descope 1.0.6 → 1.1.0

data/spec/integration/lib.descope/api/v1/management/audit_spec.rb

@@ -4,6 +4,8 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::Audit do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
     @client = DescopeClient.new(Configuration.config)
     @client.logger.info('Deleting all tenants for Ruby SDK...')
     @client.search_all_tenants(names: ['Ruby-SDK-test'])['tenants'].each do |tenant|
@@ -16,7 +18,7 @@ describe Descope::Api::V1::Management::Audit do
   after(:all) do
     all_users = @client.search_all_users
     all_users['users'].each do |user|
-      if user['middleName'] == 'Ruby SDK User'
+      if user['middleName'] == "#{SpecUtils.build_prefix}Ruby-SDK-User" 
         puts "Deleting ruby spec test user #{user['loginIds'][0]}"
         @client.delete_user(user['loginIds'][0])
       end
@@ -39,14 +41,14 @@ describe Descope::Api::V1::Management::Audit do
     created_user = @client.create_user(**user)['user']
 
     expect do
-      res = @client.audit_create_event(
+      @client.audit_create_event(
+        user_id: created_user['loginId'],
         action: 'pencil.created',
         type: 'info',
         tenant_id:,
         actor_id: created_user['loginIds'][0],
         data: { 'key' => 'value' }
       )
-      expect(res).to eq({})
     end.not_to raise_error
   end
 end

data/spec/integration/lib.descope/api/v1/management/authz_spec.rb

@@ -4,13 +4,20 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::Authz do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
     @client = DescopeClient.new(Configuration.config)
     puts 'authz schema delete'
   end
 
   context 'authz ops' do
     before(:all) do
-      @client.authz_delete_schema
+      # Instead of deleting the entire schema, we'll work with it
+      # This allows parallel test execution
+      # Only delete schema if we're running in isolation
+      if ENV['AUTHZ_FULL_TEST'] == 'true'
+        @client.authz_delete_schema
+      end
     end
 
     it 'should create a new schema' do
@@ -158,13 +165,17 @@ describe Descope::Api::V1::Management::Authz do
     end
 
     it 'should create a relation between a resource and user' do
+      # Use unique resource name to avoid conflicts between parallel tests
+      unique_resource = "#{SpecUtils.build_prefix}some-doc"
+      unique_user = "#{SpecUtils.build_prefix}user1"
+      
       @client.authz_create_relations(
         [
           {
-            "resource": 'some-doc',
+            "resource": unique_resource,
             "relationDefinition": 'owner',
             "namespace": 'note',
-            "target": 'user1'
+            "target": unique_user
           }
         ]
       )
@@ -174,14 +185,26 @@ describe Descope::Api::V1::Management::Authz do
       relations = @client.authz_has_relations?(
         [
           {
-            "resource": 'some-doc',
+            "resource": unique_resource,
             "relationDefinition": 'viewer',
             "namespace": 'note',
-            "target": 'user1'
+            "target": unique_user
           }
         ]
       )
       expect(relations['relationQueries'][0]['hasRelation']).to be_truthy
+      
+      # Clean up the test relations
+      @client.authz_delete_relations(
+        [
+          {
+            "resource": unique_resource,
+            "relationDefinition": 'owner',
+            "namespace": 'note',
+            "target": unique_user
+          }
+        ]
+      )
     end
   end
 end

data/spec/integration/lib.descope/api/v1/management/flow_spec.rb

@@ -4,6 +4,8 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::Flow do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
     @client = DescopeClient.new(Configuration.config)
   end
 
@@ -38,7 +40,7 @@ describe Descope::Api::V1::Management::Flow do
   it 'should import the current project theme' do
     export_theme = @client.export_theme
     export_theme_current_version = export_theme['theme']['version']
-    imported_theme = @client.import_theme(export_theme)
+    imported_theme = @client.import_theme(export_theme['theme'])
     expect(imported_theme['theme']['version']).to be(export_theme_current_version + 1)
   end
 end

