keycloak-admin 0.2 → 0.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 530efac24194a86644d0924ffd5a0aa931c6928d
-  data.tar.gz: 9e42d8ceed9f876549dbd2cf2fd86c12ad01c500
+  metadata.gz: b0b8ec4ab66da0bc2e63c8aa0cf41107da8b7430
+  data.tar.gz: 21e5f3c5b983bf197607f280ff34a743811bc2fb
 SHA512:
-  metadata.gz: 6586f5fbd3b14cc579f8d77ff8cb8ee963eb013da1bd5d3807c6cfabe366b6b8340356c8d8cbc0207d4bf8eefaf8964a0717e0a25145d679b23d427f46641683
-  data.tar.gz: 4891b3ad7ffc41969c8e9a7b3624315f57edef8f9253dea0218c195c5a3eec1b019356ca2d75e0e1cc180ccb731f3ce7e47534335ea1ed915dcee63003604767
+  metadata.gz: 3f7ae98056acef279fac3365b9121dbca089a34a36076d1a31a62cb1a4b6af246c18899ea23418b8668fea59eb88a119b2e5fec9326bf7514a2150fdab560bc5
+  data.tar.gz: 3e44a7ddf4fe78650136b73c73ddeb982e7baf55866674b0c32aadf655423be042eee46722274bf93b80f6cd126924d803a9b8743137576b3156bfd083459883

data/Gemfile.lock

@@ -1,13 +1,18 @@
 PATH
   remote: .
   specs:
-    keycloak-admin (0.2)
+    keycloak-admin (0.4)
+      http-cookie (~> 1.0, >= 1.0.3)
 
 GEM
   remote: https://rubygems.org/
   specs:
     byebug (9.1.0)
     diff-lcs (1.3)
+    domain_name (0.5.20170404)
+      unf (>= 0.0.5, < 1.0.0)
+    http-cookie (1.0.3)
+      domain_name (~> 0.5)
     rspec (3.7.0)
       rspec-core (~> 3.7.0)
       rspec-expectations (~> 3.7.0)
@@ -21,6 +26,9 @@ GEM
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.7.0)
     rspec-support (3.7.0)
+    unf (0.1.4)
+      unf_ext
+    unf_ext (0.0.7.4)
 
 PLATFORMS
   ruby

data/README.md

@@ -12,7 +12,7 @@ This gem *does not* require Rails.
 For example, using `bundle`, add this line to your Gemfile.
 
 ```ruby
-gem "keycloak-admin", "0.2"
+gem "keycloak-admin", "0.4"
 ```
 
 ## Login
@@ -37,7 +37,8 @@ Using a service account to use the REST Admin API does not require to create a d
 * In Keycloak 
   * Make your client `confidential`
   * Check its toggle `Service Accounts Enabled`
-  * A Redirect URL is required, set it to `*`
+  * Disable both `Standard Flow Enabled` and `Implicit Flow Enabled `
+  * Enable `Direct Access Grants Enabled`
   * After saving this client, open the `Service Account Roles` and add relevant `realm-management.` client's roles. For instance: `view-users` if you want to search for users using this gem.
 * In this gem's configuration
   * Set `use_service_account` to `true`
@@ -51,6 +52,7 @@ For instance, to configure this gem based on environment variables, write (and l
 KeycloakAdmin.configure do |config|
   config.use_service_account = false
   config.server_url          = ENV["KEYCLOAK_SERVER_URL"]
+  config.server_domain       = ENV["KEYCLOAK_SERVER_DOMAIN"]
   config.client_id           = ENV["KEYCLOAK_ADMIN_CLIENT_ID"]
   config.client_realm_name   = ENV["KEYCLOAK_REALM_ID"]
   config.username            = ENV["KEYCLOAK_ADMIN_USER"]
@@ -66,7 +68,7 @@ All options have a default value. However, all of them can be changed in your in
 
