RubyGems - descope - Versions diffs - 1.0.4 - Mend

descope 1.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (197) hide show

checksums.yaml +7 -0
data/.github/workflows/ci.yaml +54 -0
data/.gitignore +59 -0
data/.release-please-manifest.json +3 -0
data/.rubocop.yml +10 -0
data/.rubocop_todo.yml +10 -0
data/.ruby-version +1 -0
data/CHANGELOG.md +90 -0
data/Gemfile +22 -0
data/Gemfile.lock +204 -0
data/LICENSE +21 -0
data/README.md +1171 -0
data/Rakefile +31 -0
data/descope.gemspec +34 -0
data/examples/ruby/Gemfile +4 -0
data/examples/ruby/Gemfile.lock +41 -0
data/examples/ruby/access_key_app.rb +45 -0
data/examples/ruby/enchantedlink_app.rb +65 -0
data/examples/ruby/magiclink_app.rb +81 -0
data/examples/ruby/management/Gemfile +5 -0
data/examples/ruby/management/Gemfile.lock +38 -0
data/examples/ruby/management/access_key_app.rb +71 -0
data/examples/ruby/management/audit_app.rb +25 -0
data/examples/ruby/management/authz_app.rb +135 -0
data/examples/ruby/management/authz_files.json +229 -0
data/examples/ruby/management/flow_app.rb +57 -0
data/examples/ruby/management/permission_app.rb +56 -0
data/examples/ruby/management/role_app.rb +58 -0
data/examples/ruby/management/tenant_app.rb +60 -0
data/examples/ruby/management/user_app.rb +60 -0
data/examples/ruby/oauth_app.rb +39 -0
data/examples/ruby/otp_app.rb +50 -0
data/examples/ruby/password_app.rb +76 -0
data/examples/ruby/saml_app.rb +38 -0
data/examples/ruby-on-rails-api/descope/.dockerignore +37 -0
data/examples/ruby-on-rails-api/descope/.gitattributes +9 -0
data/examples/ruby-on-rails-api/descope/.gitignore +40 -0
data/examples/ruby-on-rails-api/descope/.node-version +1 -0
data/examples/ruby-on-rails-api/descope/.ruby-version +1 -0
data/examples/ruby-on-rails-api/descope/Dockerfile +75 -0
data/examples/ruby-on-rails-api/descope/Gemfile +67 -0
data/examples/ruby-on-rails-api/descope/Gemfile.lock +284 -0
data/examples/ruby-on-rails-api/descope/Procfile.dev +3 -0
data/examples/ruby-on-rails-api/descope/README.md +54 -0
data/examples/ruby-on-rails-api/descope/Rakefile +6 -0
data/examples/ruby-on-rails-api/descope/app/assets/builds/.keep +0 -0
data/examples/ruby-on-rails-api/descope/app/assets/config/manifest.js +3 -0
data/examples/ruby-on-rails-api/descope/app/assets/images/.keep +0 -0
data/examples/ruby-on-rails-api/descope/app/assets/images/descope.jpeg +0 -0
data/examples/ruby-on-rails-api/descope/app/assets/images/favicon.ico +0 -0
data/examples/ruby-on-rails-api/descope/app/assets/images/logo192.png +0 -0
data/examples/ruby-on-rails-api/descope/app/assets/images/logo512.png +0 -0
data/examples/ruby-on-rails-api/descope/app/assets/stylesheets/application.bootstrap.scss +67 -0
data/examples/ruby-on-rails-api/descope/app/channels/application_cable/channel.rb +4 -0
data/examples/ruby-on-rails-api/descope/app/channels/application_cable/connection.rb +4 -0
data/examples/ruby-on-rails-api/descope/app/controllers/application_controller.rb +2 -0
data/examples/ruby-on-rails-api/descope/app/controllers/concerns/.keep +0 -0
data/examples/ruby-on-rails-api/descope/app/controllers/homepage_controller.rb +4 -0
data/examples/ruby-on-rails-api/descope/app/controllers/session_controller.rb +66 -0
data/examples/ruby-on-rails-api/descope/app/helpers/application_helper.rb +2 -0
data/examples/ruby-on-rails-api/descope/app/helpers/homepage_helper.rb +2 -0
data/examples/ruby-on-rails-api/descope/app/helpers/session_helper.rb +2 -0
data/examples/ruby-on-rails-api/descope/app/javascript/App.css +53 -0
data/examples/ruby-on-rails-api/descope/app/javascript/application.js +5 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/App.jsx +4 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/Dashboard.jsx +60 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/Home.jsx +27 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/Login.jsx +45 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/Profile.jsx +81 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/index.html +11 -0