data/spec/integration/lib.descope/api/v1/management/permissions_spec.rb

@@ -4,17 +4,37 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::Permission do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
     @client = DescopeClient.new(Configuration.config)
+    @test_description = "#{SpecUtils.build_prefix} Ruby SDK"
+    
+    # Cleanup any leftover permissions from previous failed runs
     @client.load_all_permissions['permissions'].each do |perm|
-      if perm['description'] == 'Ruby SDK'
+      if perm['description'] == @test_description
         puts "Deleting permission: #{perm['name']}"
         @client.delete_permission(perm['name'])
       end
     end
   end
+  
+  after(:all) do
+    # Safety cleanup to ensure no test permissions are left behind
+    @client.logger.info('Cleaning up test permissions...')
+    begin
+      @client.load_all_permissions['permissions'].each do |perm|
+        if perm['description'] == @test_description
+          @client.logger.info("Deleting leftover permission: #{perm['name']}")
+          @client.delete_permission(perm['name'])
+        end
+      end
+    rescue StandardError => e
+      @client.logger.info("Error during permission cleanup: #{e.message}")
+    end
+  end
 
   it 'should create update and delete a permission' do
-    @client.create_permission(name: 'test_permission', description: 'Ruby SDK')
+    @client.create_permission(name: 'test_permission', description: @test_description)
     all_permissions = @client.load_all_permissions['permissions']
     expect(all_permissions.any? { |perm| perm['name'] == 'test_permission' }).to eq(true)
     @client.update_permission(name: 'test_permission', new_name: 'test_permission_2')

data/spec/integration/lib.descope/api/v1/management/project_spec.rb

@@ -4,17 +4,33 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::Project do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
     @client = DescopeClient.new(Configuration.config)
     @export_output = @client.export_project
+    @original_project_name = nil
   end
 
   context 'Test project methods' do
+    before(:all) do
+      # Get the current project name before we modify it
+      # Store it so we can restore it later
+      begin
+        @original_project_name = @client.export_project['project']['name']
+      rescue StandardError
+        @original_project_name = 'Ruby-SDK-Prod'
+      end
+    end
+
     after(:all) do
-      @client.rename_project('Ruby-SDK-Prod')
+      # Restore the original project name
+      @client.rename_project(@original_project_name) if @original_project_name
     end
 
     it 'should rename a project' do
-      @client.rename_project('TEST-Ruby-SDK-Prod')
+      # Use a unique name based on build prefix to avoid conflicts
+      unique_name = "#{SpecUtils.build_prefix}TEST-Ruby-SDK-Prod"
+      @client.rename_project(unique_name)
     end
 
     it 'should export a project' do

data/spec/integration/lib.descope/api/v1/management/roles_spec.rb

@@ -4,75 +4,147 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::Role do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
     @client = DescopeClient.new(Configuration.config)
-    @client.logger.info('Staring cleanup before tests...')
-    @client.logger.info('Deleting all permissions for Ruby SDK...')
+    @test_prefix = SpecUtils.build_prefix
+    @client.logger.info("Starting cleanup before tests with prefix: #{@test_prefix}...")
+    
+    # Define resource names with unique prefix for parallel execution
+    @permission_viewer = "#{@test_prefix}viewer"
+    @permission_editor = "#{@test_prefix}editor"
+    @permission_admin = "#{@test_prefix}admin"
+    @role_viewer = "#{@test_prefix}Ruby-SDK-test-viewer"
+    @role_editor = "#{@test_prefix}Ruby-SDK-test-editor"
+    @role_admin = "#{@test_prefix}Ruby-SDK-test-admin"
+    @tenant_name = "#{@test_prefix}Ruby-SDK-test"
+    @description = "#{@test_prefix}Ruby SDK"
+    
+    # Cleanup any leftover resources from previous failed runs
+    @client.logger.info('Deleting all permissions for this test run...')
     @client.load_all_permissions['permissions'].each do |perm|
-      if perm['description'] =~ /Ruby SDK/
+      if perm['description'] == @description
         @client.logger.info("Deleting permission: #{perm['name']}")
         @client.delete_permission(perm['name'])
       end
     end
 
-    @client.logger.info('Deleting all roles for Ruby SDK...')
+    @client.logger.info('Deleting all roles for this test run...')
     @client.load_all_roles['roles'].each do |role|
-      puts "got role: #{role}"
-      if role['description'] == 'Ruby SDK'
+      if role['description'] == @description
         @client.logger.info("Deleting role: #{role['name']}")
         @client.delete_role(name: role['name'], tenant_id: role['tenantId'])
       end
     end
 
