RubyGems - onelogin - Versions diffs - 1.3.1 → 1.6.0 - Mend

onelogin 1.3.1 → 1.6.0

Files changed (42) hide show

data/lib/onelogin/api/client.rb CHANGED Viewed

@@ -47,6 +47,8 @@ module OneLogin
           self.class.http_proxy options[:proxy_host], options[:proxy_port], options[:proxy_user], options[:proxy_pass]
         end
+        self.class.default_options.update(verify: false)
         validate_config
         @user_agent = DEFAULT_USER_AGENT
@@ -342,7 +344,7 @@ module OneLogin
             params: params
           }
-          return Cursor.new(self.class, url_for(GET_USERS_URL), options)
+          return Cursor.new(self, url_for(GET_USERS_URL), options)
         rescue Exception => e
           @error = '500'
@@ -364,6 +366,12 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(GET_USER_URL, user_id)
@@ -401,13 +409,20 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           options = {
             model: OneLogin::Api::Models::App,
             headers: authorized_headers,
             max_results: @max_results
           }
-          return Cursor.new(self.class, url_for(GET_APPS_FOR_USER_URL, user_id), options)
+          return Cursor.new(self, url_for(GET_APPS_FOR_USER_URL, user_id), options)
         rescue Exception => e
           @error = '500'
@@ -429,6 +444,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(GET_ROLES_FOR_USER_URL, user_id)
           response = self.class.get(
@@ -552,6 +574,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(UPDATE_USER_URL, user_id)
           response = self.class.put(
@@ -591,6 +620,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(ADD_ROLE_TO_USER_URL, user_id)
           data = {
@@ -631,6 +667,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(DELETE_ROLE_TO_USER_URL, user_id)
           data = {
@@ -673,6 +716,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(SET_PW_CLEARTEXT, user_id)
           data = {
@@ -718,6 +768,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(SET_PW_SALT, user_id)
           data = {
@@ -764,6 +821,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(SET_USER_STATE_URL, user_id)
           data = {
@@ -804,6 +868,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(SET_CUSTOM_ATTRIBUTE_TO_USER_URL, user_id)
           data = {
@@ -843,6 +914,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(LOG_USER_OUT_URL, user_id)
           response = self.class.put(
@@ -880,6 +958,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(LOCK_USER_URL, user_id)
           data = {
@@ -919,6 +1004,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(DELETE_USER_URL, user_id)
           response = self.class.delete(
@@ -941,6 +1033,59 @@ module OneLogin
         false
       end
+      # Use to generate a temporary MFA token that can be used in place of other MFA tokens for a set time period.
+      # For example, use this token for account recovery.
+      #
+      # @param user_id [Integer] Id of the user
+      # @param expires_in [Integer] Set the duration of the token in seconds.
+      #                             (default: 259200 seconds = 72h) 72 hours is the max value.
+      # @param reusable [Boolean] Defines if the token reusable. (default: false) If set to true, token can be used for multiple apps, until it expires.
+      #
+      # @return [MFAToken] if the action succeed
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/multi-factor-authentication/generate-mfa-token Generate MFA Token documentation}
+      def generate_mfa_token(user_id, expires_in=259200, reusable=false)
+        clean_error
+        prepare_token
+        begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
+          url = url_for(GENERATE_MFA_TOKEN_URL, user_id)
+          data = {
+            'expires_in' => expires_in,
+            'reusable' => reusable
+          }
+          response = self.class.post(
+            url,
+            headers: authorized_headers,
+            body: data.to_json
+          )
+          if response.code == 201
+            json_data = JSON.parse(response.body)
+            if !json_data.empty?
+              return OneLogin::Api::Models::MFAToken.new(json_data)
+            end
+          else
+            @error = extract_status_code_from_response(response)
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
       # Generates a session login token in scenarios in which MFA may or may not be required.
       # A session login token expires two minutes after creation.
       #
@@ -1005,6 +1150,13 @@ module OneLogin
         prepare_token
         begin
+          if device_id.nil? || device_id.to_s.empty?
+            @error = '400'
+            @error_description = "device_id is required"
+            @error_attribute = "device_id"
+            return
+          end
           url = url_for(GET_TOKEN_VERIFY_FACTOR)
           data = {
@@ -1042,6 +1194,351 @@ module OneLogin
         nil
       end
+      ###############################
+      # Onelogin Connectors Methods #
+      ###############################
+      # Gets a list of Connector resources.
+      #
+      # @param params [Hash] Parameters to filter the result of the list
+      #
+      # @return [Array] list of Connector objects
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/connectors/list-connectors List Connectors documentation}
+      def get_connectors(params = {})
+        clean_error
+        prepare_token
+        begin
+          url = url_for(GET_CONNECTORS_URL)
+          connectors = []
+          response = self.class.get(
+            url,
+            headers: authorized_headers,
+            query: params
+          )
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if !json_data.empty?