 | Option | Default Value | Type | Required? | Description  | Example |
 | ---- | ----- | ------ | ----- | ------ | ----- |
-| `server_url` | `nil`| String | Required | The base url where your Keycloak server is located. This value can be retrieved in your Keycloak client configuration. | `auth:8080/auth` |
+| `server_url` | `nil`| String | Required | The base url where your Keycloak server is located. This value can be retrieved in your Keycloak client configuration. | `server_domain` | `nil`| String | Required | Public domain that identify your authentication cookies. | `auth.service.io` |
 | `client_realm_name` | `""`| String | Required | Name of the realm that contain the admin client. | `master` |
 | `client_id` | `admin-cli`| String | Required | Client that should be used to access admin capabilities. | `api-cli` |
 | `client_secret` | `nil`| String | Optional | If your client is `confidential`, this parameter must be specified. | `4e3c481c-f823-4a6a-b8a7-bf8c86e3eac3` |
@@ -84,6 +86,7 @@ exit
 * Create a user
 * Reset credentials
 * Delete a user
+* Impersonate a user
 
 ### Get an access token
 
@@ -126,7 +129,25 @@ KeycloakAdmin.realm("a_realm").users.create!(username, email, password, email_ve
 ```ruby
 user_id      = "95985b21-d884-4bbd-b852-cb8cd365afc2"
 new_password = "coco"
-KeycloakAdmin.realm("commuty").users.update_password(user_id, new_password)
+KeycloakAdmin.realm("a_realm").users.update_password(user_id, new_password)
+```
+
+### Impersonate a password directly
+
+Returns an instance of `KeycloakAdmin::ImpersonationRepresentation`.
+
+```ruby
+user_id = "95985b21-d884-4bbd-b852-cb8cd365afc2"
+KeycloakAdmin.realm("a_realm").users.impersonate(user_id)
+```
+
+### Impersonate a password indirectly
+
+To have enough information to execute an impersonation by yourself, `get_redirect_impersonation` returns an instance of `KeycloakAdmin::ImpersonationRedirectionRepresentation`.
+
+```ruby
+user_id = "95985b21-d884-4bbd-b852-cb8cd365afc2"
+KeycloakAdmin.realm("a_realm").users.get_redirect_impersonation(user_id)
 ```
 
 ## How to execute library tests

data/keycloak-admin.gemspec

@@ -15,6 +15,7 @@ Gem::Specification.new do |spec|
   spec.files = `git ls-files -z`.split("\x0")
   spec.require_paths = ["lib"]
   
+  spec.add_dependency "http-cookie", "~> 1.0", ">= 1.0.3"
   spec.add_development_dependency "rspec",  "3.7.0"
   spec.add_development_dependency "byebug", "9.1.0"
 end

data/lib/keycloak-admin.rb

@@ -8,6 +8,8 @@ require_relative "keycloak-admin/client/user_client"
 require_relative "keycloak-admin/representation/camel_json"
 require_relative "keycloak-admin/representation/representation"
 require_relative "keycloak-admin/representation/token_representation"
+require_relative "keycloak-admin/representation/impersonation_redirection_representation"
+require_relative "keycloak-admin/representation/impersonation_representation"
 require_relative "keycloak-admin/representation/credential_representation"
 require_relative "keycloak-admin/representation/user_representation"
 
@@ -32,6 +34,7 @@ module KeycloakAdmin
   def self.load_configuration
     configure do |config|
       config.server_url          = nil
+      config.server_domain       = nil
       config.client_realm_name   = ""
       config.client_id           = "admin-cli"
       config.logger              = ::Logger.new(STDOUT)

data/lib/keycloak-admin/client/user_client.rb

@@ -43,6 +43,18 @@ module KeycloakAdmin
       user_id
     end
 
+    def impersonate(user_id)
+      impersonation = get_redirect_impersonation(user_id)
+      response = execute_http do
+        RestClient.post(impersonation.impersonation_url, impersonation.body.to_json, impersonation.headers)
+      end
+      ImpersonationRepresentation.from_response(response, @configuration.server_domain)
+    end
+
+    def get_redirect_impersonation(user_id)
+      ImpersonationRedirectionRepresentation.from_url(impersonation_url(user_id), headers)
+    end
+
     def users_url(id=nil)
       if id
         "#{@realm_client.realm_admin_url}/users/#{id}"
@@ -56,6 +68,11 @@ module KeycloakAdmin
       "#{users_url(user_id)}/reset-password"
     end
 
