 /tmp/
-.evn
+.env
 # rspec failure tracking
 .rspec_status
 .idea/
-/spec/support/spec_credentials.yml
 .DS_Store

data/.rubocop.yml CHANGED

@@ -56,3 +56,7 @@ Metrics/MethodLength:
 Naming/UncommunicativeMethodParamName:
   Enabled: false
+Naming/FileName:
+  Exclude:
+    - 'lib/cognito-sync-service.rb'

data/.travis.yml CHANGED

@@ -2,6 +2,22 @@
 sudo: false
 language: ruby
 cache: bundler
+branches:
+  only:
+  - master
 rvm:
   - 2.5.3
 before_install: gem install bundler -v 2.0.1
+before_script:
+  - curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter
+  - chmod +x ./cc-test-reporter
+  - ./cc-test-reporter before-build
+script:
+  - bundle exec rspec
+after_script:
+  - ./cc-test-reporter after-build --exit-code $TRAVIS_TEST_RESULT
+env:
+  global:
+    - CC_TEST_REPORTER_ID='445d9b9f6189382202cc35adc7f9959cf62985857be1174d394e407ad8db8a0c'

data/CHANGELOG.md ADDED

@@ -0,0 +1,5 @@
+# Change Log
+## [v1.0.0] (2019-08-05)
+- First stable release! 🎉

data/CONTRIBUTING.md CHANGED

@@ -1,6 +1,6 @@
 1. Fork it (  https://github.com/[username]/cognito-sync-service )
-2. Run `spec` and `rubocop`  (don't forget add spec_credentials to you local project folder)
+2. Run `spec` and `rubocop`  (don't forget add .env to you local project folder)
 3. Create your feature branch (git checkout -b my-new-feature)
 4. Commit your changes (git commit -am 'Add some feature')
 5. Push to the branch (git push origin my-new-feature)

data/Gemfile CHANGED

@@ -2,6 +2,8 @@
 source 'https://rubygems.org'
+gem 'rake', '~> 11.2', '>= 11.2.2'
 group :development, :test do
   gem 'aws-sdk-cognitoidentity', '~> 1.0.0.rc7'
   gem 'aws-sdk-cognitoidentityprovider', '~> 1.12'
@@ -22,6 +24,7 @@ group :development, :test do
 end
 group :test do
+  gem 'dotenv-rails'
   gem 'rspec-its', '~> 1.2'
   gem 'rspec-simplecov', '~> 0.2'
   gem 'simplecov', '~> 0.14'

