RubyGems - keycloak-admin - Versions diffs - 1.1.4 → 1.1.6 - Mend

keycloak-admin 1.1.4 → 1.1.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (101) hide show

checksums.yaml +4 -4
data/.github/workflows/Dockerfile +24 -24
data/.github/workflows/ci.yml +80 -80
data/.gitignore +9 -9
data/.rspec +2 -2
data/CHANGELOG.md +23 -0
data/Dockerfile +12 -12
data/Gemfile +3 -3
data/Gemfile.lock +1 -1
data/MIT-LICENSE +20 -20
data/README.md +20 -1
data/bin/console +9 -9
data/keycloak-admin.gemspec +24 -24
data/lib/keycloak-admin/client/attack_detection_client.rb +41 -41
data/lib/keycloak-admin/client/client.rb +56 -56
data/lib/keycloak-admin/client/client_authz_permission_client.rb +80 -80
data/lib/keycloak-admin/client/client_authz_policy_client.rb +75 -75
data/lib/keycloak-admin/client/client_authz_resource_client.rb +92 -92
data/lib/keycloak-admin/client/client_authz_scope_client.rb +70 -70
data/lib/keycloak-admin/client/client_client.rb +71 -71
data/lib/keycloak-admin/client/client_role_client.rb +20 -20
data/lib/keycloak-admin/client/client_role_mappings_client.rb +32 -32
data/lib/keycloak-admin/client/configurable_token_client.rb +35 -35
data/lib/keycloak-admin/client/group_client.rb +148 -148
data/lib/keycloak-admin/client/identity_provider_client.rb +51 -51
data/lib/keycloak-admin/client/organization_client.rb +245 -0
data/lib/keycloak-admin/client/realm_client.rb +126 -122
data/lib/keycloak-admin/client/role_client.rb +59 -59
data/lib/keycloak-admin/client/role_mapper_client.rb +47 -47
data/lib/keycloak-admin/client/token_client.rb +29 -29
data/lib/keycloak-admin/client/user_client.rb +278 -266
data/lib/keycloak-admin/configuration.rb +52 -52
data/lib/keycloak-admin/representation/attack_detection_representation.rb +17 -17
data/lib/keycloak-admin/representation/camel_json.rb +12 -12
data/lib/keycloak-admin/representation/client_authz_permission_representation.rb +33 -33
data/lib/keycloak-admin/representation/client_authz_policy_config_representation.rb +14 -14
data/lib/keycloak-admin/representation/client_authz_policy_representation.rb +26 -26
data/lib/keycloak-admin/representation/client_authz_resource_representation.rb +25 -25
data/lib/keycloak-admin/representation/client_authz_scope_representation.rb +16 -16
data/lib/keycloak-admin/representation/client_representation.rb +71 -71
data/lib/keycloak-admin/representation/credential_representation.rb +71 -38
data/lib/keycloak-admin/representation/federated_identity_representation.rb +15 -15
data/lib/keycloak-admin/representation/group_representation.rb +21 -21
data/lib/keycloak-admin/representation/identity_provider_mapper_representation.rb +19 -19
data/lib/keycloak-admin/representation/identity_provider_representation.rb +71 -67
data/lib/keycloak-admin/representation/impersonation_redirection_representation.rb +16 -16
data/lib/keycloak-admin/representation/impersonation_representation.rb +43 -43
data/lib/keycloak-admin/representation/member_representation.rb +11 -0
data/lib/keycloak-admin/representation/organization_domain_representation.rb +18 -0
data/lib/keycloak-admin/representation/organization_representation.rb +30 -0
data/lib/keycloak-admin/representation/protocol_mapper_representation.rb +19 -19
data/lib/keycloak-admin/representation/realm_representation.rb +14 -14
data/lib/keycloak-admin/representation/representation.rb +23 -23
data/lib/keycloak-admin/representation/role_representation.rb +19 -19
data/lib/keycloak-admin/representation/session_representation.rb +22 -22
data/lib/keycloak-admin/representation/token_representation.rb +39 -39
data/lib/keycloak-admin/representation/user_representation.rb +47 -47
data/lib/keycloak-admin/resource/base_role_containing_resource.rb +28 -28
data/lib/keycloak-admin/resource/group_resource.rb +11 -11
data/lib/keycloak-admin/resource/user_resource.rb +7 -7
data/lib/keycloak-admin/version.rb +3 -3
data/lib/keycloak-admin.rb +88 -84
data/spec/client/attack_detection_client_spec.rb +102 -102