+    def impersonation_url(user_id)
+      raise ArgumentError.new("user_id must be defined") if user_id.nil?
+      "#{users_url(user_id)}/impersonation"
+    end
+
     private
 
     def build(username, email, password, email_verified)

data/lib/keycloak-admin/configuration.rb

@@ -2,7 +2,7 @@ require "base64"
 
 module KeycloakAdmin
   class Configuration
-    attr_accessor :server_url, :client_id, :client_secret, :client_realm_name, :use_service_account, :username, :password, :logger
+    attr_accessor :server_url, :server_domain, :client_id, :client_secret, :client_realm_name, :use_service_account, :username, :password, :logger
 
     def body_for_token_retrieval
       if use_service_account

data/lib/keycloak-admin/representation/impersonation_redirection_representation.rb

@@ -0,0 +1,16 @@
+module KeycloakAdmin
+  class ImpersonationRedirectionRepresentation < Representation
+    attr_reader :headers, :impersonation_url, :http_method, :body
+
+    def initialize(http_method, body, impersonation_url, headers)
+      @http_method       = http_method
+      @body              = body
+      @impersonation_url = impersonation_url
+      @headers           = headers
+    end
+
+    def self.from_url(url, headers)
+      new(:post, {}, url, headers)
+    end
+  end
+end

data/lib/keycloak-admin/representation/impersonation_representation.rb

@@ -0,0 +1,43 @@
+require "http-cookie"
+
+module KeycloakAdmin
+  class ImpersonationRepresentation < Representation
+    attr_accessor :set_cookie_strings,
+      :set_cookies,
+      :same_realm,
+      :redirect,
+      :domain
+
+    def self.from_response(response, origin)
+      body                              = JSON.parse(response.body)
+      representation                    = new
+      representation.set_cookie_strings = response.headers[:set_cookie]
+      representation.set_cookies        = representation.set_cookie_strings.map { |set_cookie| parse_set_cookie_string(set_cookie, origin) }
+      representation.same_realm         = body["sameRealm"]
+      representation.redirect           = body["redirect"]
+      representation.domain             = origin
+      representation
+    end
+
+    def self.parse_set_cookie_string(set_cookie_string, origin)
+      HTTP::Cookie.parse(set_cookie_string, origin).first
+    end
+
+    def cookies_to_rails_hash
+      @set_cookies.map do |cookie|
+        rails_cookie = {
+          name:     cookie.name,
+          value:    cookie.value,
+          httponly: cookie.httponly,
+          expires:  cookie.expires,
+          path:     cookie.path,
+          domain:   cookie.domain
+        }
+      
+        rails_cookie[:max_age] = cookie.max_age if cookie.max_age
+        rails_cookie[:secure]  = cookie.secure  if cookie.secure
+        rails_cookie
+      end
+    end
+  end
+end

data/lib/keycloak-admin/version.rb

@@ -1,3 +1,3 @@
 module KeycloakAdmin
-  VERSION = "0.2"
+  VERSION = "0.4"
 end

data/spec/client/user_client_spec.rb

@@ -71,4 +71,29 @@ RSpec.describe KeycloakAdmin::TokenClient do
       end
     end
   end
+
+  describe "#impersonation_url" do
+    let(:realm_name) { "valid-realm" }
+    let(:user_id)    { nil }
+
+    before(:each) do
+      @client = KeycloakAdmin.realm(realm_name).users
+    end
+
+    context "when user_id is not defined" do
+      let(:user_id) { nil }
+      it "raises an error" do
+        expect {
+          @client.impersonation_url(user_id)
+        }.to raise_error(ArgumentError)
+      end
+    end
+
+    context "when user_id is defined" do
+      let(:user_id) { 42 }
+      it "return a proper url" do
+        expect(@client.impersonation_url(user_id)).to eq "http://auth.service.io/auth/admin/realms/valid-realm/users/42/impersonation"
+      end
+    end
+  end
 end