data/examples/ruby-on-rails-api/descope/app/javascript/components/index.jsx +24 -0
data/examples/ruby-on-rails-api/descope/app/javascript/controllers/application.js +9 -0
data/examples/ruby-on-rails-api/descope/app/javascript/controllers/index.js +5 -0
data/examples/ruby-on-rails-api/descope/app/javascript/reportWebVitals.js +13 -0
data/examples/ruby-on-rails-api/descope/app/javascript/routes/index.jsx +17 -0
data/examples/ruby-on-rails-api/descope/app/jobs/application_job.rb +7 -0
data/examples/ruby-on-rails-api/descope/app/mailers/application_mailer.rb +4 -0
data/examples/ruby-on-rails-api/descope/app/models/application_record.rb +3 -0
data/examples/ruby-on-rails-api/descope/app/models/concerns/.keep +0 -0
data/examples/ruby-on-rails-api/descope/app/views/homepage/index.html.erb +2 -0
data/examples/ruby-on-rails-api/descope/app/views/layouts/application.html.erb +16 -0
data/examples/ruby-on-rails-api/descope/app/views/layouts/mailer.html.erb +13 -0
data/examples/ruby-on-rails-api/descope/app/views/layouts/mailer.text.erb +1 -0
data/examples/ruby-on-rails-api/descope/app/views/session/index.html.erb +2 -0
data/examples/ruby-on-rails-api/descope/bin/bundle +109 -0
data/examples/ruby-on-rails-api/descope/bin/dev +11 -0
data/examples/ruby-on-rails-api/descope/bin/docker-entrypoint +8 -0
data/examples/ruby-on-rails-api/descope/bin/rails +4 -0
data/examples/ruby-on-rails-api/descope/bin/rake +4 -0
data/examples/ruby-on-rails-api/descope/bin/setup +36 -0
data/examples/ruby-on-rails-api/descope/build.js +30 -0
data/examples/ruby-on-rails-api/descope/config/application.rb +42 -0
data/examples/ruby-on-rails-api/descope/config/boot.rb +4 -0
data/examples/ruby-on-rails-api/descope/config/cable.yml +10 -0
data/examples/ruby-on-rails-api/descope/config/config.yml +9 -0
data/examples/ruby-on-rails-api/descope/config/credentials.yml.enc +1 -0
data/examples/ruby-on-rails-api/descope/config/database.yml +25 -0
data/examples/ruby-on-rails-api/descope/config/environment.rb +5 -0
data/examples/ruby-on-rails-api/descope/config/environments/development.rb +76 -0
data/examples/ruby-on-rails-api/descope/config/environments/production.rb +97 -0
data/examples/ruby-on-rails-api/descope/config/environments/test.rb +64 -0
data/examples/ruby-on-rails-api/descope/config/initializers/assets.rb +13 -0
data/examples/ruby-on-rails-api/descope/config/initializers/content_security_policy.rb +25 -0
data/examples/ruby-on-rails-api/descope/config/initializers/filter_parameter_logging.rb +8 -0
data/examples/ruby-on-rails-api/descope/config/initializers/inflections.rb +16 -0
data/examples/ruby-on-rails-api/descope/config/initializers/load_config.rb +12 -0
data/examples/ruby-on-rails-api/descope/config/initializers/permissions_policy.rb +13 -0
data/examples/ruby-on-rails-api/descope/config/locales/en.yml +31 -0
data/examples/ruby-on-rails-api/descope/config/puma.rb +35 -0
data/examples/ruby-on-rails-api/descope/config/routes.rb +18 -0
data/examples/ruby-on-rails-api/descope/config/storage.yml +34 -0
data/examples/ruby-on-rails-api/descope/config.ru +6 -0
data/examples/ruby-on-rails-api/descope/db/seeds.rb +9 -0
data/examples/ruby-on-rails-api/descope/lib/assets/.keep +0 -0
data/examples/ruby-on-rails-api/descope/lib/tasks/.keep +0 -0
data/examples/ruby-on-rails-api/descope/log/.keep +0 -0
data/examples/ruby-on-rails-api/descope/package-lock.json +19680 -0
data/examples/ruby-on-rails-api/descope/package.json +51 -0
data/examples/ruby-on-rails-api/descope/public/404.html +67 -0
data/examples/ruby-on-rails-api/descope/public/422.html +67 -0
data/examples/ruby-on-rails-api/descope/public/500.html +66 -0
data/examples/ruby-on-rails-api/descope/public/apple-touch-icon-precomposed.png +0 -0
data/examples/ruby-on-rails-api/descope/public/apple-touch-icon.png +0 -0