data/spec/client/client_authz_permission_client_spec.rb +170 -170
data/spec/client/client_authz_policy_client_spec.rb +169 -169
data/spec/client/client_authz_resource_client_spec.rb +150 -150
data/spec/client/client_authz_scope_client_spec.rb +133 -133
data/spec/client/client_client_spec.rb +133 -133
data/spec/client/client_role_mappings_client_spec.rb +82 -82
data/spec/client/client_spec.rb +28 -28
data/spec/client/configurable_token_client_spec.rb +34 -34
data/spec/client/group_client_spec.rb +328 -328
data/spec/client/identity_provider_client_spec.rb +92 -92
data/spec/client/organization_client_spec.rb +595 -0
data/spec/client/realm_client_spec.rb +155 -155
data/spec/client/role_client_spec.rb +79 -79
data/spec/client/role_mapper_client_spec.rb +113 -113
data/spec/client/token_client_spec.rb +68 -68
data/spec/client/user_client_spec.rb +418 -373
data/spec/configuration_spec.rb +113 -113
data/spec/integration/client_authorization_spec.rb +93 -93
data/spec/representation/attack_detection_representation_spec.rb +15 -15
data/spec/representation/client_authz_permission_representation_spec.rb +52 -52
data/spec/representation/client_authz_policy_representation_spec.rb +46 -46
data/spec/representation/client_authz_resource_representation_spec.rb +33 -33
data/spec/representation/client_authz_scope_representation_spec.rb +18 -18
data/spec/representation/client_representation_spec.rb +119 -119
data/spec/representation/credential_representation_spec.rb +68 -0
data/spec/representation/group_representation_spec.rb +22 -22
data/spec/representation/identity_provider_mapper_representation_spec.rb +24 -24
data/spec/representation/identity_provider_representation_spec.rb +113 -113
data/spec/representation/impersonation_representation_spec.rb +163 -163
data/spec/representation/organization_representation_spec.rb +64 -0
data/spec/representation/protocol_mapper_representation_spec.rb +57 -57
data/spec/representation/role_representation_spec.rb +37 -37
data/spec/representation/session_representation_spec.rb +15 -15
data/spec/representation/user_representation_spec.rb +15 -15
data/spec/resource/group_resource_spec.rb +14 -14
data/spec/resource/user_resource_spec.rb +14 -14
data/spec/spec_helper.rb +37 -37
metadata +13 -6

data/spec/client/client_authz_policy_client_spec.rb CHANGED Viewed

@@ -1,170 +1,170 @@
-RSpec.describe KeycloakAdmin::ClientAuthzPolicyClient do
-  describe '#initialize' do
-    let(:realm_name) { nil }
-    let(:type) { :role }
-    before(:each) do
-      @realm = KeycloakAdmin.realm(realm_name)
-    end
-    context "when realm_name is defined" do
-      let(:realm_name) { "master" }
-      it "does not raise any error" do
-        expect {
-          @realm.authz_policies("", type)
-        }.to_not raise_error
-      end
-    end
-    context "when realm_name is not defined" do
-      let(:realm_name) { nil }
-      it "raises any error" do
-        expect {
-          @realm.authz_policies("", type)
-        }.to raise_error(ArgumentError)
-      end
-    end
-    context "when type is bad value" do
-      let(:realm_name) { "master" }
-      let(:type) { "bad-type" }
-      it "does not raise any error" do
-        expect {
-          @realm.authz_policies("", type)
-        }.to raise_error(ArgumentError)
-      end
-    end
-  end
-  describe '#create!' do
-    let(:realm_name) { "valid-realm" }
-    let(:client_id) { "valid-client-id" }
-    let(:type) { :role }
-    let(:name) { "policy name" }
-    let(:description) { "policy description" }
-    let(:logic) { "POSITIVE" }
-    let(:decision_strategy) { "UNANIMOUS" }
-    let(:fetch_roles) { true }
-    let(:config) { { roles: [{ id: "1d305dbe-6379-4900-8e63-96541006160a", required: false }] } }
-    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
-    before(:each) do
-      stub_token_client
-      allow_any_instance_of(RestClient::Resource).to receive(:post).and_return '{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}'
