RubyGems - kinde_sdk - Versions diffs - 1.6.6 → 1.7.0 - Mend

kinde_sdk 1.6.6 → 1.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (52) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: bce81ebfe4a744f53f2cb742a30c286f26597490aef729901356a54c067c9a3e
-  data.tar.gz: e90c8e6347ed3f5ddaf9fc3c1519d63c264f3faadc5e9f69fb51048a1cfcaf4a
+  metadata.gz: 535ff46d086ced73b9c96057f1cdf7bd582cede497aa3d299ff6cef98d7d3259
+  data.tar.gz: 8ae57192d2f173ef0a84902832aadb63a7b81ff8a4a4603da7061b30c4f58bde
 SHA512:
-  metadata.gz: 75145d5084c21ae190183eaa2df156698427f204f0fd85654312761174cc5c5fe80be947af247721555922ab2f99a49996454eff03315c3b06b78e03ac9d88f7
-  data.tar.gz: 25267d878c9e91ae639bc3b1112f37225a96ea5954052eb6b1b312e8440433aacf6948ef24769542911e74c741694756595bdc4c22dc55933a95df1ad361adfd
+  metadata.gz: 7abe77f02ae645e9841037d3c8fdc7a7edc28e3f7d9a1e625d7c687f751b4e16ea86a0af7e96629e7043542ce92434de4eb9868eeba4c4ca51743d0568f3ab39
+  data.tar.gz: f98f1dd0411cd3cff285e1c7a1475a749f6d5ba1c9aa75077c6e25ba0a171e173a2308792d5ceafd7b330cb7aee904957f2a4dbbdbbca178fe76a65b77aa4a7b