data/spec/configuration_spec.rb

@@ -0,0 +1,111 @@
+RSpec.describe KeycloakAdmin::RealmClient do
+
+  let(:client_id)           { "admin-cli" }
+  let(:client_secret)       { "aaaaaaaa" }
+  let(:client_realm_name)   { "master2" }
+  let(:use_service_account) { true }
+  let(:username)            { "a" }
+  let(:password)            { "b" }
+
+  before(:each) do
+    @configuration                     = KeycloakAdmin::Configuration.new
+    @configuration.server_url          = "http://auth.service.io/auth"
+    @configuration.server_domain       = "auth.service.io"
+    @configuration.client_id           = client_id
+    @configuration.client_secret       = client_secret
+    @configuration.client_realm_name   = client_realm_name
+    @configuration.use_service_account = use_service_account
+    @configuration.username            = username
+    @configuration.password            = password
+  end
+
+  describe "#headers_for_token_retrieval" do
+    before(:each) do
+      @headers = @configuration.headers_for_token_retrieval
+    end
+    
+    context "when use_service_account is false" do
+      let(:use_service_account) { false }
+      it "returns an empty hash" do 
+        expect(@headers).to be_empty
+      end
+    end
+
+    context "when use_service_account is true" do
+      let(:use_service_account) { true }
+      it "returns a single element" do
+        expect(@headers.size).to eq 1
+      end
+
+      it "returns the Authorization Key" do
+        expect(@headers.has_key?(:Authorization)).to be true
+      end
+
+      it "returns a Basic Authorization Key" do
+        expect(@headers[:Authorization]).to start_with "Basic"
+      end
+
+      context "client_id='a' and client_secret='b'" do
+        let(:client_id)           { "a" }
+        let(:client_secret)       { "b" }
+
+        it "returns a Basic Authorization = 'Basic YTpi'" do
+          expect(@headers[:Authorization]).to eq "Basic YTpi"
+        end
+      end
+
+      context "client_id='365e3c66-fd0f-11e7-8be5-0ed5f89f718b' and client_secret='411e6f9a-fd0f-11e7-8be5-0ed5f89f718b'" do
+        let(:client_id)           { "365e3c66-fd0f-11e7-8be5-0ed5f89f718b" }
+        let(:client_secret)       { "411e6f9a-fd0f-11e7-8be5-0ed5f89f718b" }
+
+        it "returns a Basic Authorization = 'Basic MzY1ZTNjNjYtZmQwZi0xMWU3LThiZTUtMGVkNWY4OWY3MThiOjQxMWU2ZjlhLWZkMGYtMTFlNy04YmU1LTBlZDVmODlmNzE4Yg=='" do
+          expect(@headers[:Authorization]).to eq "Basic MzY1ZTNjNjYtZmQwZi0xMWU3LThiZTUtMGVkNWY4OWY3MThiOjQxMWU2ZjlhLWZkMGYtMTFlNy04YmU1LTBlZDVmODlmNzE4Yg=="
+        end
+      end
+
+    end
+  end
+
+  describe "#body_for_token_retrieval" do
+    before(:each) do
+      @body = @configuration.body_for_token_retrieval
+    end
+    context "when use_service_account is false" do
+      let(:use_service_account) { false }
+      it "returns a hash of 5 elements" do
+        expect(@body.size).to eq 5
+      end
+
+      it "returns a hash containing the username" do
+        expect(@body[:username]).to eq username
+      end
+
+      it "returns a hash containing the password" do
+        expect(@body[:password]).to eq password
+      end
+
+      it "returns a hash containing the grant_type 'password'" do
+        expect(@body[:grant_type]).to eq "password"
+      end
+
+      it "returns a hash containing the client_id" do
+        expect(@body[:client_id]).to eq client_id
+      end
+
+      it "returns a hash containing the client_secret" do
+        expect(@body[:client_secret]).to eq client_secret
+      end
+    end
+
+    context "when use_service_account is true" do
+      let(:use_service_account) { true }
+      it "returns a hash of 1 element" do
+        expect(@body.size).to eq 1
+      end
+
+      it "returns a hash containing the grant_type" do
+        expect(@body[:grant_type]).to eq "client_credentials"
+      end
+    end
+  end
+end