data/Gemfile.lock CHANGED

@@ -1,6 +1,19 @@
 GEM
   remote: https://rubygems.org/
   specs:
+    actionpack (5.2.3)
+      actionview (= 5.2.3)
+      activesupport (= 5.2.3)
+      rack (~> 2.0)
+      rack-test (>= 0.6.3)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.0, >= 1.0.2)
+    actionview (5.2.3)
+      activesupport (= 5.2.3)
+      builder (~> 3.1)
+      erubi (~> 1.4)
+      rails-dom-testing (~> 2.0)
+      rails-html-sanitizer (~> 1.0, >= 1.0.3)
     activesupport (5.2.3)
       concurrent-ruby (~> 1.0, >= 1.0.2)
       i18n (>= 0.7, < 2)
@@ -39,11 +52,18 @@ GEM
       aws-sigv4 (~> 1.1)
     aws-sigv4 (1.1.0)
       aws-eventstream (~> 1.0, >= 1.0.2)
+    builder (3.2.3)
     byebug (11.0.1)
     coderay (1.1.2)
     concurrent-ruby (1.1.5)
+    crass (1.0.4)
     diff-lcs (1.3)
     docile (1.3.2)
+    dotenv (2.7.5)
+    dotenv-rails (2.7.5)
+      dotenv (= 2.7.5)
+      railties (>= 3.2, < 6.1)
+    erubi (1.8.0)
     factory_bot (4.11.1)
       activesupport (>= 3.0.0)
     i18n (1.6.0)
@@ -51,8 +71,14 @@ GEM
     jaro_winkler (1.5.3)
     jmespath (1.4.0)
     json (2.2.0)
+    loofah (2.2.3)
+      crass (~> 1.0.2)
+      nokogiri (>= 1.5.9)
     method_source (0.9.2)
+    mini_portile2 (2.4.0)
     minitest (5.11.3)
+    nokogiri (1.10.4)
+      mini_portile2 (~> 2.4.0)
     parallel (1.17.0)
     parser (2.6.3.0)
       ast (~> 2.4.0)
@@ -65,7 +91,22 @@ GEM
     pry-doc (1.0.0)
       pry (~> 0.11)
       yard (~> 0.9.11)
+    rack (2.0.7)
+    rack-test (1.1.0)
+      rack (>= 1.0, < 3)
+    rails-dom-testing (2.0.3)
+      activesupport (>= 4.2.0)
+      nokogiri (>= 1.6)
+    rails-html-sanitizer (1.1.0)
+      loofah (~> 2.2, >= 2.2.2)
+    railties (5.2.3)
+      actionpack (= 5.2.3)
+      activesupport (= 5.2.3)
+      method_source
+      rake (>= 0.8.7)
+      thor (>= 0.19.0, < 2.0)
     rainbow (3.0.0)
+    rake (11.3.0)
     rb-readline (0.5.5)
     rspec (3.8.0)
       rspec-core (~> 3.8.0)
@@ -105,6 +146,7 @@ GEM
     simplecov-html (0.10.2)
     terminal-table (1.8.0)
       unicode-display_width (~> 1.1, >= 1.1.1)
+    thor (0.20.3)
     thread_safe (0.3.6)
     tzinfo (1.2.5)
       thread_safe (~> 0.1)
@@ -121,10 +163,12 @@ DEPENDENCIES
   aws-sdk-ec2 (~> 1)
   aws-sdk-s3 (~> 1)
   aws-sdk-ses (~> 1.6)
+  dotenv-rails
   factory_bot (~> 4.8)
   pry (~> 0.10)
   pry-byebug (~> 3.4)
   pry-doc (~> 1.0.0)
+  rake (~> 11.2, >= 11.2.2)
   rb-readline
   rspec (~> 3.6)
   rspec-its (~> 1.2)