-    end
-    it "creates a new authz policy" do
-      response = client_authz_policy.create!(name, description, type, logic, decision_strategy, fetch_roles, config[:roles])
-      expect(response.id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
-      expect(response.name).to eq "policy name"
-      expect(response.type).to eq "role"
-      expect(response.logic).to eq "POSITIVE"
-      expect(response.decision_strategy).to eq "UNANIMOUS"
-      expect(response.config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
-    end
-  end
-  describe '#get' do
-    let(:realm_name) { "valid-realm" }
-    let(:client_id) { "valid-client-id" }
-    let(:type) { :role }
-    let(:policy_id) { "234f6f33-ef03-4f3f-a8c0-ad7bca27b720" }
-    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
-    before(:each) do
-      stub_token_client
-      allow_any_instance_of(RestClient::Resource).to receive(:get).and_return '{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}'
-    end
-    it "returns an authz policy" do
-      response = client_authz_policy.get(policy_id)
-      expect(response.id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
-      expect(response.name).to eq "policy name"
-      expect(response.type).to eq "role"
-      expect(response.logic).to eq "POSITIVE"
-      expect(response.decision_strategy).to eq "UNANIMOUS"
-      expect(response.config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
-    end
-  end
-  describe '#find_by' do
-    let(:realm_name) { "valid-realm" }
-    let(:client_id) { "valid-client-id" }
-    let(:type) { :role }
-    let(:name) { "policy name" }
-    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
-    before(:each) do
-      stub_token_client
-      allow_any_instance_of(RestClient::Resource).to receive(:get).and_return '[{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}]'
-    end
-    it "returns list of authz policies" do
-      response = client_authz_policy.find_by(name, type)
-      expect(response.size).to eq 1
-      expect(response[0].id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
-      expect(response[0].name).to eq "policy name"
-      expect(response[0].type).to eq "role"
-      expect(response[0].logic).to eq "POSITIVE"
-      expect(response[0].decision_strategy).to eq "UNANIMOUS"
-      expect(response[0].config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
-    end
-  end
-  describe '#delete' do
-    let(:realm_name) { "valid-realm" }
-    let(:client_id) { "valid-client-id" }
-    let(:type) { :role }
-    let(:policy_id) { "234f6f33-ef03-4f3f-a8c0-ad7bca27b720" }
-    before(:each) do
-      @client_authz_policy = KeycloakAdmin.realm(realm_name).authz_policies(client_id, type)
-      stub_token_client
-      allow_any_instance_of(RestClient::Resource).to receive(:delete).and_return 'true'
-    end
-    it "deletes an authz policy" do
-      response = @client_authz_policy.delete(policy_id)
-      expect(response).to eq true
-    end
-  end
-  describe '#list' do
-    let(:realm_name) { "valid-realm" }
-    let(:client_id) { "valid-client-id" }
-    let(:type) { :role }
-    before(:each) do
-      @client_authz_policy = KeycloakAdmin.realm(realm_name).authz_policies(client_id, type)
-      stub_token_client
-      allow_any_instance_of(RestClient::Resource).to receive(:get).and_return '[{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}]'
-    end
-    it "returns list of authz policies" do
-      response = @client_authz_policy.list
-      expect(response.size).to eq 1
-      expect(response[0].id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
-      expect(response[0].name).to eq "policy name"
-      expect(response[0].type).to eq "role"
-      expect(response[0].logic).to eq "POSITIVE"
-      expect(response[0].decision_strategy).to eq "UNANIMOUS"