data/examples/ruby-on-rails-api/descope/public/favicon.ico +0 -0
data/examples/ruby-on-rails-api/descope/public/robots.txt +1 -0
data/examples/ruby-on-rails-api/descope/storage/.keep +0 -0
data/examples/ruby-on-rails-api/descope/tmp/.keep +0 -0
data/examples/ruby-on-rails-api/descope/tmp/pids/.keep +0 -0
data/examples/ruby-on-rails-api/descope/tmp/storage/.keep +0 -0
data/examples/ruby-on-rails-api/descope/vendor/.keep +0 -0
data/examples/ruby-on-rails-api/descope/yarn.lock +10780 -0
data/lib/descope/api/v1/auth/enchantedlink.rb +156 -0
data/lib/descope/api/v1/auth/magiclink.rb +170 -0
data/lib/descope/api/v1/auth/oauth.rb +72 -0
data/lib/descope/api/v1/auth/otp.rb +186 -0
data/lib/descope/api/v1/auth/password.rb +100 -0
data/lib/descope/api/v1/auth/saml.rb +48 -0
data/lib/descope/api/v1/auth/totp.rb +72 -0
data/lib/descope/api/v1/auth.rb +452 -0
data/lib/descope/api/v1/management/access_key.rb +81 -0
data/lib/descope/api/v1/management/audit.rb +82 -0
data/lib/descope/api/v1/management/authz.rb +165 -0
data/lib/descope/api/v1/management/common.rb +147 -0
data/lib/descope/api/v1/management/flow.rb +55 -0
data/lib/descope/api/v1/management/password.rb +58 -0
data/lib/descope/api/v1/management/permission.rb +48 -0
data/lib/descope/api/v1/management/project.rb +53 -0
data/lib/descope/api/v1/management/role.rb +48 -0
data/lib/descope/api/v1/management/scim.rb +206 -0
data/lib/descope/api/v1/management/sso_settings.rb +153 -0
data/lib/descope/api/v1/management/tenant.rb +71 -0
data/lib/descope/api/v1/management/user.rb +619 -0
data/lib/descope/api/v1/management.rb +38 -0
data/lib/descope/api/v1/session.rb +84 -0
data/lib/descope/api/v1.rb +13 -0
data/lib/descope/client.rb +6 -0
data/lib/descope/exception.rb +50 -0
data/lib/descope/mixins/common.rb +129 -0
data/lib/descope/mixins/headers.rb +15 -0
data/lib/descope/mixins/http.rb +133 -0
data/lib/descope/mixins/initializer.rb +80 -0
data/lib/descope/mixins/logging.rb +30 -0
data/lib/descope/mixins/validation.rb +79 -0
data/lib/descope/mixins.rb +22 -0
data/lib/descope/version.rb +7 -0
data/lib/descope.rb +9 -0
data/lib/descope_client.rb +5 -0
data/release-please-config.json +18 -0
data/renovate.json +6 -0
data/spec/factories/user.rb +16 -0
data/spec/lib.descope/api/v1/auth/enchantedlink_spec.rb +159 -0
data/spec/lib.descope/api/v1/auth/magiclink_spec.rb +282 -0
data/spec/lib.descope/api/v1/auth/oauth_spec.rb +117 -0
data/spec/lib.descope/api/v1/auth/otp_spec.rb +285 -0
data/spec/lib.descope/api/v1/auth/password_spec.rb +124 -0
data/spec/lib.descope/api/v1/auth/saml_spec.rb +55 -0
data/spec/lib.descope/api/v1/auth/totp_spec.rb +70 -0
data/spec/lib.descope/api/v1/auth_spec.rb +372 -0
data/spec/lib.descope/api/v1/management/access_key_spec.rb +118 -0
data/spec/lib.descope/api/v1/management/audit_spec.rb +78 -0
data/spec/lib.descope/api/v1/management/authz_spec.rb +336 -0
data/spec/lib.descope/api/v1/management/flow_spec.rb +78 -0
data/spec/lib.descope/api/v1/management/password_spec.rb +25 -0
data/spec/lib.descope/api/v1/management/permission_spec.rb +81 -0
data/spec/lib.descope/api/v1/management/project_spec.rb +63 -0
data/spec/lib.descope/api/v1/management/role_spec.rb +85 -0
data/spec/lib.descope/api/v1/management/scim_spec.rb +312 -0
data/spec/lib.descope/api/v1/management/sso_settings_spec.rb +172 -0
data/spec/lib.descope/api/v1/management/tenant_spec.rb +141 -0
data/spec/lib.descope/api/v1/management/user_spec.rb +667 -0
data/spec/lib.descope/api/v1/session_spec.rb +117 -0
data/spec/lib.descope/client_spec.rb +40 -0
data/spec/spec_helper.rb +72 -0
data/spec/support/client_config.rb +14 -0
data/spec/support/dummy_class.rb +36 -0
data/spec/support/utils.rb +32 -0
metadata +420 -0

data/spec/lib.descope/api/v1/auth/otp_spec.rb ADDED Viewed

@@ -0,0 +1,285 @@
+# frozen_string_literal: true
+require 'spec_helper'
+describe Descope::Api::V1::OTP do