data/app/controllers/kinde_sdk/auth_controller.rb CHANGED Viewed

@@ -29,7 +29,9 @@ module KindeSdk
       session[:auth_nonce] = nonce
       session[:auth_state] = {
         requested_at: Time.current.to_i,
-        redirect_url: auth_data[:url]
+        redirect_url: auth_data[:url],
+        # Only allow reauth-leniency when reauth_state was provided
+        supports_reauth: params[:reauth_state].present?
       }
       redirect_to auth_data[:url], allow_other_host: true
@@ -41,6 +43,11 @@ module KindeSdk
     # Validates the response, exchanges code for tokens, and sets up the session
     # @return [void] Redirects to root path on success
     def callback
+      # Handle reauth errors first
+      if handle_reauth_error
+        return
+      end
       tokens = fetch_and_validate_tokens
       return if performed?
@@ -125,14 +132,65 @@ module KindeSdk
     private
+    def handle_reauth_error
+      error_param = params[:error]
+      return false unless error_param.present?
+      if error_param.downcase == "login_link_expired"
+        handle_expired_login_link
+      else
+        Rails.logger.warn("OAuth error received: #{error_param}")
+      end
+      true
+    end
+    def handle_expired_login_link
+      reauth_state = params[:reauth_state]
+      return unless reauth_state.present?
+      begin
+        decoded_auth_state = Base64.decode64(reauth_state)
+        reauth_data = JSON.parse(decoded_auth_state)
+        if reauth_data.present?
+          redirect_to build_reauth_url(reauth_data), allow_other_host: true
+        end
+      rescue ArgumentError => e
+        handle_error("Invalid reauth state encoding", e)
+      rescue JSON::ParserError => e
+        handle_error("Invalid reauth state format", e)
+      end
+    end
+    def build_reauth_url(reauth_data)
+      auth_url = "#{request.base_url}#{KindeSdk::Engine.routes.url_helpers.auth_path}"
+      query_string = URI.encode_www_form(reauth_data)
+      "#{auth_url}?#{query_string}"
+    end
     # Fetches and validates tokens from the authorization code
     # @return [Hash] The validated tokens or nil if validation fails
     def fetch_and_validate_tokens
-      tokens = KindeSdk.fetch_tokens(
-        params[:code],
-        code_verifier: KindeSdk.config.pkce_enabled ? session[:code_verifier] : nil,
-        redirect_uri: KindeSdk.config.callback_url
-      )
+      begin
+        tokens = KindeSdk.fetch_tokens(
+          params[:code],
+          code_verifier: KindeSdk.config.pkce_enabled ? session[:code_verifier] : nil,
+          redirect_uri: KindeSdk.config.callback_url
+        )
+      rescue StandardError => e
+        # Handle PKCE-related errors that might occur during token fetch
+        if e.message.include?("PKCE code verifier") || e.message.include?("invalid_grant")
+          # This could be a reauth scenario where session data was lost
+          # Redirect back to auth to start fresh
+          Rails.logger.warn("PKCE/token issue detected (#{e.message}), redirecting to re-authenticate")
+          redirect_to "#{request.base_url}#{KindeSdk::Engine.routes.url_helpers.auth_path}"
+          return nil
+        end
+        # Re-raise other errors
+        raise e
+      end
       if tokens[:error].present?
         redirect_with_error("Token exchange failed: #{tokens[:error]}")
@@ -144,10 +202,15 @@ module KindeSdk
         KindeSdk.validate_jwt_token(tokens)
         # Validate nonce in ID token to prevent replay attacks
-        decoded_token = JWT.decode(tokens[:id_token], nil, false)[0]
-        unless decoded_token['nonce'] == session[:auth_nonce]
-          redirect_with_error("Invalid authentication nonce")
-          return nil
+        # Skip nonce validation if no session nonce (could be reauth scenario)
+        if session[:auth_nonce].present?
+          decoded_token = JWT.decode(tokens[:id_token], nil, false)[0]
+          unless decoded_token['nonce'] == session[:auth_nonce]
+            redirect_with_error("Invalid authentication nonce")
+            return nil
+          end
+        else
+          Rails.logger.warn("Skipping nonce validation - no session nonce found (possible reauth scenario)")
         end
         tokens
@@ -169,17 +232,37 @@ module KindeSdk
     # Checks state existence, matches returned state with stored state, and validates expiration
     # @return [void]
     def validate_state
+      error_param = params[:error]
+      if error_param.present?
+        if error_param.downcase == "login_link_expired"
+          return
+        end
+      end
       # Check if nonce and state exist in session
       unless session[:auth_state]
+        # If no session state but we have a code, check if this could be a reauth scenario
+        # In reauth scenarios, the session might be lost but we still have a valid OAuth code
+        if params[:code].present?
+          # Skip validation for potential reauth scenarios where session state is lost
+          return
+        end
         redirect_with_error("Invalid authentication state")
         return
       end
-      # Verify nonce returned matches stored nonce
+      # If this auth flow supports reauth, be more lenient with validation
+      if session[:auth_state]["supports_reauth"]
+        # Only skip when both code _and_ state are supplied
+        return if params[:code].present? && params[:state].present?
+      end
+      # Normal state validation for non-reauth flows
       returned_state = params[:state]
       stored_state = session[:auth_state]
       stored_url = stored_state["redirect_url"]
       # Extract the state from the stored redirect_url
       parsed_url = URI.parse(stored_url)
       query_params = CGI.parse(parsed_url.query || "")