-      expect(response[0].config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
-    end
-  end
-  describe '#authz_policy_url' do
-    let(:realm_name) { "valid-realm" }
-    let(:client_id) { "valid-client-id" }
-    let(:type) { :role }
-    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
-    context 'when policy_id is nil' do
-      let(:policy_id) { nil }
-      it "return a proper url" do
-        expect(client_authz_policy.authz_policy_url(client_id, type, policy_id)).to eq "http://auth.service.io/auth/admin/realms/valid-realm/clients/valid-client-id/authz/resource-server/policy/role?permission=false"
-      end
-    end
-    context 'when policy_id is not nil' do
-      let(:policy_id) { "234f6f33-ef03-4f3f-a8c0-ad7bca27b720" }
-      it "return a proper url" do
-        expect(client_authz_policy.authz_policy_url(client_id, type, policy_id)).to eq "http://auth.service.io/auth/admin/realms/valid-realm/clients/valid-client-id/authz/resource-server/policy/role/234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
-      end
-    end
-  end
+RSpec.describe KeycloakAdmin::ClientAuthzPolicyClient do
+  describe '#initialize' do
+    let(:realm_name) { nil }
+    let(:type) { :role }
+    before(:each) do
+      @realm = KeycloakAdmin.realm(realm_name)
+    end
+    context "when realm_name is defined" do
+      let(:realm_name) { "master" }
+      it "does not raise any error" do
+        expect {
+          @realm.authz_policies("", type)
+        }.to_not raise_error
+      end
+    end
+    context "when realm_name is not defined" do
+      let(:realm_name) { nil }
+      it "raises any error" do
+        expect {
+          @realm.authz_policies("", type)
+        }.to raise_error(ArgumentError)
+      end
+    end
+    context "when type is bad value" do
+      let(:realm_name) { "master" }
+      let(:type) { "bad-type" }
+      it "does not raise any error" do
+        expect {
+          @realm.authz_policies("", type)
+        }.to raise_error(ArgumentError)
+      end
+    end
+  end
+  describe '#create!' do
+    let(:realm_name) { "valid-realm" }
+    let(:client_id) { "valid-client-id" }
+    let(:type) { :role }
+    let(:name) { "policy name" }
+    let(:description) { "policy description" }
+    let(:logic) { "POSITIVE" }
+    let(:decision_strategy) { "UNANIMOUS" }
+    let(:fetch_roles) { true }
+    let(:config) { { roles: [{ id: "1d305dbe-6379-4900-8e63-96541006160a", required: false }] } }
+    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
+    before(:each) do
+      stub_token_client
+      allow_any_instance_of(RestClient::Resource).to receive(:post).and_return '{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}'
+    end
+    it "creates a new authz policy" do
+      response = client_authz_policy.create!(name, description, type, logic, decision_strategy, fetch_roles, config[:roles])
+      expect(response.id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
+      expect(response.name).to eq "policy name"
+      expect(response.type).to eq "role"
+      expect(response.logic).to eq "POSITIVE"
+      expect(response.decision_strategy).to eq "UNANIMOUS"
+      expect(response.config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
+    end
+  end
+  describe '#get' do
+    let(:realm_name) { "valid-realm" }
+    let(:client_id) { "valid-client-id" }
+    let(:type) { :role }
+    let(:policy_id) { "234f6f33-ef03-4f3f-a8c0-ad7bca27b720" }
+    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
+    before(:each) do
+      stub_token_client
+      allow_any_instance_of(RestClient::Resource).to receive(:get).and_return '{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}'
+    end
+    it "returns an authz policy" do
+      response = client_authz_policy.get(policy_id)
+      expect(response.id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
+      expect(response.name).to eq "policy name"