data/README.md CHANGED

@@ -1,10 +1,21 @@
 # CognitoSyncService
-Aws Cognito user pool synchronizer
+<img src="logo.png" alt="logo" width="200"/>
+## Status
+[![Gem Version](https://badge.fury.io/rb/cognito-sync-service.svg)](https://badge.fury.io/rb/cognito-sync-service)
+[![Maintainability](https://api.codeclimate.com/v1/badges/7bbc9677e91e5561a35d/maintainability)](https://codeclimate.com/github/7DevsApps/cognito-sync-service/maintainability)
+[![Build Status](https://travis-ci.com/7DevsApps/cognito-sync-service.svg?branch=master)](https://travis-ci.com/7DevsApps/cognito-sync-service)
+[![Test Coverage](https://api.codeclimate.com/v1/badges/7bbc9677e91e5561a35d/test_coverage)](https://codeclimate.com/github/7DevsApps/cognito-sync-service/test_coverage)
+[![Inline docs](http://inch-ci.org/github/7DevsApps/cognito-sync-service.svg?branch=master&style=shields)](http://inch-ci.org/github/7DevsApps/cognito-sync-service)
+[![Built with love](built_with_pain_from_cognito.png)](https://rmosolgo.github.io/react-badges/)
+## Content
 - [CognitoSyncService](#cognitoSyncService)
   - [Installation](#installation)
   - [Usage](#usage)
+  - [Methods](#list-of-methods)
   - [Development](#development)
   - [Contributing](#contributing)
   - [Contacts](#contacts)
@@ -16,7 +27,7 @@ Aws Cognito user pool synchronizer
 Add this line to your application's Gemfile:
 ```ruby
-gem 'cognito-sync-service', '~> 0.3.2'
+gem 'cognito-sync-service', '~> 1.0'
 ```
 And then execute:
@@ -31,7 +42,7 @@ Or install it yourself as:
 [AWS Cognito](https://aws.amazon.com/ru/cognito/) let use [list of methods](https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/index.html) or this [SDK  methods for ruby](https://docs.aws.amazon.com/sdkforruby/api/Aws/CognitoIdentity/Client.html).
-In common case  you need __CRUD__ functionality, __synchronization__, between you DB and Cognito pools and __handling authorization__.
+In common case  you need __CRUD__ functionality, __synchronization__, between your DB and Cognito pools and __handling authorization__.
 #### With this gem you can implement:
 1. __CRUD__ functionality from you application
@@ -172,10 +183,15 @@ User.ca_create!({phone_number: "+1111111111"}, "+1111111111")
  - [#ca_create!](doc/ca_create!.md)
  - [#ca_update!](doc/ca_update!.md)
  - [#ca_delete!](doc/ca_delete!.md)
+ - [#ca_enable!](doc/ca_enable!.md)
  - [#ca_disable!](doc/ca_disable!.md)
  - [#ca_find!](doc/ca_find!.md)
  - [#ca_initiate_auth!](doc/ca_initiate_auth!.md)
+ - [#ca_refresh_tokens!](doc/ca_refresh_tokens!.md)
  - [#ca_respond_to_auth_challenge!](doc/ca_respond_to_auth_challenge!.md)
+ - [#ca_set_user_password!](doc/ca_set_user_password!.md)
+ - [#c_find_by_access_token!](doc/c_find_by_access_token!.md)
 ## Development
@@ -195,8 +211,5 @@ Everyone interacting in the CognitoSyncService project’s codebases, issue trac
 ## Contacts
 https://7devs.co/contact?section=contact-form
-https://t.me/hakmatmao
-## Status
-[![Maintainability](https://api.codeclimate.com/v1/badges/b90c232e049a226e25d9/maintainability)](https://codeclimate.com/github/MarkOsipenko/cognito-sync-service/maintainability)
-[![Test Coverage](https://api.codeclimate.com/v1/badges/b90c232e049a226e25d9/test_coverage)](https://codeclimate.com/github/MarkOsipenko/cognito-sync-service/test_coverage)
+https://t.me/hakmatmao

data/built_with_pain_from_cognito.png ADDED

Binary file

data/cognito_sync_service.gemspec CHANGED

@@ -7,8 +7,8 @@ require 'cognito-sync-service/version'
 Gem::Specification.new do |spec|
   spec.name          = 'cognito-sync-service'
   spec.version       = CognitoSyncService::VERSION
-  spec.authors       = ['Mark Osipenko']
-  spec.email         = ['mark.osipenko@gmail.com']
+  spec.authors       = ['Mark Osipenko', 'Andrey Aliabiev']
+  spec.email         = ['mark.osipenko@gmail.com', 'andrey.alyabyev23@gmail.com']
   spec.summary       = 'Aws Cognito user pool synchronizer'
   spec.description   = 'With this gem you can implement: CRUD functionality from you application, synchronize you database users with user_pools, handling authorization'