data/kinde_api/lib/kinde_api/api/frontend/billing_api.rb ADDED Viewed

@@ -0,0 +1,148 @@
+=begin
+#Kinde Account API
+# Provides endpoints to operate on an authenticated user.  ## Intro  ## How to use  1. Get a user access token - this can be obtained when a user signs in via the methods you've setup in Kinde (e.g. Google, passwordless, etc).  2. Call one of the endpoints below using the user access token in the Authorization header as a Bearer token. Typically, you can use the `getToken` command in the relevant SDK.
+The version of the OpenAPI document: 1
+Contact: support@kinde.com
+Generated by: https://openapi-generator.tech
+OpenAPI Generator version: 6.4.0
+=end
+require 'cgi'
+module KindeApi::Frontend
+  class BillingApi
+    attr_accessor :api_client
+    def initialize(api_client = ApiClient.default)
+      @api_client = api_client
+    end
+    # Get entitlement
+    # Returns a single entitlement by the feature key
+    # @param key [String] The key of the feature
+    # @param [Hash] opts the optional parameters
+    # @return [GetEntitlementResponse]
+    def get_entitlement(key, opts = {})
+      data, _status_code, _headers = get_entitlement_with_http_info(key, opts)
+      data
+    end
+    # Get entitlement
+    # Returns a single entitlement by the feature key
+    # @param key [String] The key of the feature
+    # @param [Hash] opts the optional parameters
+    # @return [Array<(GetEntitlementResponse, Integer, Hash)>] GetEntitlementResponse data, response status code and response headers
+    def get_entitlement_with_http_info(key, opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: BillingApi.get_entitlement ...'
+      end
+      # verify the required parameter 'key' is set
+      if @api_client.config.client_side_validation && key.nil?
+        fail ArgumentError, "Missing the required parameter 'key' when calling BillingApi.get_entitlement"
+      end
+      # resource path
+      local_var_path = '/account_api/v1/entitlement'.sub('{' + 'key' + '}', CGI.escape(key.to_s))
+      # query parameters
+      query_params = opts[:query_params] || {}
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json'])
+      # form parameters
+      form_params = opts[:form_params] || {}
+      # http body (model)
+      post_body = opts[:debug_body]
+      # return_type
+      return_type = opts[:debug_return_type] || 'GetEntitlementResponse'
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['kindeBearerAuth']
+      new_options = opts.merge(
+        :operation => :"BillingApi.get_entitlement",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+      data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: BillingApi#get_entitlement\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+    # Get entitlements
+    # Returns all the entitlements a the user currently has access to
+    # @param [Hash] opts the optional parameters
+    # @option opts [Integer] :page_size Number of results per page. Defaults to 10 if parameter not sent.
+    # @option opts [String] :starting_after The ID of the entitlement to start after.
+    # @return [GetEntitlementsResponse]
+    def get_entitlements(opts = {})
+      data, _status_code, _headers = get_entitlements_with_http_info(opts)
+      data
+    end
+    # Get entitlements
+    # Returns all the entitlements a the user currently has access to
+    # @param [Hash] opts the optional parameters
+    # @option opts [Integer] :page_size Number of results per page. Defaults to 10 if parameter not sent.
+    # @option opts [String] :starting_after The ID of the entitlement to start after.
+    # @return [Array<(GetEntitlementsResponse, Integer, Hash)>] GetEntitlementsResponse data, response status code and response headers
+    def get_entitlements_with_http_info(opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: BillingApi.get_entitlements ...'
+      end
+      # resource path
+      local_var_path = '/account_api/v1/entitlements'
+      # query parameters
+      query_params = opts[:query_params] || {}
+      query_params[:'page_size'] = opts[:'page_size'] if !opts[:'page_size'].nil?
+      query_params[:'starting_after'] = opts[:'starting_after'] if !opts[:'starting_after'].nil?
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json'])
+      # form parameters
+      form_params = opts[:form_params] || {}
+      # http body (model)
+      post_body = opts[:debug_body]
+      # return_type
+      return_type = opts[:debug_return_type] || 'GetEntitlementsResponse'
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['kindeBearerAuth']
+      new_options = opts.merge(
+        :operation => :"BillingApi.get_entitlements",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+      data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: BillingApi#get_entitlements\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+  end
+end

data/kinde_api/lib/kinde_api/api/frontend/feature_flags_api.rb ADDED Viewed

@@ -0,0 +1,85 @@
+=begin
+#Kinde Account API
+# Provides endpoints to operate on an authenticated user.  ## Intro  ## How to use  1. Get a user access token - this can be obtained when a user signs in via the methods you've setup in Kinde (e.g. Google, passwordless, etc).  2. Call one of the endpoints below using the user access token in the Authorization header as a Bearer token. Typically, you can use the `getToken` command in the relevant SDK.
+The version of the OpenAPI document: 1
+Contact: support@kinde.com
+Generated by: https://openapi-generator.tech
+OpenAPI Generator version: 6.4.0
+=end
+require 'cgi'
+module KindeApi::Frontend
+  class FeatureFlagsApi
+    attr_accessor :api_client
+    def initialize(api_client = ApiClient.default)
+      @api_client = api_client
+    end
+    # Get feature flags
+    # Returns all the feature flags that affect the user
+    # @param [Hash] opts the optional parameters
+    # @option opts [Integer] :page_size Number of results per page. Defaults to 10 if parameter not sent.
+    # @option opts [String] :starting_after The ID of the flag to start after.
+    # @return [GetFeatureFlagsResponse]
+    def get_feature_flags(opts = {})
+      data, _status_code, _headers = get_feature_flags_with_http_info(opts)
+      data
+    end
+    # Get feature flags
+    # Returns all the feature flags that affect the user
+    # @param [Hash] opts the optional parameters
+    # @option opts [Integer] :page_size Number of results per page. Defaults to 10 if parameter not sent.
+    # @option opts [String] :starting_after The ID of the flag to start after.
+    # @return [Array<(GetFeatureFlagsResponse, Integer, Hash)>] GetFeatureFlagsResponse data, response status code and response headers
+    def get_feature_flags_with_http_info(opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: FeatureFlagsApi.get_feature_flags ...'
+      end
+      # resource path
+      local_var_path = '/account_api/v1/feature_flags'
+      # query parameters
+      query_params = opts[:query_params] || {}
+      query_params[:'page_size'] = opts[:'page_size'] if !opts[:'page_size'].nil?
+      query_params[:'starting_after'] = opts[:'starting_after'] if !opts[:'starting_after'].nil?
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json'])
+      # form parameters
+      form_params = opts[:form_params] || {}
+      # http body (model)
+      post_body = opts[:debug_body]
+      # return_type
+      return_type = opts[:debug_return_type] || 'GetFeatureFlagsResponse'
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['kindeBearerAuth']
+      new_options = opts.merge(
+        :operation => :"FeatureFlagsApi.get_feature_flags",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+      data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: FeatureFlagsApi#get_feature_flags\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+  end
+end