+  before(:all) do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Descope::Api::V1::Session)
+    dummy_instance.extend(Descope::Api::V1::Auth::OTP)
+    dummy_instance.extend(Descope::Api::V1::Management::User)
+    @instance = dummy_instance
+  end
+  context '.sign_in' do
+    it 'is expected to respond to sign in using otp' do
+      expect(@instance).to respond_to(:otp_sign_in)
+    end
+    it 'is expected to sign in with otp' do
+      request_params = {
+        loginId: 'test',
+        loginOptions: {
+          stepup: false,
+          customClaims: { 'abc': '123' },
+          mfa: false,
+          ssoAppId: 'sso-id'
+        }
+      }
+      expect(@instance).to receive(:post).with(
+        otp_compose_signin_url,
+        request_params,
+        {},
+        'refresh_token'
+      )
+      allow_any_instance_of(Descope::Api::V1::Auth::OTP).to receive(:extract_masked_address).and_return({})
+      expect do
+        @instance.otp_sign_in(
+          method: DeliveryMethod::EMAIL,
+          login_id: 'test',
+          login_options: {
+            stepup: false,
+            custom_claims: { 'abc': '123' },
+            mfa: false,
+            sso_app_id: 'sso-id'
+          },
+          refresh_token: 'refresh_token'
+        )
+      end.not_to raise_error
+    end
+    it 'is expected to sign in with otp phone' do
+      request_params = {
+        loginId: 'test',
+        loginOptions: {
+          stepup: false,
+          customClaims: { 'abc': '123' },
+          mfa: false,
+          ssoAppId: 'sso-id'
+        },
+      }
+      expect(@instance).to receive(:post).with(
+        otp_compose_signin_url(DeliveryMethod::SMS),
+        request_params,
+        {},
+        'refresh_token'
+      )
+      allow_any_instance_of(Descope::Api::V1::Auth::OTP).to receive(:extract_masked_address).and_return(
+        {
+          'maskedPhone' => '+1******890'
+        }
+      )
+      expect do
+        @instance.otp_sign_in(
+          method: DeliveryMethod::SMS,
+          login_id: 'test',
+          login_options: {
+            stepup: false,
+            custom_claims: { 'abc': '123' },
+            mfa: false,
+            sso_app_id: 'sso-id'
+          },
+          refresh_token: 'refresh_token'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.sign_up' do
+    it 'is expected to respond to otp email sign up' do
+      expect(@instance).to respond_to(:otp_sign_up)
+    end
+    it 'is expected to sign up with otp via email' do
+      request_params = {
+        loginId: 'test',
+        user: { loginId: 'user1', email: 'dummy@dummy.com' },
+        email: 'dummy@dummy.com'
+      }
+      expect(@instance).to receive(:post).with(
+        otp_compose_signup_url,
+        request_params
+      ).and_return({ 'maskedEmail' => 'd****@d****.com' })
+      allow_any_instance_of(Descope::Api::V1::Auth).to receive(:extract_masked_address).and_return({})
+      expect do
+        @instance.otp_sign_up(
+          login_id: 'test',
+          method: DeliveryMethod::EMAIL,
+          user: { login_id: 'user1', email: 'dummy@dummy.com' }
+        )
+      end.not_to raise_error
+    end
+    it 'is expected to sign up with otp via phone' do
+      request_params = {
+        loginId: 'test',
+        user: { loginId: 'user1', phone: '+1234567890' },
+        phone: '+1234567890'
+      }
+      expect(@instance).to receive(:post).with(
+        otp_compose_signup_url(DeliveryMethod::SMS),
+        request_params
+      ).and_return({ 'maskedPhone' => '+1******890' })
+      allow_any_instance_of(Descope::Api::V1::Auth).to receive(:extract_masked_address).and_return({})
+      expect do
+        @instance.otp_sign_up(
+          login_id: 'test',
+          method: DeliveryMethod::SMS,
+          user: { login_id: 'user1', phone: '+1234567890' }
