onelogin 1.0.1 → 1.0.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 03bb1cfe01588bca301fc933bc1dacd1c2cceffe
-  data.tar.gz: ec4855fd9715e14b73d47931e7be472cbd4dd554
+  metadata.gz: 8a853d4babb81062c1848521170d52d214790795
+  data.tar.gz: b05724bd5d05456367fc6156a1a142e1520a1dc4
 SHA512:
-  metadata.gz: fda3d372797a79145e935e7101e15e54ffdd802eb6dd7732a5a5a84b86f0c31bd9b4ead28013a64105b11713181e2074e90fe3809bc3f30e62a3696ea63db29b
-  data.tar.gz: e68a4cf6bbb4e0ff7436256ca76ad9a7024042afefc9902fa35535e01056b0bca0b7b422e5f856bb27834f26542e8f103ad3c94ae88d1c65367cbbe427b17607
+  metadata.gz: d0d58e6cd9c59d3dc9c532c48884c316a1e14f5f59f6524de078c4caea08df37c5a9e92d194250846316f72a520c1ac579d95d9ca208b1a12a7f4937d9875ca5
+  data.tar.gz: 2f6ac6069d8ca15c0f705c103be55f50dd2258fdc8a381a64557fd7b1a08f91906ea87e2321d8035cd4eca752fcc78fa1e6c513f2102ab10541ac38ad5884268

data/README.md

@@ -238,24 +238,6 @@ created_user = client.create_user(new_user_params)
 # Delete User
 result = client.delete_user(created_user.id)
 
-# Create Session Login Token
-session_login_token_params = {
-    username_or_email: "user@example.com",
-    password: "Aa765431-XxX",
-    subdomain: "example-onelogin-subdomain"
-}
-session_token_data = client.create_session_login_token(session_login_token_params)
-
-# Create Session Login Token MFA , after verify
-session_login_token_mfa_params = {
-    username_or_email: "usermfa@example.com",
-    password: "Aa765432-YyY",
-    subdomain: "example-onelogin-subdomain"
-}
-session_token_mfa_data = client.create_session_login_token(session_login_token_mfa_params)
-otp_token = "000000" # We get this value from OTP device
-session_token_data2 = client.get_session_token_verified(session_token_mfa_data.devices[0].id,session_token_mfa_data.state_token, otp_token)
-
 # Get EventTypes
 event_types = client.get_event_types
 
@@ -303,6 +285,44 @@ mfa = saml_endpoint_response2.mfa
 otp_token = "000000"
 saml_endpoint_response_after_verify = client.get_saml_assertion_verifying(app_id, mfa.devices[0].id, mfa.state_token, "78395727", nil)
 
+# Create Session Login Token
+session_login_token_params = {
+    username_or_email: "user@example.com",
+    password: "Aa765431-XxX",
+    subdomain: "example-onelogin-subdomain"
+}
+session_token_data = client.create_session_login_token(session_login_token_params)
+
+# Create Session Via API Token
+cookie = client..create_session_via_token(session_token_data.session_token)
+
+# Create Session Login Token MFA , after verify
+session_login_token_mfa_params = {
+    username_or_email: "usermfa@example.com",
+    password: "Aa765432-YyY",
+    subdomain: "example-onelogin-subdomain"
+}
+session_token_mfa_data = client.create_session_login_token(session_login_token_mfa_params)
+otp_token = "000000" # We get this value from OTP device
+session_token_data2 = client.get_session_token_verified(session_token_mfa_data.devices.first.id,session_token_mfa_data.state_token, otp_token)
+
+user_id = 00000000
+# Get Available Authentication Factors
+auth_factors = client.get_factors(user_id)
+
+# Enroll an Authentication Factor
+enroll_factor = client.enroll_factor(user_id, auth_factors.first.id, 'My Device', '+14156456830')
+
+# Get Enrolled Authentication Factors
+otp_devices = client.get_enrolled_factors(user_id)
+ 
+# Activate an Authentication Factor
+device_id = 0000000
+enrollment_response = client.activate_factor(user_id, device_id)
+
+# Verify an Authentication Factor
+result = client.verify_factor(user_id, device_id, otp_token="4242342423")
+
 # Generate Invite Link
 url_link = client.generate_invite_link("user@example.com")
 