data/kinde_api/lib/kinde_api/api/frontend/o_auth_api.rb ADDED Viewed

@@ -0,0 +1,241 @@
+=begin
+#Kinde Account API
+# Provides endpoints to operate on an authenticated user.  ## Intro  ## How to use  1. Get a user access token - this can be obtained when a user signs in via the methods you've setup in Kinde (e.g. Google, passwordless, etc).  2. Call one of the endpoints below using the user access token in the Authorization header as a Bearer token. Typically, you can use the `getToken` command in the relevant SDK.
+The version of the OpenAPI document: 1
+Contact: support@kinde.com
+Generated by: https://openapi-generator.tech
+OpenAPI Generator version: 6.4.0
+=end
+require 'cgi'
+module KindeApi::Frontend
+  class OAuthApi
+    attr_accessor :api_client
+    def initialize(api_client = ApiClient.default)
+      @api_client = api_client
+    end
+    # Get user profile
+    # This endpoint returns a user's ID, names, profile picture URL and email of the currently logged in user.
+    # @param [Hash] opts the optional parameters
+    # @return [UserProfileV2]
+    def get_user_profile_v2(opts = {})
+      data, _status_code, _headers = get_user_profile_v2_with_http_info(opts)
+      data
+    end
+    # Get user profile
+    # This endpoint returns a user&#39;s ID, names, profile picture URL and email of the currently logged in user.
+    # @param [Hash] opts the optional parameters
+    # @return [Array<(UserProfileV2, Integer, Hash)>] UserProfileV2 data, response status code and response headers
+    def get_user_profile_v2_with_http_info(opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: OAuthApi.get_user_profile_v2 ...'
+      end
+      # resource path
+      local_var_path = '/oauth2/v2/user_profile'
+      # query parameters
+      query_params = opts[:query_params] || {}
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json'])
+      # form parameters
+      form_params = opts[:form_params] || {}
+      # http body (model)
+      post_body = opts[:debug_body]
+      # return_type
+      return_type = opts[:debug_return_type] || 'UserProfileV2'
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['kindeBearerAuth']
+      new_options = opts.merge(
+        :operation => :"OAuthApi.get_user_profile_v2",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+      data, status_code, headers = @api_client.call_api(:GET, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: OAuthApi#get_user_profile_v2\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+    # Introspect
+    # Retrieve information about the provided token.
+    # @param token [String] The token to be introspected.
+    # @param [Hash] opts the optional parameters
+    # @option opts [String] :token_type_hint A hint about the token type being queried in the request.
+    # @return [TokenIntrospect]
+    def token_introspection(token, opts = {})
+      data, _status_code, _headers = token_introspection_with_http_info(token, opts)
+      data
+    end
+    # Introspect
+    # Retrieve information about the provided token.
+    # @param token [String] The token to be introspected.
+    # @param [Hash] opts the optional parameters
+    # @option opts [String] :token_type_hint A hint about the token type being queried in the request.
+    # @return [Array<(TokenIntrospect, Integer, Hash)>] TokenIntrospect data, response status code and response headers
+    def token_introspection_with_http_info(token, opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: OAuthApi.token_introspection ...'
+      end
+      # verify the required parameter 'token' is set
+      if @api_client.config.client_side_validation && token.nil?
+        fail ArgumentError, "Missing the required parameter 'token' when calling OAuthApi.token_introspection"
+      end
+      allowable_values = ["access_token", "refresh_token"]
+      if @api_client.config.client_side_validation && opts[:'token_type_hint'] && !allowable_values.include?(opts[:'token_type_hint'])
+        fail ArgumentError, "invalid value for \"token_type_hint\", must be one of #{allowable_values}"
+      end
+      # resource path
+      local_var_path = '/oauth2/introspect'
+      # query parameters
+      query_params = opts[:query_params] || {}
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json', 'application/json; charset=utf-8'])
+      # HTTP header 'Content-Type'
+      content_type = @api_client.select_header_content_type(['application/x-www-form-urlencoded'])