data/doc/c_find_by_access_token!.md ADDED

@@ -0,0 +1,51 @@
+# CognitoSyncService
+__*#c_find_by_access_token!(access_token)*__
+### Synopsys
+> In order to fetch user on Cognito pool by access token
+> - The access token returned by the server response to get information about the user.
+Cognito return data in format with __user_attributes__ key
+# cognito-idp example
+```
+#<struct Aws::CognitoIdentityProvider::Types::GetUserResponse
+ username="ba9faac3-2291-4f56-9c6b-a85471445726",
+ user_attributes=[#<struct Aws::CognitoIdentityProvider::Types::AttributeType name="sub", value="ba9faac3-2291-4f56-9c6b-a85471445726">, #<struct Aws::CognitoIdentityProvider::Types::AttributeType name="email", value="email@test.com">],
+ mfa_options=nil,
+ preferred_mfa_setting=nil,
+ user_mfa_setting_list=nil>
+```
+> Also check this doc [get-user](https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/get-user.html) method
+## Usage
+```ruby
+class UserExample
+  extend CognitoSyncService
+end
+UserExample.c_find_by_access_token!("iOiJKV1QiLCJlbmMiOiJBMjU2-Dmc6dms9iukp_YUfeO6Vj-P9sOom_khf3FWTMz1Mb2dI8v")
+```
+__Output__
+```ruby
+{
+  "email"=>"email@test.com",
+  "username"=>"dae4900d-0984-4ac0-9ab0-14505e52d50c"
+}
+```
+__Error output__
+In case of passing invalid access token you will get AWS error
+```ruby
+UserExample.c_find_by_access_token!("invalid_access_token")
+#=> Aws::CognitoIdentityProvider::Errors::NotAuthorizedException: Invalid Access Token
+```

data/doc/ca_create!.md CHANGED

@@ -6,7 +6,7 @@ __*#ca_create!(username)*__
 > In order to create user on Cognito
 > - Username should be equal __email/phone_number/random_uniq_string__ depend on you cognito user pool settings - [cognito username attribute doc](https://docs.aws.amazon.com/en_us/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-usernames)
->
+> - The user's temporary password must conform to the password policy that you specified when you created the user pool. The temporary password is valid only once. To complete the Admin Create User flow, the user must enter the temporary password in the sign-in page along with a new password to be used in all future sign-ins. This parameter is not required.
 > Also check this doc [admin-create-user](https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/admin-create-user.html) method
 ## Usage
@@ -21,7 +21,12 @@ attrs = {
   { phone_number: '+1111111111' }
 }
+# with default temporary password
 UserExample.ca_create!(attrs, attrs[:phone_number])
+# with manual temporary password
+temporary_password = "Abcdef-123"
+UserExample.ca_create!(attrs, attrs[:phone_number], temporary_password)
 ```
 __Output__
@@ -35,5 +40,25 @@ __Output__
   "user_status"=>"FORCE_CHANGE_PASSWORD",
   "phone_number"=>"+3333333333"
 }
+```
+__Error output__
+```ruby
+UserExample.ca_create!(attrs, attrs[:email])
+#=> Aws::CognitoIdentityProvider::Errors::InvalidParameterException: Invalid email address format.
+```
+_For example minimum password length set to 8 characters_
+```ruby
+UserExample.ca_create!(attrs, attrs[:phone_number], '123abc')
+#=> Aws::CognitoIdentityProvider::Errors::InvalidParameterException: Password not long enough
+```
+_For example password requires numbers_
+```ruby
+UserExample.ca_create!(attrs, attrs[:phone_number], 'qwerty')
+#=> Aws::CognitoIdentityProvider::Errors::InvalidParameterException: Password must have numeric characters
 ```

data/doc/ca_delete!.md CHANGED

@@ -23,3 +23,12 @@ __Output__
 ```ruby
  {}
 ```
+__Error output__
+In case of passing invalid or nonexistent(in your Cognito Pool) username you will get AWS error
+```ruby
+UserExample.ca_delete!('invalid_username')
+#=> Aws::CognitoIdentityProvider::Errors::UserNotFoundException: User not found.
+```

data/doc/ca_disable!.md CHANGED

@@ -23,3 +23,12 @@ __Output__
 ```ruby
  {}
 ```
+__Error output__
+In case of passing invalid or nonexistent(in your Cognito Pool) username you will get AWS error
+```ruby
+UserExample.ca_disable!('invalid_username')
+#=> Aws::CognitoIdentityProvider::Errors::UserNotFoundException: User not found.
+```