data/spec/representation/impersonation_representation_spec.rb

@@ -0,0 +1,163 @@
+RSpec.describe KeycloakAdmin::ImpersonationRepresentation do
+  describe "#parse_set_cookie_string" do
+
+    let(:origin)            { "http://auth.service.io" }
+    let(:set_cookie_string) { "" }
+
+    before(:each) do
+      @cookie = KeycloakAdmin::ImpersonationRepresentation.parse_set_cookie_string(set_cookie_string, origin)
+    end
+
+    shared_context "common properties are read properly" do
+      it "parses its domain property" do
+        expect(@cookie.domain).to eq "auth.service.io"
+      end
+
+      it "parses its for_domain property" do
+        expect(@cookie.for_domain).to be false
+      end
+
+      it "parses its Path property" do
+        expect(@cookie.path).to eq "/auth/realms/a-realm"
+      end
+
+      it "parses its Secure property" do
+        expect(@cookie.secure).to be false
+      end
+    end
+
+    context "when result is an expiring empty KEYCLOAK_IDENTITY" do
+      let(:set_cookie_string) { "KEYCLOAK_IDENTITY=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm; HttpOnly" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_IDENTITY"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq ""
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be <= Time.now
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to eq 0
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be true
+      end
+    end
+
+
+    context "when result is an expiring empty KEYCLOAK_SESSION" do
+      let(:set_cookie_string) { "KEYCLOAK_SESSION=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_SESSION"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq ""
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be <= Time.now
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to eq 0
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be false
+      end
+    end
+
+
+    context "when result is an expiring empty KEYCLOAK_REMEMBER_ME" do
+      let(:set_cookie_string) { "KEYCLOAK_REMEMBER_ME=; Version=1; Comment=Expiring cookie; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Max-Age=0; Path=/auth/realms/a-realm; HttpOnly" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_REMEMBER_ME"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq ""
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be <= Time.now
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to eq 0
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be true
+      end
+    end
+
+    context "when result is a new KEYCLOAK_IDENTITY" do
+      let(:set_cookie_string) { "KEYCLOAK_IDENTITY=eyJhbGciOiJIUzI1NiIsImtpZCIgOiAiMDQyMTcwMWItY2I2Ny00YzQ4LWIzZWYtMDBlMDhhMmE4MjNjIn0.eyJqdGkiOiI5ZTEyODc3MC1mN2U1LTQ0OWYtYWMzYi03OTAzN2Q5NDBhOTMiLCJleHAiOjE1MTY2ODE2ODIsIm5iZiI6MCwiaWF0IjoxNTE2NjQ1NjgyLCJpc3MiOiJodHRwOi8vYXV0aDo4MDgwL2F1dGgvcmVhbG1zL2NvbW11dHkiLCJzdWIiOiI0NGM1MzdmMi1iMzBiLTRlZTctYjI4Ni1lZTY2NjI2NDcwYWMiLCJhdXRoX3RpbWUiOjAsInNlc3Npb25fc3RhdGUiOiI3ZDI5NTJlZS0xMjllLTRmOGQtYmFjNy1jMWE0YWUxNGRjY2QiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9LCJzdGF0ZV9jaGVja2VyIjoiUEdXZVdXc3hMRmN3WG1QelFmMGxBQTJrN1V3Skg3UUlHU0lrN3hmWUFEbyJ9.Hw9EM1rZLXkUfE97tfS8jw8MFogfMoGpT34yoMupK3E; Version=1; Path=/auth/realms/a-realm; HttpOnly" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_IDENTITY"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq "eyJhbGciOiJIUzI1NiIsImtpZCIgOiAiMDQyMTcwMWItY2I2Ny00YzQ4LWIzZWYtMDBlMDhhMmE4MjNjIn0.eyJqdGkiOiI5ZTEyODc3MC1mN2U1LTQ0OWYtYWMzYi03OTAzN2Q5NDBhOTMiLCJleHAiOjE1MTY2ODE2ODIsIm5iZiI6MCwiaWF0IjoxNTE2NjQ1NjgyLCJpc3MiOiJodHRwOi8vYXV0aDo4MDgwL2F1dGgvcmVhbG1zL2NvbW11dHkiLCJzdWIiOiI0NGM1MzdmMi1iMzBiLTRlZTctYjI4Ni1lZTY2NjI2NDcwYWMiLCJhdXRoX3RpbWUiOjAsInNlc3Npb25fc3RhdGUiOiI3ZDI5NTJlZS0xMjllLTRmOGQtYmFjNy1jMWE0YWUxNGRjY2QiLCJyZXNvdXJjZV9hY2Nlc3MiOnt9LCJzdGF0ZV9jaGVja2VyIjoiUEdXZVdXc3hMRmN3WG1QelFmMGxBQTJrN1V3Skg3UUlHU0lrN3hmWUFEbyJ9.Hw9EM1rZLXkUfE97tfS8jw8MFogfMoGpT34yoMupK3E"
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to be_nil
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to be nil
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be true
+      end
+    end
+
+    context "when result is a new KEYCLOAK_SESSION" do
+      let(:set_cookie_string) { "KEYCLOAK_SESSION=commuty/44c537f2-b30b-4ee7-b286-ee66626470ac/cd79f3c2-7cee-4c4e-980b-43293aaaff88; Version=1; Expires=Tue, 23-Jan-2018 23:56:32 GMT; Max-Age=36000; Path=/auth/realms/a-realm" }
+      
+      include_examples "common properties are read properly"
+
+      it "parses its name property" do
+        expect(@cookie.name).to eq "KEYCLOAK_SESSION"
+      end
+
+      it "parses its value property" do
+        expect(@cookie.value).to eq "commuty/44c537f2-b30b-4ee7-b286-ee66626470ac/cd79f3c2-7cee-4c4e-980b-43293aaaff88"
+      end
+
+      it "parses its Expires property" do
+        expect(@cookie.expires).to_not be_nil
+      end
+
+      it "parses its Max-Age property" do
+        expect(@cookie.max_age).to be 36000
+      end
+
+      it "parses its HttpOnly property" do
+        expect(@cookie.httponly).to be false
+      end
+    end
+  end
+end
+
+

