descope 1.0.4

data/spec/lib.descope/api/v1/session_spec.rb

@@ -0,0 +1,117 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe Descope::Api::V1::Session do
+  before(:all) do
+    dummy_instance = DummyClass.new
+    dummy_instance.extend(Descope::Api::V1::Session)
+    dummy_instance.extend(Descope::Mixins::Common::EndpointsV1)
+    @instance = dummy_instance
+  end
+
+  context '.token_validation_key' do
+    it 'is expected to respond to token validation key' do
+      expect(@instance).to respond_to(:token_validation_key)
+    end
+
+    it 'is expected to get v2 public key' do
+      project_id = 'project123'
+      expect(@instance).to receive(:get).with(
+        "#{Descope::Mixins::Common::EndpointsV2::PUBLIC_KEY_PATH}/#{project_id}"
+      )
+
+      expect { @instance.token_validation_key('project123') }.not_to raise_error
+    end
+  end
+
+  context '.refresh_session' do
+    it 'is expected to respond to refresh session' do
+      expect(@instance).to respond_to(:refresh_session)
+    end
+
+    it 'is expected to post refresh session' do
+      jwt_response = { 'fake': 'response' }
+      allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
+
+      expect(@instance).to receive(:post).with(REFRESH_TOKEN_PATH, {}, {}, 'refresh_token')
+      allow(@instance).to receive(:validate_token).with('refresh_token', nil).and_return({})
+      expect { @instance.refresh_session(refresh_token: 'refresh_token') }.not_to raise_error
+    end
+  end
+
+  context '.me' do
+    it 'is expected to respond to /me' do
+      expect(@instance).to respond_to(:me)
+    end
+
+    it 'is expected to get /me' do
+      expect(@instance).to receive(:get).with(ME_PATH, {}, {}, nil)
+
+      expect { @instance.me }.not_to raise_error
+    end
+  end
+
+  context '.sign_out' do
+    it 'is expected to respond to sign out' do
+      expect(@instance).to respond_to(:sign_out)
+    end
+
+    it 'is expected to post sign out' do
+      expect(@instance).to receive(:post).with(LOGOUT_PATH, {}, {}, nil)
+
+      expect { @instance.sign_out }.not_to raise_error
+    end
+  end
+
+  context '.sign_out_all' do
+    it 'is expected to respond to sign out all' do
+      expect(@instance).to respond_to(:sign_out_all)
+    end
+
+    it 'is expected to post sign out all' do
+      expect(@instance).to receive(:post).with(LOGOUT_ALL_PATH, {}, {}, nil)
+
+      expect { @instance.sign_out_all }.not_to raise_error
+    end
+  end
+
+  context '.validate_session' do
+    it 'is expected to respond to validate session' do
+      expect(@instance).to respond_to(:validate_session)
+    end
+
+    it 'is expected to raise error if session token is nil' do
+      expect { @instance.validate_session }.to raise_error(
+        Descope::AuthException,
+        'Session token is required for validation'
+      )
+    end
+
+    it 'is expected to raise error if session token is empty' do
+      expect { @instance.validate_session(session_token: '') }.to raise_error(
+        Descope::AuthException,
+        'Session token is required for validation'
+      )
+    end
+
+  end
+
+  context '.validate_and_refresh_session' do
+    it 'is expected to respond to validate and refresh session' do
+      expect(@instance).to respond_to(:validate_and_refresh_session)
+    end
+
+    it 'is expected to try and validate session or refresh session' do
+      expect { @instance.validate_and_refresh_session(session_token: 'invalid_session_token') }.to raise_error(
+        Descope::AuthException,
+        'Refresh token is required to refresh a session'
+      )
+      allow(@instance).to receive(:validate_session).with(session_token: 'session_token', audience: nil).and_raise(Descope::AuthException).and_return({})
+      jwt_response = { 'fake': 'response' }
+      allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
+      allow(@instance).to receive(:refresh_session).and_return({})
+      expect { @instance.validate_and_refresh_session(session_token: 'session_token', refresh_token: 'refresh_token') }.to_not raise_error
+    end
+  end
+end