data/examples/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gem 'onelogin'

data/examples/Gemfile.lock

@@ -0,0 +1,21 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    httparty (0.16.0)
+      multi_xml (>= 0.5.2)
+    mini_portile2 (2.3.0)
+    multi_xml (0.6.0)
+    nokogiri (1.8.2)
+      mini_portile2 (~> 2.3.0)
+    onelogin (1.0.1)
+      httparty (>= 0.13.7)
+      nokogiri (>= 1.6.3.1)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  onelogin
+
+BUNDLED WITH
+   1.16.0.pre.3

data/examples/README.md

@@ -0,0 +1,19 @@
+# Ruby SDK Examples
+
+This folder contains various samples that make use of the OneLogin
+Ruby SDK.
+
+It assumes that you have a valid OneLogin `client_id` and `client_secret`
+with the appropriate level of access for each example.
+
+## Try the examples in terminal
+
+First install the OneLogin gem and any other required gems
+```shell
+bundle install
+```
+
+Then update your API credentials in the example file and run it
+```shell
+ruby create-user.rb
+```

data/examples/all-users-to-csv.rb

@@ -0,0 +1,47 @@
+require 'onelogin'
+
+#
+# This example shows how you can export user details from OneLogin using the Ruby SDK
+#
+# Usage:
+# 1. Set your own CLIENT_ID and CLIENT_SECRET below
+# 2. From terminal run "ruby all-users-to-csv.rb" to extract all users including
+#    any custom attributes that might have been defined for the each user
+#
+
+client = OneLogin::Api::Client.new(
+    client_id: 'ONELOGIN_CLIENT_ID',
+    client_secret:'ONELOGIN_CLIENT_SECRET',
+    region: 'us'
+)
+
+attribute_names = ['id', 'external_id', 'email', 'username', 'firstname', 'lastname', 'distinguished_name',
+                  'phone', 'company', 'department', 'status', 'member_of', 'samaccountname', 'userprincipalname',
+                  'group_id', 'role_ids', 'custom_attributes', 'openid_name', 'locale_code', 'comment', 'directory_id',
+                  'manager_ad_id', 'trusted_idp_id', 'activated_at', 'created_at', 'updated_at',
+                  'password_changed_at', 'invitation_sent_at', 'invalid_login_attempts', 'last_login', 'locked_until']
+
+custom_attribute_names = client.get_custom_attributes
+
+CSV.open('users.csv', 'wb') do |csv|
+  # header row
+  csv << attribute_names + custom_attribute_names
+
+  client.get_users.each do |user|
+
+    row = []
+
+    # standard attributes
+    attribute_names.each do |attribute_name|
+      row << user.send(attribute_name)
+    end
+
+    # custom attributes
+    custom_attribute_names.each do |attribute_name|
+      row << user.custom_attributes[attribute_name] unless user.custom_attributes.empty?
+    end
+
+    csv << row
+  end
+end
+

data/examples/create-user.rb

@@ -0,0 +1,16 @@
+require 'onelogin'
+
+client = OneLogin::Api::Client.new(
+    client_id: 'ONELOGIN_CLIENT_ID',
+    client_secret:'ONELOGIN_CLIENT_SECRET',
+    region: 'us'
+)
+
+user = client.create_user(
+  firstname: "Mick",
+  lastname: "Fanning",
+  email: "mick@onelogin.com",
+  username: "mick"
+)
+
+puts user