data/doc/ca_enable!.md ADDED

@@ -0,0 +1,34 @@
+# CognitoSyncService
+__*#ca_enable!(username)*__
+### Synopsys
+> Enable user in cognito pool.
+>
+> Also check this doc [admin-enable-user](https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/admin-enable-user.html) method
+## Usage
+```ruby
+class UserExample
+  extend ::CognitoSyncService
+end
+UserExample.ca_enable!(username)
+```
+__Output__
+```ruby
+ {}
+```
+__Error output__
+In case of passing invalid or nonexistent(in your Cognito Pool) username you will get AWS error
+```ruby
+UserExample.ca_enable!('invalid_username')
+#=> Aws::CognitoIdentityProvider::Errors::UserNotFoundException: User not found.
+```

data/doc/ca_find!.md CHANGED

@@ -8,6 +8,7 @@ __*#ca_find!(username)*__
 > - Username should be equal __email/phone_number/random_uniq_string__ depend on you cognito user pool settings - [cognito username attribute doc](https://docs.aws.amazon.com/en_us/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-usernames)
 Cognito return data in format with __user_attributes__ key
 # cognito-idp example
 ```
 <struct Aws::CognitoIdentityProvider::Types::AdminGetUserResponse
@@ -50,3 +51,12 @@ __Output__
   "username"=>"dae4900d-0984-4ac0-9ab0-14505e52d50c"
 }
 ```
+__Error output__
+In case of passing invalid or nonexistent(in your Cognito Pool) username you will get AWS error
+```ruby
+UserExample.ca_find!('invalid_username')
+#=> Aws::CognitoIdentityProvider::Errors::UserNotFoundException: User not found.
+```