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.sign_up_or_in' do
+    it 'is expected to respond to sign up' do
+      expect(@instance).to respond_to(:otp_sign_up_or_in)
+    end
+    it 'is expected to sign up or in with otp' do
+      request_params = {
+        loginId: 'test',
+        loginOptions: {
+          stepup: false,
+          customClaims: { 'abc': '123' },
+          mfa: false,
+          ssoAppId: 'sso-id'
+        },
+        providerId: 'provider-id',
+        templateId: 'template-id',
+        ssoAppId: 'sso-id'
+      }
+      expect(@instance).to receive(:post).with(
+        otp_compose_sign_up_or_in_url,
+        request_params
+      ).and_return({ 'maskedEmail' => 'd****@d****.com' })
+      expect do
+        @instance.otp_sign_up_or_in(
+          method: DeliveryMethod::EMAIL,
+          login_id: 'test',
+          login_options: {
+            stepup: false,
+            custom_claims: { 'abc': '123' },
+            mfa: false,
+            sso_app_id: 'sso-id'
+          },
+          provider_id: 'provider-id',
+          template_id: 'template-id',
+          sso_app_id: 'sso-id'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.otp_verify_code' do
+    it 'is expected to respond to otp_verify_code' do
+      expect(@instance).to respond_to(:otp_verify_code)
+    end
+    it 'is expected to verify OTP code' do
+      jwt_response = { 'fake': 'response' }
+      allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
+      expect(@instance).to receive(:post).with(
+        otp_compose_verify_code_url,
+        {
+          loginId: 'test',
+          code: '123456'
+        }
+      ).and_return({ 'sessionJWT': 'fake-session-jwt' })
+      expect do
+        @instance.otp_verify_code(
+          method: DeliveryMethod::EMAIL,
+          login_id: 'test',
+          code: '123456'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.otp_update_email' do
+    it 'is expected to respond to otp_email_update_user_email' do
+      expect(@instance).to respond_to(:otp_update_user_email)
+    end
+    it 'is expected to update email with otp' do
+      request_params = {
+        loginId: 'test',
+        email: 'dummy@dummy.com',
+        addToLoginIDs: true,
+        onMergeUseExisting: true,
+        providerId: 'provider-id',
+        templateId: 'template-id'
+      }
+      expect(@instance).to receive(:post).with(
+        UPDATE_USER_EMAIL_OTP_PATH,
+        request_params,
+        {},
+        'token'
+      ).and_return({ 'maskedEmail' => 'd****@d****.com' })
+      expect do
+        @instance.otp_update_user_email(
+          login_id: 'test',
+          email: 'dummy@dummy.com',
+          add_to_login_ids: true,
+          on_merge_use_existing: true,
+          refresh_token: 'token',
+          provider_id: 'provider-id',
+          template_id: 'template-id'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.otp_update_phone' do
+    it 'is expected to respond to otp_email_update_user_phone' do
+      expect(@instance).to respond_to(:otp_update_user_phone)
+    end
+    it 'is expected to update phone with otp' do
+      request_params = {
+        loginId: 'test',
+        phone: '+1234567890',
+        addToLoginIDs: true,
+        onMergeUseExisting: true,
+        providerId: 'provider-id',
+        templateId: 'template-id'
+      }
+      expect(@instance).to receive(:post).with(
+        otp_compose_update_phone_url(DeliveryMethod::SMS),
+        request_params,
+        {},
+        'token'
+      ).and_return({ 'maskedPhone' => '+1******890' })
+      expect do
+        @instance.otp_update_user_phone(
+          login_id: 'test',
+          phone: '+1234567890',
+          add_to_login_ids: true,
+          on_merge_use_existing: true,
+          refresh_token: 'token',
+          method: DeliveryMethod::SMS,
+          provider_id: 'provider-id',