data/examples/events-to-csv.rb

@@ -0,0 +1,77 @@
+require 'onelogin'
+require 'optparse'
+require 'optparse/time'
+
+#
+# This example shows how you can export events from OneLogin using the Ruby SDK
+#
+# Usage:
+# 1. Set your own CLIENT_ID and CLIENT_SECRET below
+# 2. From terminal run "ruby events-to-csv.rb" for the last 1000 events
+# 3. Use the command line args to filter events
+#
+# e.g. "ruby events-to-csv.rb -t 5 -s 2018-01-01" for login events since Jan 1 2018
+#
+
+
+# Parse CLI arguments
+options = {}
+
+OptionParser.new do |opts|
+  opts.banner = "Usage: events-to-csv.rb [options]"
+
+  opts.on("-sSINCE", "--since=SINCE", Time, "Events after this date") do |s|
+    options[:since] = s.iso8601
+  end
+
+  opts.on("-uUNTIL", "--UNTIL=UNTIL", Time, "Events before this date") do |u|
+    options[:until] = u.iso8601
+  end
+
+  opts.on("-lLIMIT", "--limit=LIMIT", Integer, "Only return this many events, Default 1000") do |l|
+    options[:limit] = l
+  end
+
+  opts.on("-tTYPE", "--type=TYPE", Integer, "Filter by event type id") do |t|
+    options[:event_type_id] = t
+  end
+end.parse!
+
+# Fetch the events
+client = OneLogin::Api::Client.new(
+    client_id: 'ONELOGIN_CLIENT_ID',
+    client_secret: 'ONELOGIN_CLIENT_SECRET',
+    region: 'us'
+)
+
+attribute_names = ['id', 'created_at', 'account_id', 'user_id', 'user_name', 'event_type_id',
+                  'notes', 'ipaddr', 'actor_user_id', 'actor_user_name', 'assuming_acting_user_id',
+                  'role_id', 'role_name', 'app_id', 'group_id', 'group_name', 'otp_device_id',
+                  'otp_device_name', 'policy_id', 'policy_name', 'actor_system', 'custom_message',
+                  'operation_name', 'directory_sync_run_id', 'directory_id', 'resolution', 'client_id',
+                  'resource_type_id', 'error_description']
+
+counter = 0
+limit = options[:limit] || 1000
+
+# We remove limit from options parsed to the api as we want to fetch
+# the max number of records possible and then use the cursor that is
+# built into the ruby sdk to limit the results
+options.delete(:limit)
+
+CSV.open('events.csv', 'wb') do |csv|
+  puts "Exporting events to events.csv"
+
+  # header row
+  csv << attribute_names
+
+  # fetch the events
+  client.get_events(options).take(limit).each do |event|
+    csv << attribute_names.map { |attribute_name| event.send(attribute_name) }
+  end
+end
+
+puts "Exported #{counter} events to events.csv"
+
+
+

data/examples/list-users.rb

@@ -0,0 +1,15 @@
+require 'onelogin'
+
+client = OneLogin::Api::Client.new(
+    client_id: 'ONELOGIN_CLIENT_ID',
+    client_secret:'ONELOGIN_CLIENT_SECRET',
+    region: 'us'
+)
+
+# List all of the users in your account
+# the sdk uses a cursor to keep requesting
+# chunks of users as you loop through
+
+client.get_users.each do |user|
+  puts "#{user.id} - #{user.firstname} - #{user.email}"
+end

data/lib/onelogin/api/client.rb

@@ -900,17 +900,13 @@ module OneLogin
         begin
           url = url_for(SESSION_LOGIN_TOKEN_URL)
 
-          unless allowed_origin.nil? || allowed_origin.empty?
-            headers['Custom-Allowed-Origin-Header-1'] = allowed_origin
-          end
-
           if query_params.nil? || !query_params.has_key?('username_or_email') || !query_params.has_key?('password') || !query_params.has_key?('subdomain')
             raise "username_or_email, password and subdomain are required parameters"
           end
 
           response = HTTParty.post(
             url,
-            headers: authorized_headers,
+            headers: authorized_headers.merge({ 'Custom-Allowed-Origin-Header-1' => allowed_origin }),
             body: query_params.to_json
           )
 