+              json_data.each do |data|
+                pp data
+                connectors << OneLogin::Api::Models::ConnectorBasic.new(data)
+              end
+            end
+            return connectors
+          else
+            @error = extract_status_code_from_response(response)
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
+      #########################
+      # Onelogin Apps Methods #
+      #########################
+      # Gets a list of OneLoginAppV1 resources. (if no limit provided, by default get 50 elements)
+      #
+      # @param params [Hash] Parameters to filter the result of the list
+      #
+      # @return [Array] list of OneLoginAppV1 objects
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/get-apps Get Apps documentation}
+      def get_apps_v1(params = {})
+        clean_error
+        prepare_token
+        begin
+          options = {
+            model: OneLogin::Api::Models::OneLoginAppV1,
+            headers: authorized_headers,
+            max_results: @max_results,
+            params: params
+          }
+          return Cursor.new(self, url_for(GET_APPS_URL_V1), options)
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
+      # Gets a list of OneLoginAppBasic resources.
+      #
+      # @param params [Hash] Parameters to filter the result of the list
+      #
+      # @return [Array] list of OneLoginAppBasic objects
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/list-apps Get Apps documentation}
+      def get_apps(params = {})
+        clean_error
+        prepare_token
+        begin
+          url = url_for(GET_APPS_URL)
+          apps = []
+          response = self.class.get(
+            url,
+            headers: authorized_headers,
+            query: params
+          )
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if !json_data.empty?
+              json_data.each do |data|
+                apps << OneLogin::Api::Models::OneLoginAppBasic.new(data)
+              end
+            end
+            return apps
+          else
+            @error = extract_status_code_from_response(response)
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
+      # Creates an app
+      #
+      # @param app_params [Hash] App data (name, visible, policy_id, is_available, parameters, allow_assumed_signin,
+      #                                    configuration, notes, description, provisioning,
+      #                                    connector_id, auth_method, tab_id)
+      #
+      # @return [OneLoginApp] the created app
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/create-app Create App documentation}
+      def create_app(app_params)
+        clean_error
+        prepare_token
+        begin
+          url = url_for(CREATE_APP_URL)
+          unless app_params.has_key?('connector_id') || app_params['connector_id'].to_s.empty?
+            @error = '400'
+            @error_description = "connector_id is required"
+            @error_attribute = "connector_id"
+            return
+          end
+          response = self.class.post(
+            url,
+            headers: authorized_headers,
+            body: app_params.to_json
+          )
+          if response.code == 201
+            json_data = JSON.parse(response.body)
+            if json_data && json_data.has_key?('id')
+              return OneLogin::Api::Models::OneLoginApp.new(json_data)
+            end
+          else
+            @error = extract_status_code_from_response(response)
+            @error_description = extract_error_message_from_response(response)
+            @error_attribute = extract_error_attribute_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
+      # Gets a OneLoginApp resource.
+      #
+      # @return [OneLoginApp] OneLoginApp object
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/get-app Get App documentation}
+      def get_app(app_id)
+        clean_error
+        prepare_token
+        begin
+          if app_id.nil? || app_id.to_s.empty?
+            @error = '400'
+            @error_description = "app_id is required"
+            @error_attribute = "app_id"
+            return
+          end
+          url = url_for(GET_APP_URL, app_id)
+          response = self.class.get(
+            url,
+            headers: authorized_headers
+          )
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if json_data && json_data.has_key?('id')
+              return OneLogin::Api::Models::OneLoginApp.new(json_data)
+            end
+          else
+            @error = extract_status_code_from_response(response)
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
+      # Updates an app
+      #
+      # @param app_id [Integer] Id of the app
+      # @param app_params [Hash] App data (name, visible, policy_id, is_available, parameters, allow_assumed_signin,
+      #                                    configuration, notes, description, provisioning,
+      #                                    connector_id, auth_method, tab_id)
+      #
+      # @return [User] the modified user
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/update-app Update App by ID documentation}
+      def update_app(app_id, app_params)
+        clean_error
+        prepare_token
+        begin
+          if app_id.nil? || app_id.to_s.empty?