+      expect(response.type).to eq "role"
+      expect(response.logic).to eq "POSITIVE"
+      expect(response.decision_strategy).to eq "UNANIMOUS"
+      expect(response.config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
+    end
+  end
+  describe '#find_by' do
+    let(:realm_name) { "valid-realm" }
+    let(:client_id) { "valid-client-id" }
+    let(:type) { :role }
+    let(:name) { "policy name" }
+    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
+    before(:each) do
+      stub_token_client
+      allow_any_instance_of(RestClient::Resource).to receive(:get).and_return '[{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}]'
+    end
+    it "returns list of authz policies" do
+      response = client_authz_policy.find_by(name, type)
+      expect(response.size).to eq 1
+      expect(response[0].id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
+      expect(response[0].name).to eq "policy name"
+      expect(response[0].type).to eq "role"
+      expect(response[0].logic).to eq "POSITIVE"
+      expect(response[0].decision_strategy).to eq "UNANIMOUS"
+      expect(response[0].config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
+    end
+  end
+  describe '#delete' do
+    let(:realm_name) { "valid-realm" }
+    let(:client_id) { "valid-client-id" }
+    let(:type) { :role }
+    let(:policy_id) { "234f6f33-ef03-4f3f-a8c0-ad7bca27b720" }
+    before(:each) do
+      @client_authz_policy = KeycloakAdmin.realm(realm_name).authz_policies(client_id, type)
+      stub_token_client
+      allow_any_instance_of(RestClient::Resource).to receive(:delete).and_return 'true'
+    end
+    it "deletes an authz policy" do
+      response = @client_authz_policy.delete(policy_id)
+      expect(response).to eq true
+    end
+  end
+  describe '#list' do
+    let(:realm_name) { "valid-realm" }
+    let(:client_id) { "valid-client-id" }
+    let(:type) { :role }
+    before(:each) do
+      @client_authz_policy = KeycloakAdmin.realm(realm_name).authz_policies(client_id, type)
+      stub_token_client
+      allow_any_instance_of(RestClient::Resource).to receive(:get).and_return '[{"id":"234f6f33-ef03-4f3f-a8c0-ad7bca27b720","name":"policy name","description":"policy description","type":"role","logic":"POSITIVE","decisionStrategy":"UNANIMOUS","config":{"roles":"[{\"id\":\"1d305dbe-6379-4900-8e63-96541006160a\",\"required\":false}]"}}]'
+    end
+    it "returns list of authz policies" do
+      response = @client_authz_policy.list
+      expect(response.size).to eq 1
+      expect(response[0].id).to eq "234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
+      expect(response[0].name).to eq "policy name"
+      expect(response[0].type).to eq "role"
+      expect(response[0].logic).to eq "POSITIVE"
+      expect(response[0].decision_strategy).to eq "UNANIMOUS"
+      expect(response[0].config.roles[0].id).to eq "1d305dbe-6379-4900-8e63-96541006160a"
+    end
+  end
+  describe '#authz_policy_url' do
+    let(:realm_name) { "valid-realm" }
+    let(:client_id) { "valid-client-id" }
+    let(:type) { :role }
+    let(:client_authz_policy){ KeycloakAdmin.realm(realm_name).authz_policies(client_id, type) }
+    context 'when policy_id is nil' do
+      let(:policy_id) { nil }
+      it "return a proper url" do
+        expect(client_authz_policy.authz_policy_url(client_id, type, policy_id)).to eq "http://auth.service.io/auth/admin/realms/valid-realm/clients/valid-client-id/authz/resource-server/policy/role?permission=false"
+      end
+    end
+    context 'when policy_id is not nil' do
+      let(:policy_id) { "234f6f33-ef03-4f3f-a8c0-ad7bca27b720" }
+      it "return a proper url" do
+        expect(client_authz_policy.authz_policy_url(client_id, type, policy_id)).to eq "http://auth.service.io/auth/admin/realms/valid-realm/clients/valid-client-id/authz/resource-server/policy/role/234f6f33-ef03-4f3f-a8c0-ad7bca27b720"
+      end
+    end
+  end
 end