@@ -973,6 +969,45 @@ module OneLogin
         nil
       end
 
+      # Post a session token to this API endpoint to start a session and set a cookie to log a user into an app.
+      #
+      # @param session_token [String] The session token
+      #
+      # @return [String] return the 'Set-Cookie' value of the HTTP Header if any
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/login-page/create-session-via-token Create Session Via API Token documentation}
+      def create_session_via_token(session_token)
+        clean_error
+
+        begin
+          url = url_for(SESSION_API_TOKEN_URL)
+
+          data = {
+            'session_token'=> session_token
+          }
+
+          response = HTTParty.post(
+            url,
+            headers: headers,
+            body: data.to_json
+          )
+
+          if response.code == 200
+            if response.headers.key?('Set-Cookie')
+              return response.headers['Set-Cookie']
+            end
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+
+        nil
+      end
+
       ################
       # Role Methods #
       ################
@@ -1350,6 +1385,229 @@ module OneLogin
         nil
       end
 
+      #############################
+      # Multi-factor Auth Methods #
+      #############################
+
+      # Returns a list of authentication factors that are available for user enrollment via API.
+      #
+      # @param user_id [Integer] The id of the user.
+      #
+      # @return [Array] AuthFactor list
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/multi-factor-authentication/available-factors Get Available Authentication Factors documentation}
+      def get_factors(user_id)
+        clean_error
+        prepare_token
+
+        begin
+          url = url_for(GET_FACTORS_URL, user_id)
+
+          response = HTTParty.get(
+            url,
+            :headers => authorized_headers
+          )
+
+          factors = []
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if json_data and json_data['data'] and json_data['data']['auth_factors']
+              json_data['data']['auth_factors'].each do |factor_data|
+                factors << OneLogin::Api::Models::AuthFactor.new(factor_data)
+              end
+            end
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+          end
+          return factors
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+
+        nil
+      end
+
+      # Enroll a user with a given authentication factor.
+      #
+      # @param user_id [Integer] The id of the user.
+      # @param factor_id [Integer] The identifier of the factor to enroll the user with.
+      # @param display_name [String] A name for the users device.
+      # @param number [String] The phone number of the user in E.164 format.
+      #
+      # @return [OTPDevice] MFA device
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/multi-factor-authentication/enroll-factor Enroll an Authentication Factor documentation}
+      def enroll_factor(user_id, factor_id, display_name, number)
+        clean_error
+        prepare_token
+
+        begin
+          url = url_for(ENROLL_FACTOR_URL, user_id)
+
+          data = {
+            'factor_id'=> factor_id.to_i,
+            'display_name'=> display_name,
+            'number'=> number
+          }
+
+          response = HTTParty.post(
+            url,
+            :headers => authorized_headers,
+            body: data.to_json
+          )
+
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if json_data and json_data['data']
+              return OneLogin::Api::Models::OTPDevice.new(json_data['data'][0])
+            end
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+
+        nil
+      end
+
+      # Return a list of authentication factors registered to a particular user for multifactor authentication (MFA)
+      #
+      # @param user_id [Integer] The id of the user.
+      #
+      # @return [Array] OTPDevice List
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/multi-factor-authentication/enrolled-factors Get Enrolled Authentication Factors documentation}
+      def get_enrolled_factors(user_id)