+            @error = '400'
+            @error_description = "app_id is required"
+            @error_attribute = "app_id"
+            return
+          end
+          url = url_for(UPDATE_APP_URL, app_id)
+          response = self.class.put(
+            url,
+            headers: authorized_headers,
+            body: app_params.to_json
+          )
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if json_data && json_data.has_key?('id')
+              return OneLogin::Api::Models::OneLoginApp.new(json_data)
+            end
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+            @error_attribute = extract_error_attribute_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        nil
+      end
+      # Deletes an app
+      #
+      # @param app_id [Integer] Id of the app to be removed
+      #
+      # @return [Boolean] if the action succeed
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/delete-app Delete App by ID documentation}
+      def delete_app(app_id)
+        clean_error
+        prepare_token
+        begin
+          if app_id.nil? || app_id.to_s.empty?
+            @error = '400'
+            @error_description = "app_id is required"
+            @error_attribute = "app_id"
+            return
+          end
+          url = url_for(DELETE_APP_URL, app_id)
+          response = self.class.delete(
+            url,
+            headers: authorized_headers
+          )
+          if response.code == 204
+            return true
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+            @error_attribute = extract_error_attribute_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        false
+      end
+      # Deletes an App Parameter
+      #
+      # @param app_id [Integer] Id of the app
+      # @param parameter_id [Integer] Id of the parameter to be removed
+      #
+      # @return [Boolean] if the action succeed
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/apps/delete-parameter Delete an App Parameter documentation}
+      def delete_parameter_from_app(app_id, parameter_id)
+        clean_error
+        prepare_token
+        begin
+          if app_id.nil? || app_id.to_s.empty?
+            @error = '400'
+            @error_description = "app_id is required"
+            @error_attribute = "app_id"
+            return
+          end
+          if parameter_id.nil? || parameter_id.to_s.empty?
+            @error = '400'
+            @error_description = "parameter_id is required"
+            @error_attribute = "parameter_id"
+            return
+          end
+          url = url_for(DELETE_APP_PARAMETER_URL, app_id, parameter_id)
+          response = self.class.delete(
+            url,
+            headers: authorized_headers
+          )
+          if response.code == 204
+            return true
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+            @error_attribute = extract_error_attribute_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+        false
+      end
       ################
       # Role Methods #
@@ -1066,7 +1563,7 @@ module OneLogin
             params: params
           }
-          return Cursor.new(self.class, url_for(GET_ROLES_URL), options)
+          return Cursor.new(self, url_for(GET_ROLES_URL), options)
         rescue Exception => e
           @error = '500'
@@ -1088,6 +1585,13 @@ module OneLogin
         prepare_token
         begin
+          if role_id.nil? || role_id.to_s.empty?
+            @error = '400'
+            @error_description = "role_id is required"
+            @error_attribute = "role_id"
+            return
+          end
           url = url_for(GET_ROLE_URL, role_id)
           response = self.class.get(
@@ -1132,7 +1636,7 @@ module OneLogin
             max_results: @max_results
           }
-          return Cursor.new(self.class, url_for(GET_EVENT_TYPES_URL), options)
+          return Cursor.new(self, url_for(GET_EVENT_TYPES_URL), options)
         rescue Exception => e
           @error = '500'
@@ -1161,7 +1665,7 @@ module OneLogin
             params: params
           }
-          return Cursor.new(self.class, url_for(GET_EVENTS_URL), options)
+          return Cursor.new(self, url_for(GET_EVENTS_URL), options)
         rescue Exception => e
           @error = '500'
@@ -1183,6 +1687,13 @@ module OneLogin
         prepare_token
         begin
+          if event_id.nil? || event_id.to_s.empty?
+            @error = '400'
+            @error_description = "event_id is required"
+            @error_attribute = "event_id"
+            return
+          end
           url = url_for(GET_EVENT_URL, event_id)
           response = self.class.get(
@@ -1269,7 +1780,7 @@ module OneLogin
             params: params
           }
-          return Cursor.new(self.class, url_for(GET_GROUPS_URL), options)
+          return Cursor.new(self, url_for(GET_GROUPS_URL), options)
         rescue Exception => e
           @error = '500'
@@ -1291,6 +1802,13 @@ module OneLogin
         prepare_token
         begin
+          if group_id.nil? || group_id.to_s.empty?
+            @error = '400'
+            @error_description = "group_id is required"
+            @error_attribute = "group_id"
+            return
+          end
           url = url_for(GET_GROUP_URL, group_id)
           response = self.class.get(
@@ -1385,6 +1903,19 @@ module OneLogin
         prepare_token
         begin
+          if app_id.nil? || app_id.to_s.empty?
+            @error = '400'
+            @error_description = "app_id is required"
+            @error_attribute = "app_id"
+            return
+          end
+          if device_id.nil? || device_id.to_s.empty?