+          template_id: 'template-id'
+        )
+      end.not_to raise_error
+    end
+  end
+end

data/spec/lib.descope/api/v1/auth/password_spec.rb ADDED Viewed

@@ -0,0 +1,124 @@
+# frozen_string_literal: true
+require 'spec_helper'
+describe Descope::Api::V1::Password do
+  before(:all) do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Descope::Api::V1::Session)
+    dummy_instance.extend(Descope::Api::V1::Auth::Password)
+    @instance = dummy_instance
+  end
+  context '.sign_up' do
+    it 'is expected to respond to sign up' do
+      expect(@instance).to respond_to(:password_sign_up)
+    end
+    it 'is expected to sign up with password' do
+      jwt_response = { 'fake': 'response' }
+      allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
+      expect(@instance).to receive(:post).with(
+        SIGN_UP_PASSWORD_PATH, {
+          loginId: 'test',
+          password: 's3cr3t',
+          user: { loginId: 'admin', email: 'test@domain.com' }
+        }
+      ).and_return(jwt_response)
+      expect do
+        @instance.password_sign_up(
+          login_id: 'test',
+          password: 's3cr3t',
+          user: { login_id: 'admin', email: 'test@domain.com' }
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.sign_in' do
+    it 'is expected to respond to sign in' do
+      expect(@instance).to respond_to(:password_sign_in)
+    end
+    it 'is expected to sign in with password' do
+      expect(@instance).to receive(:post).with(
+        SIGN_IN_PASSWORD_PATH, { loginId: 'test', password: 's3cr3t', ssoAppId: nil }
+      )
+      # stub the jwt_get_unverified_header method to return the kid of the public key created above
+      allow(@instance).to receive(:generate_jwt_response).and_return({})
+      expect { @instance.password_sign_in(login_id: 'test', password: 's3cr3t') }.not_to raise_error
+    end
+  end
+  context '.password_replace' do
+    it 'is expected to respond to password replace' do
+      expect(@instance).to respond_to(:password_replace)
+    end
+    it 'is expected to replace password' do
+      expect(@instance).to receive(:post).with(
+        REPLACE_PASSWORD_PATH, { loginId: 'test', oldPassword: 's3cr3t', newPassword: 's3cr3t1' }
+      )
+      expect do
+        @instance.password_replace(
+          login_id: 'test', old_password: 's3cr3t', new_password: 's3cr3t1'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.password_update' do
+    it 'is expected to respond to password update' do
+      expect(@instance).to respond_to(:password_update)
+    end
+    it 'is expected to update password' do
+      expect(@instance).to receive(:post).with(
+        UPDATE_PASSWORD_PATH, { loginId: 'test', newPassword: 's3cr3t1' }, {}, 'refresh_token'
+      )
+      expect do
+        @instance.password_update(
+          login_id: 'test', new_password: 's3cr3t1', refresh_token: 'refresh_token'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.get_password_policy' do
+    it 'is expected to respond to get password policy' do
+      expect(@instance).to respond_to(:get_password_policy)
+    end
+    it 'is expected to get password policy' do
+      expect(@instance).to receive(:get).with(
+        PASSWORD_POLICY_PATH, {}, {}, nil
+      )
+      expect do
+        @instance.get_password_policy
+      end.not_to raise_error
+    end
+  end
+  context '.password_reset' do
+    it 'is expected to respond to password reset' do
+      expect(@instance).to respond_to(:password_reset)
+    end
+    it 'is expected to reset password' do
+      expect(@instance).to receive(:post).with(
+        SEND_RESET_PASSWORD_PATH, { loginId: 'test', redirectUrl: 'https://www.google.com', providerId: 'test', templateId: 'test' }
+      )
+      expect do
+        @instance.password_reset(
+          login_id: 'test', redirect_url: 'https://www.google.com', provider_id: 'test', template_id: 'test'