-    @client.logger.info('Deleting all tenants for Ruby SDK...')
-    @client.search_all_tenants(names: ['Ruby-SDK-test'])['tenants'].each do |tenant|
+    @client.logger.info('Deleting all tenants for this test run...')
+    @client.search_all_tenants(names: [@tenant_name])['tenants'].each do |tenant|
       @client.logger.info("Deleting tenant: #{tenant['name']}")
       @client.delete_tenant(tenant['id'])
     end
     @client.logger.info('Cleanup completed. Starting tests...')
   end
+  
+  after(:all) do
+    # Cleanup after tests to ensure no resources are left behind
+    @client.logger.info('Cleaning up test resources...')
+    
+    begin
+      @client.delete_permission(@permission_viewer) if defined?(@permission_viewer)
+    rescue StandardError => e
+      @client.logger.info("Permission #{@permission_viewer} already deleted or doesn't exist: #{e.message}")
+    end
+    
+    begin
+      @client.delete_permission(@permission_editor) if defined?(@permission_editor)
+    rescue StandardError => e
+      @client.logger.info("Permission #{@permission_editor} already deleted or doesn't exist: #{e.message}")
+    end
+    
+    begin
+      @client.delete_permission(@permission_admin) if defined?(@permission_admin)
+    rescue StandardError => e
+      @client.logger.info("Permission #{@permission_admin} already deleted or doesn't exist: #{e.message}")
+    end
+    
+    # Delete any roles with our test description
+    begin
+      @client.load_all_roles['roles'].each do |role|
+        if role['description'] == @description
+          @client.delete_role(name: role['name'], tenant_id: role['tenantId'])
+        end
+      end
+    rescue StandardError => e
+      @client.logger.info("Error cleaning up roles: #{e.message}")
+    end
+    
+    # Delete tenant
+    begin
+      @client.search_all_tenants(names: [@tenant_name])['tenants'].each do |tenant|
+        @client.delete_tenant(tenant['id'])
+      end
+    rescue StandardError => e
+      @client.logger.info("Error cleaning up tenant: #{e.message}")
+    end
+    
+    @client.logger.info('Cleanup completed.')
+  end
 
   it 'should create update and delete a role' do
     @client.logger.info('Testing role creation, update, deletion and search...')
 
     # Create permissions
     @client.logger.info('creating viewer permission for role')
-    @client.create_permission(name: 'viewer', description: 'Viewer Permission Ruby SDK')
+    @client.create_permission(name: @permission_viewer, description: @description)
 
     @client.logger.info('creating editor permission for role')
-    @client.create_permission(name: 'editor', description: 'Editor Permission Ruby SDK')
+    @client.create_permission(name: @permission_editor, description: @description)
 
     @client.logger.info('creating admin permission for role')
-    @client.create_permission(name: 'admin', description: 'Admin Permission Ruby SDK')
+    @client.create_permission(name: @permission_admin, description: @description)
 
     # Create tenants
-    @client.logger.info('creating Ruby-SDK-test tenant')
-    tenant_id = @client.create_tenant(name: 'Ruby-SDK-test')['id']
+    @client.logger.info("creating #{@tenant_name} tenant")
+    tenant_id = @client.create_tenant(name: @tenant_name)['id']
+    @client.logger.info("Created tenant with id: #{tenant_id}")
+    
+    # Wait for tenant to be available (polling, up to 5 seconds)
+    timeout = 5.0
+    interval = 0.1
+    waited = 0.0
+    loop do
+      tenants = @client.search_all_tenants(names: [@tenant_name])['tenants']
+      break if tenants.any? { |t| t['id'] == tenant_id }
+      raise "Tenant #{@tenant_name} not available after #{timeout} seconds" if waited >= timeout
+      sleep(interval)
+      waited += interval
+    end
 