data/doc/ca_initiate_auth!.md CHANGED

@@ -44,3 +44,11 @@ result.authentication_result #=> nil
 >In this case ```authentication_result``` is ```nil``` because of particular auth flow when user account in Cognito has not been confirmed yet.
 ```authentication_result``` is only returned if the caller does not need to pass another challenge. If the caller does need to pass another challenge before it gets tokens, ChallengeName , ChallengeParameters , and Session are returned.
+__Error output__
+In case of passing invalid email or invalid password you will get AWS error
+```ruby
+UserExample.ca_initiate_auth!('invalid_username', 'invalid_password') #=> Aws::CognitoIdentityProvider::Errors::NotAuthorizedException: Incorrect username or password.
+```

data/doc/ca_refresh_tokens!.md ADDED

@@ -0,0 +1,63 @@
+# CognitoSyncService
+__*#ca_refresh_tokens!(refresh_token)*__
+### Synopsys
+> Authentication flow for refreshing the Access token and ID token by supplying a valid refresh token.
+>
+> Also check this doc [admin-initiate-auth](https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/admin-enable-user.html) method. Pay attention to description about REFRESH_TOKEN_AUTH authentication flow.
+## Usage
+```ruby
+class UserExample
+  extend ::CognitoSyncService
+end
+result = UserExample.ca_refresh_tokens!(refresh_token)
+```
+__Output__
+```ruby
+ #<struct Aws::CognitoIdentityProvider::Types::AdminInitiateAuthResponse
+  challenge_name=nil,
+  session=nil,
+  challenge_parameters={},
+  authentication_result=
+   #<struct Aws::CognitoIdentityProvider::Types::AuthenticationResultType
+    access_token=
+     "eyJraWQiOiJ3T0RTTmYyTXRheDJPMTVOS2xMc1RoM1hoOXV6V3BBcEpMUk0K29BeDhRNmxzPSIsImFsZHN1U6fbXscuMGeogaR-",
+    expires_in=3600,
+    token_type="Bearer",
+    refresh_token=nil,
+    id_token=
+     "eyJraWQiOiJSejZRdXRPbXVlNk1vdEZpUm83M1lsTWeyJraWQiOiJ3T0RTTmYyTXRheDJPMTVOS2xMc1",
+    new_device_metadata=nil>>
+```
+__Note:__
+> If you need to retreive `access_token` or `id_token` from ```result``` you can simply call it by its keys like:
+```ruby
+result.authentication_result.access_token
+#=> "eyJraWQiOiJ3T0RTTmYyTXRheDJPMTVOS2xMc1RoM1hoOXV6V3BBcEpMUk0K29BeDhRNmxzPSIsImFsZHN1U6fbXscuMGeogaR-"
+result.authentication_result.id_token
+#=> "eyJraWQiOiJSejZRdXRPbXVlNk1vdEZpUm83M1lsTWeyJraWQiOiJ3T0RTTmYyTXRheDJPMTVOS2xMc1"
+```
+>In this case ```challenge_name```,`session` and `challenge_parameters` return ```nil``` because of particular auth flow when Access token and ID token have been refreshed successfully.
+>
+>So when the caller does need to pass another challenge before it gets tokens, `challenge_name`, `challenge_parameters`, and `session` are returned.
+__Error output__
+In case of passing invalid Refresh token you will get AWS error
+```ruby
+UserExample.ca_refresh_tokens!('invalid_refresh_token')
+#=> Aws::CognitoIdentityProvider::Errors::NotAuthorizedException: Invalid Refresh Token.
+```

data/doc/ca_respond_to_auth_challenge!.md CHANGED

@@ -28,19 +28,38 @@ result = UserExample.ca_respond_to_auth_challenge!(username, password, session)
 __Output__
 ```ruby
-=> #<struct Aws::CognitoIdentityProvider::Types::AdminRespondToAuthChallengeResponse
- challenge_name=nil,
- session=nil,
- challenge_parameters={},
- authentication_result=
+#<struct Aws::CognitoIdentityProvider::Types::AdminRespondToAuthChallengeResponse
+  session=nil,
+  challenge_parameters={},
+  challenge_name=nil,