+      if !content_type.nil?
+          header_params['Content-Type'] = content_type
+      end
+      # form parameters
+      form_params = opts[:form_params] || {}
+      form_params['token'] = token
+      form_params['token_type_hint'] = opts[:'token_type_hint'] if !opts[:'token_type_hint'].nil?
+      # http body (model)
+      post_body = opts[:debug_body]
+      # return_type
+      return_type = opts[:debug_return_type] || 'TokenIntrospect'
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['kindeBearerAuth']
+      new_options = opts.merge(
+        :operation => :"OAuthApi.token_introspection",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+      data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: OAuthApi#token_introspection\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+    # Revoke token
+    # Use this endpoint to invalidate an access or refresh token. The token will no longer be valid for use.
+    # @param client_id [String] The &#x60;client_id&#x60; of your application.
+    # @param token [String] The token to be revoked.
+    # @param [Hash] opts the optional parameters
+    # @option opts [String] :client_secret The &#x60;client_secret&#x60; of your application. Required for backend apps only.
+    # @option opts [String] :token_type_hint The type of token to be revoked.
+    # @return [nil]
+    def token_revocation(client_id, token, opts = {})
+      token_revocation_with_http_info(client_id, token, opts)
+      nil
+    end
+    # Revoke token
+    # Use this endpoint to invalidate an access or refresh token. The token will no longer be valid for use.
+    # @param client_id [String] The &#x60;client_id&#x60; of your application.
+    # @param token [String] The token to be revoked.
+    # @param [Hash] opts the optional parameters
+    # @option opts [String] :client_secret The &#x60;client_secret&#x60; of your application. Required for backend apps only.
+    # @option opts [String] :token_type_hint The type of token to be revoked.
+    # @return [Array<(nil, Integer, Hash)>] nil, response status code and response headers
+    def token_revocation_with_http_info(client_id, token, opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: OAuthApi.token_revocation ...'
+      end
+      # verify the required parameter 'client_id' is set
+      if @api_client.config.client_side_validation && client_id.nil?
+        fail ArgumentError, "Missing the required parameter 'client_id' when calling OAuthApi.token_revocation"
+      end
+      # verify the required parameter 'token' is set
+      if @api_client.config.client_side_validation && token.nil?
+        fail ArgumentError, "Missing the required parameter 'token' when calling OAuthApi.token_revocation"
+      end
+      allowable_values = ["access_token", "refresh_token"]
+      if @api_client.config.client_side_validation && opts[:'token_type_hint'] && !allowable_values.include?(opts[:'token_type_hint'])
+        fail ArgumentError, "invalid value for \"token_type_hint\", must be one of #{allowable_values}"
+      end
+      # resource path
+      local_var_path = '/oauth2/revoke'
+      # query parameters
+      query_params = opts[:query_params] || {}
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json'])
+      # HTTP header 'Content-Type'
+      content_type = @api_client.select_header_content_type(['application/x-www-form-urlencoded'])
+      if !content_type.nil?
+          header_params['Content-Type'] = content_type
+      end
+      # form parameters
+      form_params = opts[:form_params] || {}
+      form_params['client_id'] = client_id
+      form_params['token'] = token
+      form_params['client_secret'] = opts[:'client_secret'] if !opts[:'client_secret'].nil?
+      form_params['token_type_hint'] = opts[:'token_type_hint'] if !opts[:'token_type_hint'].nil?
+      # http body (model)
+      post_body = opts[:debug_body]
+      # return_type
+      return_type = opts[:debug_return_type]
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['kindeBearerAuth']
+      new_options = opts.merge(
+        :operation => :"OAuthApi.token_revocation",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+      data, status_code, headers = @api_client.call_api(:POST, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: OAuthApi#token_revocation\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+  end
+end