     # Create roles
-    @client.logger.info('creating Ruby-SDK-test role')
-    @client.create_role(name: 'Ruby-SDK-test-viewer', description: 'Ruby SDK', permission_names: ['viewer'])
-    @client.logger.info('creating Ruby-SDK-test-admin role')
-    @client.create_role(name: 'Ruby-SDK-test-admin', description: 'Ruby SDK', permission_names: ['admin'], tenant_id:)
+    @client.logger.info("creating #{@role_viewer} role")
+    @client.create_role(name: @role_viewer, description: @description, permission_names: [@permission_viewer])
+    @client.logger.info("creating #{@role_admin} role")
+    @client.create_role(name: @role_admin, description: @description, permission_names: [@permission_admin], tenant_id:)
 
     # check all roles matching the correct permission
     @client.logger.info('check all roles matching the correct permission (load roles)')
     roles = @client.load_all_roles['roles']
     roles.each do |role|
-      expect(role['permissionNames']).to include('viewer') if role['name'] == 'Ruby-SDK-test-viewer'
-      expect(role['permissionNames']).to include('admin') if role['name'] == 'Ruby-SDK-test-admin'
+      expect(role['permissionNames']).to include(@permission_viewer) if role['name'] == @role_viewer
+      expect(role['permissionNames']).to include(@permission_admin) if role['name'] == @role_admin
     end
 
     @client.logger.info('updating role')
     @client.update_role(
-      name: 'Ruby-SDK-test-viewer',
-      new_name: 'Ruby-SDK-test-editor',
-      description: 'Ruby SDK',
-      permission_names: ['editor']
+      name: @role_viewer,
+      new_name: @role_editor,
+      description: @description,
+      permission_names: [@permission_editor]
     )
 
     @client.logger.info('searching for roles by role names...')
-    all_roles = @client.search_roles(role_names: %w[Ruby-SDK-test-admin Ruby-SDK-test-editor])['roles']
-    expected_roles = %w[Ruby-SDK-test-editor Ruby-SDK-test-admin]
+    all_roles = @client.search_roles(role_names: [@role_admin, @role_editor])['roles']
+    expected_roles = [@role_editor, @role_admin]
     role_count = 0
     expected_roles.each do |expected_role|
       expect(all_roles.map { |role| role['name'] }).to include(expected_role)
@@ -81,8 +153,8 @@ describe Descope::Api::V1::Management::Role do
     expect(role_count).to eq(2)
 
     @client.logger.info('searching for roles with role name like...')
-    all_roles = @client.search_roles(role_name_like: 'Ruby-SDK-test')['roles']
-    expected_roles = %w[Ruby-SDK-test-editor Ruby-SDK-test-admin]
+    all_roles = @client.search_roles(role_name_like: "#{@test_prefix}Ruby-SDK-test")['roles']
+    expected_roles = [@role_editor, @role_admin]
     role_count = 0
     expected_roles.each do |expected_role|
       expect(all_roles.map { |role| role['name'] }).to include(expected_role)
@@ -92,25 +164,33 @@ describe Descope::Api::V1::Management::Role do
     expect(role_count).to eq(2)
 
     @client.logger.info('searching for roles with permission names...')
-    all_roles = @client.search_roles(permission_names: %w[admin])['roles']
-    expect(all_roles.map { |role| role['name'] }).to include('Ruby-SDK-test-admin')
+    all_roles = @client.search_roles(permission_names: [@permission_admin])['roles']
+    expect(all_roles.map { |role| role['name'] }).to include(@role_admin)
 
     @client.logger.info('searching for roles with tenant ids...')
-    all_roles = @client.search_roles(role_name_like: 'Ruby-SDK-test', tenant_ids: [tenant_id])['roles']
-    expect(all_roles.map { |role| role['name'] }).to include('Ruby-SDK-test-admin')
+    all_roles = @client.search_roles(role_name_like: "#{@test_prefix}Ruby-SDK-test", tenant_ids: [tenant_id])['roles']
+    expect(all_roles.map { |role| role['name'] }).to include(@role_admin)
 
     @client.logger.info('deleting permission')
 
-    @client.delete_permission('editor')
-    @client.delete_permission('admin')
+    @client.delete_permission(@permission_editor)
+    @client.delete_permission(@permission_admin)
 
     @client.logger.info('deleting editor role')
-    @client.delete_role(name: 'Ruby-SDK-test-editor')
+    @client.delete_role(name: @role_editor)
 