+  authentication_result=
   #<struct Aws::CognitoIdentityProvider::Types::AuthenticationResultType
-   access_token=
-    "eyJraWQiOiJ3T0RTTmYyTXRheDJPM24lD2xMc1RoM1hoOXV6V3BBcEpubjdMMlwvMXo4bz0iLCJhbGciOiJSUzI1NiJ9cHgmlc6WWxXPw36GuQ91jiTisnvtJWus-XvOOcLK4qsQ",
-   expires_in=3600,
-   token_type="Bearer",
-   refresh_token=
-    "eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2-Dmc6dms9iukp_YUfeO6Vj-P9sOom_khf3FWTMz1Mb2dI8vjhvG_kK8Gu-5rw",
-   id_token=
-    "eyJraWQiOiJSejZRdXRPbXVlNk1vdEZpUm83M1lsTWJSZjc4Qxv4MUk0K29BeDhRNmxzPSIsImFsZyI6IlJTMjU2In0.hftrLf9--JjgZYAREDXYM8aJkLkeuXCSnM5fkOqYn8DQ",
-   new_device_metadata=nil>>
+    access_token= "eyJraWQiOiJ3T0RTTmYyTXRheDJPM24lD2xMc1RoM1hoOXV6V3BBcEpubjdMMlwvMXo4bz0iLCJhbGciOiJSUzI1NiJ9cHgmlc6WWxXPw36GuQ91jiTisnvtJWus-XvOOcLK4qsQ",
+    expires_in=3600,
+    token_type="Bearer",
+    refresh_token= "eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2-Dmc6dms9iukp_YUfeO6Vj-P9sOom_khf3FWTMz1Mb2dI8vjhvG_kK8Gu-5rw",
+    id_token= "eyJraWQiOiJSejZRdXRPbXVlNk1vdEZpUm83M1lsTWJSZjc4Qxv4MUk0K29BeDhRNmxzPSIsImFsZyI6IlJTMjU2In0.hftrLf9--JjgZYAREDXYM8aJkLkeuXCSnM5fkOqYn8DQ",
+    new_device_metadata=nil
+  >
+>
+```
+__Note:__
+> If you need to retreive `access_token` or `id_token` from ```result``` you can simply call it by its keys like:
+```ruby
+result.authentication_result.access_token
+#=> "eyJraWQiOiJ3T0RTTmYyTXRheDJPM24lD2xMc1RoM1hoOXV6V3BBcEpubjdMMlwvMXo4bz0iLCJhbGciOiJSUzI1NiJ9cHgmlc6WWxXPw36GuQ91jiTisnvtJWus-"
+result.authentication_result.id_token
+#=> "eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2-Dmc6dms9iukp_YUfeO6Vj-P9sOom_khf3FWTMz1Mb2dI8vjhvG_kK8Gu-5rw"
+```
+__Error output__
+In case of passing invalid session you will get AWS error
+```ruby
+UserExample.ca_respond_to_auth_challenge!(username, password, 'invalid_session')
+#=> Aws::CognitoIdentityProvider::Errors::CodeMismatchException: Invalid session provided
 ```

data/doc/ca_set_user_password!.md ADDED

@@ -0,0 +1,36 @@
+# CognitoSyncService
+__*#ca_set_user_password!(username, password)*__
+### Synopsys
+> Sets the specified user's password in a user pool as an administrator. Works on any user.
+>
+> Also check AWS API Documentation [AdminSetUserPassword](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_AdminSetUserPassword.html) method
+>
+> Also check this doc [admin-set-user-password](https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/admin-set-user-password.html) method
+## Usage
+```ruby
+class UserExample
+  extend ::CognitoSyncService
+end
+UserExample.ca_set_user_password!(username, password)
+```
+__Output__
+```ruby
+#<struct Aws::CognitoIdentityProvider::Types::AdminSetUserPasswordResponse>
+```
+__Error output__
+In case of passing invalid or nonexistent(in your Cognito Pool) username you will get AWS error
+```ruby
+UserExample.ca_set_user_password!('invalid_username', password)
+#=> Aws::CognitoIdentityProvider::Errors::UserNotFoundException: User not found.
+```

data/doc/ca_update!.md CHANGED

@@ -39,5 +39,17 @@ __Output__
   "user_status"=>"FORCE_CHANGE_PASSWORD",
   "phone_number"=>"+111111111"
 }
+```
+__Error output__
+In case of passing invalid attributes you will get AWS error
+```ruby
+attrs = {
+  { email: 'invalidemail@@@example....com' },
+  { phone_number: '+1111111111' }
+}
+UserExample.ca_update!(attrs, attrs[:phone_number]) #=> Aws::CognitoIdentityProvider::Errors::InvalidParameterException: Invalid email address format.
 ```