+        clean_error
+        prepare_token
+
+        begin
+          url = url_for(GET_ENROLLED_FACTORS_URL, user_id)
+
+          response = HTTParty.get(
+            url,
+            :headers => authorized_headers
+          )
+
+          otp_devices = []
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if json_data and json_data['data'] and json_data['data']['otp_devices']
+              json_data['data']['otp_devices'].each do |otp_device_data|
+                otp_devices << OneLogin::Api::Models::OTPDevice.new(otp_device_data)
+              end
+            end
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+          end
+          return otp_devices
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+
+        nil
+      end
+
+      # Triggers an SMS or Push notification containing a One-Time Password (OTP)
+      # that can be used to authenticate a user with the Verify Factor call.
+      #
+      # @param user_id [Integer] The id of the user.
+      # @param device_id [Integer] The id of the MFA device.
+      #
+      # @return [FactorEnrollmentResponse] Info with User Id, Device Id, and OTP Device
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/multi-factor-authentication/activate-factor Activate an Authentication Factor documentation}
+      def activate_factor(user_id, device_id)
+        clean_error
+        prepare_token
+
+        begin
+          url = url_for(ACTIVATE_FACTOR_URL, user_id, device_id)
+
+          response = HTTParty.post(
+            url,
+            headers: authorized_headers
+          )
+
+          if response.code == 200
+            json_data = JSON.parse(response.body)
+            if json_data && json_data['data']
+              return OneLogin::Api::Models::FactorEnrollmentResponse.new(json_data['data'][0])
+            end
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+
+        nil
+      end
+
+      # Authenticates a one-time password (OTP) code provided by a multifactor authentication (MFA) device.
+      #
+      # @param user_id [Integer] The id of the user.
+      # @param device_id [Integer] The id of the MFA device.
+      # @param otp_token [String] OTP code provided by the device or SMS message sent to user.
+      #                           When a device like OneLogin Protect that supports Push has
+      #                           been used you do not need to provide the otp_token.
+      # @param state_token [String] The state_token is returned after a successful request
+      #                             to Enroll a Factor or Activate a Factor.
+      #                             MUST be provided if the needs_trigger attribute from
+      #                             the proceeding calls is set to true.
+      #
+      # @return [Boolean] True if Factor is verified
+      #
+      # @see {https://developers.onelogin.com/api-docs/1/multi-factor-authentication/verify-factor Verify an Authentication Factor documentation}
+      def verify_factor(user_id, device_id, otp_token=nil, state_token=nil)
+        clean_error
+        prepare_token
+
+        begin
+          url = url_for(VERIFY_FACTOR_URL, user_id, device_id)
+
+          data = {
+            'user_id'=> user_id,
+            'device_id'=> device_id
+          }
+
+          unless otp_token.nil? || otp_token.empty?
+            data['otp_token'] = otp_token
+          end
+
+          unless state_token.nil? || state_token.empty?
+            data['state_token'] = state_token
+          end
+
+          response = HTTParty.post(
+            url,
+            headers: authorized_headers,
+            body: data.to_json
+          )
+
+          if response.code == 200
+            return handle_operation_response(response)
+          else
+            @error = response.code.to_s
+            @error_description = extract_error_message_from_response(response)
+          end
+        rescue Exception => e
+          @error = '500'
+          @error_description = e.message
+        end
+
+        false
+      end
+
       ########################
       # Invite Links Methods #
       ########################