+            @error = '400'
+            @error_description = "device_id is required"
+            @error_attribute = "device_id"
+            return
+          end
           if url_endpoint.nil? || url_endpoint.empty?
             url = url_for(GET_SAML_VERIFY_FACTOR)
@@ -1439,6 +1970,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(GET_FACTORS_URL, user_id)
           response = self.class.get(
@@ -1482,6 +2020,20 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
+          if factor_id.nil? || factor_id.to_s.empty?
+            @error = '400'
+            @error_description = "factor_id is required"
+            @error_attribute = "factor_id"
+            return
+          end
           url = url_for(ENROLL_FACTOR_URL, user_id)
           data = {
@@ -1525,6 +2077,13 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
           url = url_for(GET_ENROLLED_FACTORS_URL, user_id)
           response = self.class.get(
@@ -1567,6 +2126,20 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
+          if device_id.nil? || device_id.to_s.empty?
+            @error = '400'
+            @error_description = "device_id is required"
+            @error_attribute = "device_id"
+            return
+          end
           url = url_for(ACTIVATE_FACTOR_URL, user_id, device_id)
           response = self.class.post(
@@ -1611,6 +2184,21 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
+          if device_id.nil? || device_id.to_s.empty?
+            @error = '400'
+            @error_description = "device_id is required"
+            @error_attribute = "device_id"
+            return
+          end
           url = url_for(VERIFY_FACTOR_URL, user_id, device_id)
           data = {
@@ -1659,6 +2247,21 @@ module OneLogin
         prepare_token
         begin
+          if user_id.nil? || user_id.to_s.empty?
+            @error = '400'
+            @error_description = "user_id is required"
+            @error_attribute = "user_id"
+            return
+          end
+          if device_id.nil? || device_id.to_s.empty?
+            @error = '400'
+            @error_description = "device_id is required"
+            @error_attribute = "device_id"
+            return
+          end
           url = url_for(REMOVE_FACTOR_URL, user_id, device_id)
           response = self.class.delete(
@@ -1697,6 +2300,13 @@ module OneLogin
         prepare_token
         begin
+          if email.nil? || email.to_s.empty?
+            @error = '400'
+            @error_description = "email is required"
+            @error_attribute = "email"
+            return
+          end
           url = url_for(GENERATE_INVITE_LINK_URL)
           data = {
@@ -1747,7 +2357,7 @@ module OneLogin
             'email'=> email
           }
-          unless personal_email.nil? || personal_email.empty?
+          unless personal_email.nil? || personal_email.to_s.empty?
             data['personal_email'] = personal_email
           end
@@ -1950,6 +2560,12 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(GET_PRIVILEGE_URL, privilege_id)
@@ -1991,9 +2607,16 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(UPDATE_PRIVILEGE_URL, privilege_id)
-         statement_data = []
+          statement_data = []
           for statement in statements
             if statement.instance_of?(OneLogin::Api::Models::Statement)
               statement_data << {
@@ -2053,6 +2676,13 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(DELETE_PRIVILEGE_URL, privilege_id)
           response = self.class.delete(
@@ -2086,13 +2716,20 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           options = {
             headers: authorized_headers,
             max_results: @max_results,
             container: 'roles'
           }
-          return Cursor.new(self.class, url_for(GET_ROLES_ASSIGNED_TO_PRIVILEGE_URL, privilege_id), options)
+          return Cursor.new(self, url_for(GET_ROLES_ASSIGNED_TO_PRIVILEGE_URL, privilege_id), options)
         rescue Exception => e
           @error = '500'
@@ -2115,6 +2752,13 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(ASSIGN_ROLES_TO_PRIVILEGE_URL, privilege_id)
           data = {
@@ -2155,6 +2799,13 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(REMOVE_ROLE_FROM_PRIVILEGE_URL, privilege_id, role_id)
           response = self.class.delete(
@@ -2188,13 +2839,20 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           options = {
             headers: authorized_headers,
             max_results: @max_results,
             container: 'users'
           }
-          return Cursor.new(self.class, url_for(GET_USERS_ASSIGNED_TO_PRIVILEGE_URL, privilege_id), options)
+          return Cursor.new(self, url_for(GET_USERS_ASSIGNED_TO_PRIVILEGE_URL, privilege_id), options)
         rescue Exception => e
           @error = '500'
@@ -2217,6 +2875,13 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(ASSIGN_USERS_TO_PRIVILEGE_URL, privilege_id)
           data = {
@@ -2256,6 +2921,13 @@ module OneLogin
         prepare_token
         begin
+          if privilege_id.nil? || privilege_id.to_s.empty?
+            @error = '400'
+            @error_description = "privilege_id is required"
+            @error_attribute = "privilege_id"
+            return
+          end
           url = url_for(REMOVE_USER_FROM_PRIVILEGE_URL, privilege_id, user_id)
           response = self.class.delete(