     @client.logger.info('deleting admin role')
-    @client.delete_role(name: 'Ruby-SDK-test-admin', tenant_id:)
+    begin
+      @client.delete_role(name: @role_admin, tenant_id:)
+    rescue Descope::Unauthorized, Descope::NotFound => e
+      @client.logger.info("Admin role already deleted or tenant invalid: #{e.message}")
+    end
 
     @client.logger.info('deleting tenant')
-    @client.delete_tenant(tenant_id)
+    begin
+      @client.delete_tenant(tenant_id)
+    rescue Descope::NotFound => e
+      @client.logger.info("Tenant already deleted: #{e.message}")
+    end
   end
 end

data/spec/integration/lib.descope/api/v1/management/user_spec.rb

@@ -4,17 +4,21 @@ require 'spec_helper'
 
 describe Descope::Api::V1::Management::User do
   before(:all) do
+    raise 'DESCOPE_MANAGEMENT_KEY is not set' if ENV['DESCOPE_MANAGEMENT_KEY'].nil?
+
+    @client = DescopeClient.new(Configuration.config)
+
     @password = SpecUtils.generate_password
     @new_password = SpecUtils.generate_password
     @user = build(:user)
-    @client = DescopeClient.new(Configuration.config)
+
     include Descope::Mixins::Common::DeliveryMethod
   end
 
   after(:all) do
     all_users = @client.search_all_users
     all_users['users'].each do |user|
-      if user['middleName'] == 'Ruby SDK User'
+      if user['middleName'] == "#{SpecUtils.build_prefix}Ruby-SDK-User"
         puts "Deleting ruby spec test user #{user['loginIds'][0]}"
         @client.delete_user(user['loginIds'][0])
       end
@@ -58,12 +62,57 @@ describe Descope::Api::V1::Management::User do
     expect(updated_user['first_name']).to eq(created_user[updated_first_name])
   end
 
+  it 'should patch a user' do
+    user = build(:user)
+    role_name = 'some-new-role'
+
+    # ensure no roles exist with that name
+    all_roles = @client.load_all_roles
+    all_roles['roles'].each do |role|
+      @client.delete_role(name: role['name']) if role['name'] == role_name
+    end
+
+    @client.create_role(name: role_name)
+    @client.create_user(**user)['user']
+    updated_first_name = 'new name'
+    updated_given_name = 'new given name'
+    update_phone_number = "+1#{Faker::Number.number(digits: 10)}"
+    updated_role_names = [role_name]
+    updated_middle_name = 'new middle name'
+    updated_user = @client.patch_user(
+      **user,
+      name: updated_first_name,
+      given_name: updated_given_name,
+      phone: update_phone_number,
+      role_names: updated_role_names,
+      middle_name: updated_middle_name
+    )['user']
+
+    puts "updated_user #{updated_user}"
+
+    expect(updated_user['name']).to eq(updated_first_name)
+    expect(updated_user['givenName']).to eq(updated_given_name)
+    expect(updated_user['phone']).to eq(update_phone_number)
+    expect(updated_user['roleNames']).to eq(updated_role_names)
+    expect(updated_user['middleName']).to eq(updated_middle_name)
+  end
+
   it 'should delete a user' do
     user = build(:user)
     created_user = @client.create_user(**user)['user']
     loaded_user = @client.load_user(created_user['loginIds'][0])['user']
     expect(loaded_user['loginIds']).to eq(created_user['loginIds'])
-    sleep 10
+    
+    # Wait for user to be fully propagated before deletion
+    SpecUtils.wait_for_condition(max_wait: 15, interval: 2, description: 'user to be ready for deletion') do
+      begin
+        @client.load_user(created_user['loginIds'][0])
+        true
+      rescue StandardError => e
+        @client.logger.info("Waiting for user propagation: #{e.message}")
+        false
+      end
+    end
 