data/lib/onelogin/api/models/auth_factor.rb

@@ -0,0 +1,16 @@
+module OneLogin
+  module Api
+    module Models
+
+      class AuthFactor
+
+        attr_accessor :id, :name
+
+        def initialize(data)
+          @id = data['factor_id']
+          @name = data['name'].to_s
+        end
+      end
+    end
+  end
+end

data/lib/onelogin/api/models/factor_enrollment_response.rb

@@ -0,0 +1,22 @@
+module OneLogin
+  module Api
+    module Models
+
+      class FactorEnrollmentResponse
+
+        attr_accessor :device_id, :user_id, :active, :auth_factor_name,
+                      :type_display_name, :user_display_name, :state_token
+
+        def initialize(data)
+          @device_id = data['device_id']? data['device_id'].to_i : nil
+          @user_id = data['id']? data['id'].to_i : nil
+          @active = data['active']
+          @auth_factor_name = data['auth_factor_name']
+          @type_display_name = data['type_display_name']
+          @user_display_name = data['user_display_name']
+          @state_token = data['state_token']
+        end
+      end
+    end
+  end
+end

data/lib/onelogin/api/models/otp_device.rb

@@ -0,0 +1,25 @@
+module OneLogin
+  module Api
+    module Models
+
+      class OTPDevice
+
+        attr_accessor :id, :active, :default, :auth_factor_name, :phone_number,
+                      :type_display_name, :needs_trigger, :user_display_name,
+                      :state_token
+
+        def initialize(data)
+          @id = data['id']? data['id'].to_i : nil
+          @active = data['active']
+          @default = data['default']
+          @auth_factor_name = data['auth_factor_name']
+          @phone_number = data['phone_number']
+          @type_display_name = data['type_display_name']
+          @needs_trigger = data['needs_trigger']
+          @user_display_name = data['user_display_name']
+          @state_token = data['state_token']
+        end
+      end
+    end
+  end
+end

data/lib/onelogin/api/models/user.rb

@@ -7,7 +7,7 @@ module OneLogin
         attr_accessor :id, :external_id, :email, :username, :firstname, :lastname, :distinguished_name,
                       :phone, :company, :department, :status, :member_of, :samaccountname, :userprincipalname,
                       :group_id, :role_ids, :custom_attributes, :openid_name, :locale_code, :comment, :directory_id,
-                      :manager_ad_id, :trusted_idp_id, :activated_at, :created_at, :updated_at,
+                      :title, :manager_ad_id, :trusted_idp_id, :activated_at, :created_at, :updated_at,
                       :password_changed_at, :invitation_sent_at, :invalid_login_attempts, :last_login, :locked_until
 
         def initialize(data)
@@ -21,6 +21,7 @@ module OneLogin
           @phone = data['phone'].to_s
           @company = data['company'].to_s
           @department = data['department'].to_s
+          @title = data['title'].to_s
           @status = data['status']
           @member_of = data['member_of'].to_s
           @samaccountname = data['samaccountname'].to_s
@@ -39,7 +40,7 @@ module OneLogin
           @password_changed_at = data['password_changed_at']? Time.iso8601(data['password_changed_at']) : nil
           @invitation_sent_at = data['invitation_sent_at']? Time.iso8601(data['invitation_sent_at']) : nil
           @invalid_login_attempts = data['invalid_login_attempts']
-          @last_login = data['last_login']? Time.iso8601(data['last_login']) : nil          
+          @last_login = data['last_login']? Time.iso8601(data['last_login']) : nil
           @locked_until = data['locked_until']? Time.iso8601(data['locked_until']) : nil
         end
 
@@ -63,6 +64,7 @@ module OneLogin
           user_data.phone = @phone
           user_data.company = @company
           user_data.department = @department
+          user_data.title = @title
           user_data.status = @status
           user_data.member_of = @member_of
           user_data.samaccountname = @samaccountname
@@ -73,7 +75,7 @@ module OneLogin
           user_data.manager_ad_id = @manager_ad_id
           user_data.trusted_idp_id = @trusted_idp_id
           return user_data
-        end       
+        end
 
         def get_user_metadata
           user_metadata = UserMetadata.new
@@ -106,6 +108,7 @@ module OneLogin
             "phone"=> self.phone,
             "company"=> self.company,
             "department"=> self.department,
+            "title"=> self.title,
             "status"=> self.status,
             "member_of"=> self.member_of,
             "samaccountname"=> self.samaccountname,
@@ -122,4 +125,4 @@ module OneLogin
       end
     end
   end
-end
+end

data/lib/onelogin/api/models/user_data.rb

@@ -6,7 +6,7 @@ module OneLogin
 
         attr_accessor :id, :external_id, :email, :username, :firstname, :lastname, :distinguished_name,
                       :phone, :company, :department, :status, :member_of, :samaccountname, :userprincipalname,
-                      :openid_name, :locale_code, :directory_id, :manager_ad_id, :trusted_idp_id
+                      :title, :openid_name, :locale_code, :directory_id, :manager_ad_id, :trusted_idp_id
       end
     end
   end

data/lib/onelogin/api/models.rb

@@ -1,10 +1,13 @@
 require 'onelogin/api/models/app'
+require 'onelogin/api/models/auth_factor'
 require 'onelogin/api/models/device'
 require 'onelogin/api/models/event'
 require 'onelogin/api/models/event_type'
+require 'onelogin/api/models/factor_enrollment_response'
 require 'onelogin/api/models/group'
 require 'onelogin/api/models/mfa'
 require 'onelogin/api/models/onelogin_token'
+require 'onelogin/api/models/otp_device'
 require 'onelogin/api/models/rate_limit'
 require 'onelogin/api/models/role'
 require 'onelogin/api/models/saml_endpoint_response'