+        )
+      end.not_to raise_error
+    end
+  end
+end

data/spec/lib.descope/api/v1/auth/saml_spec.rb ADDED Viewed

@@ -0,0 +1,55 @@
+# frozen_string_literal: true
+require 'spec_helper'
+describe Descope::Api::V1::SAML do
+  before(:all) do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Descope::Api::V1::Session)
+    dummy_instance.extend(Descope::Api::V1::Auth::OAuth)
+    @instance = dummy_instance
+  end
+  context '.saml_start' do
+    it 'is expected to respond to saml start' do
+      expect(@instance).to respond_to(:saml_sign_in)
+    end
+    it 'is expected to sign in single sign-on saml' do
+      request_params = {
+        stepup: false,
+        customClaims: { 'abc': '123' },
+        mfa: false,
+        ssoAppId: 'sso-id'
+      }
+      formatted_uri = '/v1/auth/saml/authorize?tenant=some-tenant&redirectUrl=https%3A%2F%2Fsome-uri%2Femail&prompt=custom+prompt+%26+needs+to+be+decoded%3A+too'
+      expect(@instance).to receive(:post).with(formatted_uri, request_params)
+      expect do
+        @instance.saml_sign_in(
+          tenant: 'some-tenant',
+          prompt: 'custom prompt & needs to be decoded: too',
+          redirect_url: 'https://some-uri/email',
+          stepup: false,
+          custom_claims: { 'abc': '123' },
+          mfa: false,
+          sso_app_id: 'sso-id'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.saml_exchange_token' do
+    it 'is expected to respond to saml exchange token' do
+      expect(@instance).to respond_to(:saml_exchange_token)
+    end
+    it 'is expected to exchange token' do
+      jwt_response = { 'fake': 'response' }
+      allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
+      expect(@instance).to receive(:post).with(SAML_EXCHANGE_TOKEN_PATH, { code: '123456' }).and_return(jwt_response)
+      expect { @instance.saml_exchange_token('123456') }.not_to raise_error
+    end
+  end
+end

data/spec/lib.descope/api/v1/auth/totp_spec.rb ADDED Viewed

@@ -0,0 +1,70 @@
+# frozen_string_literal: true
+require 'spec_helper'
+describe Descope::Api::V1::OTP do
+  before(:all) do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Descope::Api::V1::Session)
+    dummy_instance.extend(Descope::Api::V1::Auth::OTP)
+    @instance = dummy_instance
+  end
+  context '.sign_in' do
+    it 'is expected to respond to sign in using otp' do
+      expect(@instance).to respond_to(:totp_sign_in_code)
+    end
+    it 'is expected to sign in with totp code' do
+      request_params = {
+        loginId: 'test',
+        loginOptions: {
+          stepup: false,
+          customClaims: { 'abc': '123' },
+          mfa: false,
+          ssoAppId: 'sso-id'
+        },
+        code: '123456'
+      }
+      jwt_response = { 'fake': 'response' }
+      allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
+      expect(@instance).to receive(:post).with(VERIFY_TOTP_PATH, request_params, {}, nil).and_return(
+        jwt_response
+      )
+      expect do
+        @instance.totp_sign_in_code(
+          login_id: 'test',
+          login_options: {
+            stepup: false,
+            custom_claims: { 'abc': '123' },
+            mfa: false,
+            sso_app_id: 'sso-id'
+          },
+          code: '123456'
+        )
+      end.not_to raise_error
+    end
+  end
+  context '.totp_add_update_key' do
+    it 'is expected to respond to totp_add_update_key' do
+      expect(@instance).to respond_to(:totp_add_update_key)
+    end
+    it 'is expected to add or update totp key' do
+      request_params = {
+        loginId: 'test'
+      }
+      allow(@instance).to receive(:post).with(UPDATE_TOTP_PATH, request_params, {}, 'refresh_token')
+      expect do
+        @instance.totp_add_update_key(
+          login_id: 'test',
+          refresh_token: 'refresh_token'
+        )
+      end.not_to raise_error
+    end
+  end
+end