     @client.delete_user(created_user['loginIds'][0])
     begin
@@ -76,19 +125,36 @@ describe Descope::Api::V1::Management::User do
   it 'should search all users' do
     users = FactoryBot.build_list(:user, 5)
     @client.create_batch_users(users)
+    # Wait for batch creation to propagate
+    sleep 1.0
     all_users = @client.search_all_users
-    sdk_users = all_users['users'].select { |user| user['middleName'] == 'Ruby SDK User' }
+    sdk_users = all_users['users'].select { |user| user['middleName']&.include?('Ruby-SDK-User') }
     expect(sdk_users.length).to be >= 5
   end
 
   it 'should create a test user' do
     @client.delete_all_test_users
-    sleep 5
+    # ensure no roles exist with that name
+    role_name = 'some-new-role'
+    all_roles = @client.load_all_roles
+    all_roles['roles'].each do |role|
+      @client.delete_role(name: role['name']) if role['name'] == role_name
+    end
+    
+    # Wait for role deletion to propagate
+    SpecUtils.wait_for_condition(max_wait: 10, interval: 1, description: 'role deletion to propagate') do
+      all_roles = @client.load_all_roles
+      all_roles['roles'].none? { |role| role['name'] == role_name }
+    end
+
     user_args = build(:user)
     test_user = @client.create_test_user(**user_args)['user']
-    test_users = @client.search_all_users(test_users_only: true)['users']
+    @client.create_role(name: role_name)
+    @client.user_add_roles(login_id: test_user['loginIds'][0], role_names: [role_name])
+    test_users = @client.search_all_test_users(role_names: [role_name])['users']
     expect(test_users.length).to be >= 1
     expect(test_users[0]['loginIds'][0]).to eq(test_user['loginIds'][0])
+    expect(test_users[0]['roleNames']).to eq([role_name])
   end
 
   it 'should update user status' do
@@ -191,8 +257,8 @@ describe Descope::Api::V1::Management::User do
       new_password = SpecUtils.generate_password
       @client.set_password(login_id: user['loginIds'][0], password: new_password)
       @client.password_sign_in(login_id: user['loginIds'][0], password:)
-    rescue Descope::ServerError => e
-      expect(e.message).to match(/"errorCode":"E062909"/)
+    rescue Descope::Unauthorized => e
+      expect(e.message).to match(/"Invalid signin credentials"/)
     end
   end
 

data/spec/lib.descope/api/v1/auth/enchantedlink_spec.rb

@@ -51,7 +51,7 @@ describe Descope::Api::V1::EnchantedLink do
 
     it 'is expected to validate refresh token and not raise an error with refresh token and valid login options' do
       expect do
-        @instance.send(:validate_refresh_token_provided, { mfa: true, stepup: true },  'some-token')
+        @instance.send(:validate_refresh_token_provided, { mfa: true, stepup: true }, 'some-token')
       end.not_to raise_error
     end
 
@@ -148,7 +148,16 @@ describe Descope::Api::V1::EnchantedLink do
     end
 
     it 'is expected to get session by pending ref with enchanted link' do
-      jwt_response = { 'fake': 'response' }
+      jwt_response = {
+        'sessionJwt' => 'fake_session_jwt',
+        'refreshJwt' => 'fake_refresh_jwt',
+        'cookies' => {
+          'refresh_token' => 'fake_refresh_cookie'
+        }
+      }
+      allow(@instance).to receive(:post).with(
+        GET_SESSION_ENCHANTEDLINK_AUTH_PATH, { pendingRef: 'pendingRef' }
+      ).and_return(jwt_response)
       allow(@instance).to receive(:generate_jwt_response).and_return(jwt_response)
 
       expect do

data/spec/lib.descope/api/v1/auth/password_spec.rb

@@ -43,9 +43,18 @@ describe Descope::Api::V1::Password do
     end
 
     it 'is expected to sign in with password' do
+      response_body = {
+        'sessionJwt' => 'fake_session_jwt',
+        'refreshJwt' => 'fake_refresh_jwt',
+        'cookies' => {
+          'refresh_token' => 'fake_refresh_cookie'
+        }
+      }
+
       expect(@instance).to receive(:post).with(
         SIGN_IN_PASSWORD_PATH, { loginId: 'test', password: 's3cr3t', ssoAppId: nil }
-      )
+      ).and_return(response_body)
+
       # stub the jwt_get_unverified_header method to return the kid of the public key created above
       allow(@instance).to receive(:generate_jwt_response).and_return({})
       expect { @instance.password_sign_in(login_id: 'test', password: 's3cr3t') }.not_to raise_error