data/lib/onelogin/api/util/constants.rb

@@ -53,6 +53,13 @@ module OneLogin
         GET_SAML_ASSERTION_URL = "https://api.%s.onelogin.com/api/1/saml_assertion"
         GET_SAML_VERIFY_FACTOR = "https://api.%s.onelogin.com/api/1/saml_assertion/verify_factor"
 
+        # Multi-Factor Authentication URLs
+        GET_FACTORS_URL = "https://api.%s.onelogin.com/api/1/users/%s/auth_factors"
+        ENROLL_FACTOR_URL = "https://api.%s.onelogin.com/api/1/users/%s/otp_devices"
+        GET_ENROLLED_FACTORS_URL = "https://api.%s.onelogin.com/api/1/users/%s/otp_devices"
+        ACTIVATE_FACTOR_URL = "https://api.%s.onelogin.com/api/1/users/%s/otp_devices/%s/trigger"
+        VERIFY_FACTOR_URL = "https://api.%s.onelogin.com/api/1/users/%s/otp_devices/%s/verify"
+
         # Invite Link URLS
         GENERATE_INVITE_LINK_URL = "https://api.%s.onelogin.com/api/1/invites/get_invite_link"
         SEND_INVITE_LINK_URL = "https://api.%s.onelogin.com/api/1/invites/send_invite_link"

data/lib/onelogin/api/util/url_builder.rb

@@ -7,12 +7,15 @@ module OneLogin
         #
         # @param base [String] Base of the endpoint
         # @param obj_id [String, nil] Id of the referenced object
+        # @param extra_id [String, nil] Id of the secundary referenced object
         #
-        def url_for(base, obj_id=nil)
+        def url_for(base, obj_id=nil, extra_id=nil)
           if obj_id.nil? || obj_id.to_s.empty?
             base % [@region]
-          else
+          elsif extra_id.nil? || extra_id.to_s.empty?
             base % [@region, obj_id]
+          else
+            base % [@region, obj_id, extra_id]
           end
         end
       end

data/lib/onelogin/version.rb

@@ -1,3 +1,3 @@
 module OneLogin
-  VERSION = "1.0.1"
-end
+  VERSION = "1.0.3"
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: onelogin
 version: !ruby/object:Gem::Version
-  version: 1.0.1
+  version: 1.0.3
 platform: ruby
 authors:
 - OneLogin
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2018-02-22 00:00:00.000000000 Z
+date: 2018-03-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: httparty
@@ -99,19 +99,29 @@ files:
 - Rakefile
 - bin/console
 - bin/setup
+- examples/Gemfile
+- examples/Gemfile.lock
+- examples/README.md
+- examples/all-users-to-csv.rb
+- examples/create-user.rb
+- examples/events-to-csv.rb
+- examples/list-users.rb
 - lib/onelogin.rb
 - lib/onelogin/api.rb
 - lib/onelogin/api/client.rb
 - lib/onelogin/api/cursor.rb
 - lib/onelogin/api/models.rb
 - lib/onelogin/api/models/app.rb
+- lib/onelogin/api/models/auth_factor.rb
 - lib/onelogin/api/models/device.rb
 - lib/onelogin/api/models/embed_app.rb
 - lib/onelogin/api/models/event.rb
 - lib/onelogin/api/models/event_type.rb
+- lib/onelogin/api/models/factor_enrollment_response.rb
 - lib/onelogin/api/models/group.rb
 - lib/onelogin/api/models/mfa.rb
 - lib/onelogin/api/models/onelogin_token.rb
+- lib/onelogin/api/models/otp_device.rb
 - lib/onelogin/api/models/rate_limit.rb
 - lib/onelogin/api/models/role.rb
 - lib/onelogin/api/models/saml_endpoint_response.rb