data/spec/lib.descope/client_spec.rb

@@ -0,0 +1,40 @@
+require 'spec_helper'
+
+describe Descope::Client do
+  shared_examples_for 'v1 API client' do
+    it { should be_a Descope::Api::V1 }
+    it { should be_a Descope::Api::V1::Management }
+    it { should be_a Descope::Api::V1::Management::User }
+    it { should be_a Descope::Api::V1::Management::Flow }
+    it { should be_a Descope::Api::V1::Management::AccessKey }
+    it { should be_a Descope::Api::V1::Management::Tenant }
+    it { should be_a Descope::Api::V1::Management::Permission }
+    it { should be_a Descope::Api::V1::Management::Role }
+    it { should be_a Descope::Api::V1::Management::Project }
+    it { should be_a Descope::Api::V1::Management::Authz }
+    it { should be_a Descope::Api::V1::Management::Audit }
+    it { should be_a Descope::Api::V1::Session }
+    it { should be_a Descope::Api::V1::Auth }
+    it { should be_a Descope::Api::V1::Auth::Password }
+    it { should be_a Descope::Api::V1::Auth::EnchantedLink }
+    it { should be_a Descope::Api::V1::Auth::MagicLink }
+    it { should be_a Descope::Api::V1::Auth::OAuth }
+    it { should be_a Descope::Api::V1::Auth::OTP }
+    it { should be_a Descope::Api::V1::Auth::SAML }
+    it { should be_a Descope::Api::V1::Auth::SAML }
+    it { should be_a Descope::Api::V1::Auth::TOTP }
+  end
+
+  let(:project_id) { 'P2AbcZVJYEUBGhX8LNjItawh5nAp' }
+  let(:management_key) { 'Abcdefg' }
+
+  describe 'V1 client with token' do
+    let(:subject) do
+      Descope::Client.new(
+        project_id:,
+        management_key:
+      )
+    end
+    it_should_behave_like 'v1 API client'
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,72 @@
+require 'rack/test'
+require 'faker'
+require 'json'
+require 'concurrent'
+require 'openssl'
+require 'base64'
+require 'descope'
+require 'super_diff/rspec'
+require 'factory_bot'
+
+if RUBY_VERSION >= '2.7.2'
+  # NOTE: https://bugs.ruby-lang.org/issues/17000
+  Warning[:deprecated] = true
+end
+
+require 'simplecov'
+require 'simplecov-html'
+
+SimpleCov.start
+SimpleCov.formatter = SimpleCov::Formatter::HTMLFormatter
+
+if ENV['CI'] == 'true'
+  require 'simplecov-cobertura'
+  SimpleCov.formatter = SimpleCov::Formatter::CoberturaFormatter
+end
+
+require 'webmock/rspec'
+WebMock.allow_net_connect!
+
+$LOAD_PATH.unshift File.expand_path('..', __FILE__)
+$LOAD_PATH.unshift File.expand_path('../../lib', __FILE__)
+
+Dir['./lib/*.rb'].each { |f| require f }
+Dir['./lib/api/**/*.rb'].each { |f| require f }
+Dir['./spec/support/**/*.rb'].each { |f| require f }
+Dir['./spec/support/*.rb'].each { |f| require f }
+
+include Descope::Api::V1::Management::Common
+include Descope::Mixins::Common
+include Descope::Mixins::Common::EndpointsV1
+include Descope::Mixins::Common::EndpointsV2
+include Descope::Api::V1::Auth
+
+require 'rspec'
+RSpec.configure do |config|
+  config.filter_run focus: true
+  config.run_all_when_everything_filtered = true
+
+  config.expect_with :rspec do |c|
+    c.max_formatted_output_length = 1000000
+  end
+
+  config.include FactoryBot::Syntax::Methods
+  config.before(:suite) do
+    FactoryBot.find_definitions
+  end
+end
+
+
+def wait(time, increment = 5, elapsed_time = 0, &block)
+  yield
+rescue RSpec::Expectations::ExpectationNotMetError => e
+  raise e if elapsed_time >= time
+  sleep increment
+  wait(time, increment, elapsed_time + increment, &block)
+end
+
+def entity_suffix
+  'rubytest-210908'
+end
+
+puts "Entity suffix is #{entity_suffix}"

data/spec/support/client_config.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+module Configuration
+  module_function
+
+  def config
+    {
+      base_uri: ENV.fetch('DESCOPE_BASE_URI', nil),
+      project_id: ENV.fetch('DESCOPE_PROJECT_ID', nil),
+      management_key: ENV.fetch('DESCOPE_MANAGEMENT_KEY', nil),
+      log_level: ENV.fetch('DESCOPE_LOG_LEVEL', 'info')
+    }
+  end
+end

data/spec/support/dummy_class.rb

@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+
+class DummyClass
+  include Descope::Mixins::Logging
+  include Descope::Mixins::Headers
+  include Descope::Mixins::Common
+  include Descope::Mixins::Common::EndpointsV1
+  include Descope::Api::V1::Management::Common
+  include Descope::Api::V1::Auth
+
+  attr_reader :base_uri, :headers
+
+  def initialize
+    @base_uri = 'test.descope.com'
+    @headers = {
+      'Content-Type' => 'application/json',
+      'x-descope-sdk-name': 'ruby',
+      'x-descope-sdk-ruby-version': RUBY_VERSION,
+      'x-descope-sdk-version': Descope::SDK_VERSION
+    }
+    @project_id = 'P2abcde12345'
+    @management_key = 'management_key'
+    @public_keys = {}
+    @mlock = Mutex.new
+    @logger ||= Descope::Mixins::Logging.logger_for(self.class.name, 'info')
+  end
+
+  %i[get post post_file post_form put patch delete delete_with_body].each do |method|
+    define_method(method) do |uri, body = {}, extra_headers = {}, pswd = nil|
+      body = body.delete_if { |_, v| v.nil? }
+      authorization_header(pswd) unless pswd.nil? || pswd.empty?
+      {}
+    end
+  end
+
+end

data/spec/support/utils.rb

@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+
+module SpecUtils
+  module_function
+
+  def generate_password
+    lowercase_characters = ('a'..'z').to_a
+    uppercase_characters = ('A'..'Z').to_a
+    digits = ('0'..'9').to_a
+    special_chars = %w[! @ # $ % ^ & *]
+
+    # Ensure one character from each category
+    password = lowercase_characters.sample +
+      uppercase_characters.sample +
+      digits.sample +
+      special_chars.sample
+
+    # Fill in remaining characters randomly
+    4.times { password += [lowercase_characters, uppercase_characters, digits, special_chars].sample.sample }
+
+    # Randomize the order of characters to make the password less predictable
+    password.split('').shuffle.join
+  end
+
+  def deep_stringify_keys(hash)
+    hash.transform_keys!(&:to_s)
+    hash.each_value do |value|
+      deep_stringify_keys(value) if value.is_a? Hash
+      value.each { |v| deep_stringify_keys(v) if v.is_a? Hash } if value.is_a? Array
+    end
+  end
+end