data/lib/cognito-sync-service.rb CHANGED

@@ -49,6 +49,11 @@ module CognitoSyncService
     cognito_provider.admin_disable_user(user_pool_id: web_pool_id, username: username)
   end
+  # user can be enable by email or phone_number depend on cognito pool settings
+  def ca_enable!(username)
+    cognito_provider.admin_enable_user(user_pool_id: web_pool_id, username: username)
+  end
   # user can be authenticated by email or phone_number depend on cognito pool settings
   # password can be constant or temporary
   # "auth_flow" arg may differ depend on you authorization rules, we hardcode ADMIN_NO_SRP_AUTH like a common case
@@ -66,6 +71,19 @@ module CognitoSyncService
     )
   end
+  # user can refresh access token and id token by passing in a valid refresh token
+  # REFRESH_TOKEN_AUTH - Authentication flow for refreshing the access token and ID token by supplying a valid refresh token
+  def ca_refresh_tokens!(refresh_token)
+    cognito_provider.admin_initiate_auth(
+      user_pool_id: web_pool_id,
+      client_id: web_client_id,
+      auth_flow: 'REFRESH_TOKEN_AUTH',
+      auth_parameters: {
+        REFRESH_TOKEN: refresh_token
+      }
+    )
+  end
   # for now this method works only for password confirmation flow
   def ca_respond_to_auth_challenge!(username, password, session)
     cognito_provider.admin_respond_to_auth_challenge(
@@ -76,4 +94,20 @@ module CognitoSyncService
       challenge_responses: { USERNAME: username, NEW_PASSWORD: password }
     )
   end
+  # works with any user
+  # after this method has been performed your account_status will be FORCE_CHANGE_PASSWORD
+  def ca_set_user_password!(username, password)
+    cognito_provider.admin_set_user_password(
+      user_pool_id: web_pool_id,
+      username: username,
+      password: password
+    ).to_h
+  end
+  # return user attributes by access token
+  def c_find_by_access_token!(access_token)
+    user = cognito_provider.get_user(access_token: access_token)
+    convert_from_cognito(user)
+  end
 end

data/lib/cognito-sync-service/version.rb CHANGED

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module CognitoSyncService
-  VERSION = '1.0.0'
+  VERSION = '1.1.0'
 end

data/logo.png ADDED

Binary file

metadata CHANGED

@@ -1,14 +1,15 @@
 --- !ruby/object:Gem::Specification
 name: cognito-sync-service
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.1.0
 platform: ruby
 authors:
 - Mark Osipenko
+- Andrey Aliabiev
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2019-08-05 00:00:00.000000000 Z
+date: 2019-12-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-cognitoidentity
@@ -182,6 +183,7 @@ description: 'With this gem you can implement: CRUD functionality from you appli
   synchronize you database users with user_pools, handling authorization'
 email:
 - mark.osipenko@gmail.com
+- andrey.alyabyev23@gmail.com
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -191,6 +193,7 @@ files:
 - ".rspec"
 - ".rubocop.yml"
 - ".travis.yml"
+- CHANGELOG.md
 - CODE_OF_CONDUCT.md
 - CONTRIBUTING.md
 - DEVELOPMENT.md
@@ -201,21 +204,23 @@ files:
 - Rakefile
 - bin/console
 - bin/setup
-- cognito-sync-service-0.2.0.gem
-- cognito-sync-service-0.3.0.gem
-- cognito-sync-service-0.3.1.gem
-- cognito-sync-service-0.3.2.gem
+- built_with_pain_from_cognito.png
 - cognito_sync_service.gemspec
+- doc/c_find_by_access_token!.md
 - doc/ca_create!.md
 - doc/ca_delete!.md
 - doc/ca_disable!.md
+- doc/ca_enable!.md
 - doc/ca_find!.md
 - doc/ca_initiate_auth!.md
+- doc/ca_refresh_tokens!.md
 - doc/ca_respond_to_auth_challenge!.md
+- doc/ca_set_user_password!.md
 - doc/ca_update!.md
 - lib/cognito-sync-service.rb
 - lib/cognito-sync-service/version.rb
 - lib/cognito_attributes_converter.rb
+- logo.png
 homepage: https://github.com/7DevsApps/cognito-sync-service
 licenses:
 - MIT
@@ -238,7 +243,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.4
+rubygems_version: 3.0.6
 signing_key:
 specification_version: 4
 summary: Aws Cognito user pool synchronizer

data/cognito-sync-service-0.2.0.gem DELETED

Binary file

data/cognito-sync-service-0.3.0.gem DELETED

Binary file

data/cognito-sync-service-0.3.1.gem DELETED

Binary file

data/cognito-sync-service-0.3.2.gem DELETED

Binary file