data/spec/spec_helper.rb

@@ -5,6 +5,7 @@ require "byebug"
 def configure
   KeycloakAdmin.configure do |config|
     config.server_url          = "http://auth.service.io/auth"
+    config.server_domain       = "auth.service.io"
     config.client_id           = "admin-cli"
     config.client_secret       = "aaaaaaaa"
     config.client_realm_name   = "master2"

metadata

@@ -1,15 +1,35 @@
 --- !ruby/object:Gem::Specification
 name: keycloak-admin
 version: !ruby/object:Gem::Version
-  version: '0.2'
+  version: '0.4'
 platform: ruby
 authors:
 - Lorent Lempereur
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-01-19 00:00:00.000000000 Z
+date: 2018-01-23 00:00:00.000000000 Z
 dependencies:
+- !ruby/object:Gem::Dependency
+  name: http-cookie
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.0.3
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.0.3
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
@@ -61,6 +81,8 @@ files:
 - lib/keycloak-admin/configuration.rb
 - lib/keycloak-admin/representation/camel_json.rb
 - lib/keycloak-admin/representation/credential_representation.rb
+- lib/keycloak-admin/representation/impersonation_redirection_representation.rb
+- lib/keycloak-admin/representation/impersonation_representation.rb
 - lib/keycloak-admin/representation/representation.rb
 - lib/keycloak-admin/representation/token_representation.rb
 - lib/keycloak-admin/representation/user_representation.rb
@@ -68,6 +90,8 @@ files:
 - spec/client/realm_client_spec.rb
 - spec/client/token_client_spec.rb
 - spec/client/user_client_spec.rb
+- spec/configuration_spec.rb
+- spec/representation/impersonation_representation_spec.rb
 - spec/spec_helper.rb
 homepage: https://github.com/looorent/keycloak-admin-ruby
 licenses: