RubyGems - stripe - Versions diffs - 4.9.0 → 5.28.0 - Mend

stripe 4.9.0 → 5.28.0

Files changed (251) hide show

checksums.yaml +4 -4
data/.editorconfig +10 -0
data/.rubocop.yml +56 -8
data/.rubocop_todo.yml +8 -25
data/.travis.yml +4 -8
data/.vscode/extensions.json +7 -0
data/.vscode/settings.json +8 -0
data/CHANGELOG.md +206 -2
data/CODE_OF_CONDUCT.md +77 -0
data/Gemfile +10 -13
data/README.md +178 -58
data/Rakefile +8 -7
data/VERSION +1 -1
data/lib/stripe.rb +41 -195
data/lib/stripe/api_operations/create.rb +1 -1
data/lib/stripe/api_operations/delete.rb +28 -2
data/lib/stripe/api_operations/list.rb +1 -12
data/lib/stripe/api_operations/nested_resource.rb +38 -28
data/lib/stripe/api_operations/request.rb +47 -8
data/lib/stripe/api_operations/save.rb +8 -7
data/lib/stripe/api_resource.rb +52 -3
data/lib/stripe/connection_manager.rb +162 -0
data/lib/stripe/error_object.rb +94 -0
data/lib/stripe/errors.rb +31 -10
data/lib/stripe/instrumentation.rb +82 -0
data/lib/stripe/list_object.rb +41 -7
data/lib/stripe/multipart_encoder.rb +131 -0
data/lib/stripe/oauth.rb +4 -3
data/lib/stripe/object_types.rb +101 -0
data/lib/stripe/resources.rb +84 -0
data/lib/stripe/{account.rb → resources/account.rb} +50 -27
data/lib/stripe/{account_link.rb → resources/account_link.rb} +2 -1
data/lib/stripe/resources/alipay_account.rb +34 -0
data/lib/stripe/{apple_pay_domain.rb → resources/apple_pay_domain.rb} +2 -1
data/lib/stripe/resources/application_fee.rb +14 -0
data/lib/stripe/resources/application_fee_refund.rb +30 -0
data/lib/stripe/{balance.rb → resources/balance.rb} +2 -1
data/lib/stripe/{balance_transaction.rb → resources/balance_transaction.rb} +2 -5
data/lib/stripe/resources/bank_account.rb +43 -0
data/lib/stripe/resources/billing_portal/session.rb +12 -0
data/lib/stripe/{bitcoin_receiver.rb → resources/bitcoin_receiver.rb} +4 -3
data/lib/stripe/{bitcoin_transaction.rb → resources/bitcoin_transaction.rb} +1 -1
data/lib/stripe/resources/capability.rb +33 -0
data/lib/stripe/{card.rb → resources/card.rb} +13 -4
data/lib/stripe/resources/charge.rb +23 -0
data/lib/stripe/resources/checkout/session.rb +16 -0
data/lib/stripe/{country_spec.rb → resources/country_spec.rb} +2 -1
data/lib/stripe/{coupon.rb → resources/coupon.rb} +3 -2
data/lib/stripe/resources/credit_note.rb +33 -0
data/lib/stripe/resources/credit_note_line_item.rb +7 -0
data/lib/stripe/resources/customer.rb +36 -0
data/lib/stripe/resources/customer_balance_transaction.rb +30 -0
data/lib/stripe/resources/discount.rb +7 -0
data/lib/stripe/resources/dispute.rb +22 -0
data/lib/stripe/{ephemeral_key.rb → resources/ephemeral_key.rb} +6 -2
data/lib/stripe/{event.rb → resources/event.rb} +2 -1
data/lib/stripe/{exchange_rate.rb → resources/exchange_rate.rb} +2 -1
data/lib/stripe/{file.rb → resources/file.rb} +9 -11
data/lib/stripe/{file_link.rb → resources/file_link.rb} +3 -2
data/lib/stripe/resources/invoice.rb +74 -0
data/lib/stripe/{invoice_item.rb → resources/invoice_item.rb} +3 -2
data/lib/stripe/{invoice_line_item.rb → resources/invoice_line_item.rb} +1 -1
data/lib/stripe/resources/issuing/authorization.rb +34 -0
data/lib/stripe/resources/issuing/card.rb +25 -0
data/lib/stripe/{issuing → resources/issuing}/card_details.rb +1 -1
data/lib/stripe/{issuing → resources/issuing}/cardholder.rb +3 -2
data/lib/stripe/resources/issuing/dispute.rb +25 -0
data/lib/stripe/{issuing → resources/issuing}/transaction.rb +3 -2
data/lib/stripe/resources/line_item.rb +7 -0
data/lib/stripe/resources/login_link.rb +14 -0
data/lib/stripe/resources/mandate.rb +8 -0
data/lib/stripe/resources/order.rb +33 -0
data/lib/stripe/{order_return.rb → resources/order_return.rb} +2 -1
data/lib/stripe/resources/payment_intent.rb +43 -0
data/lib/stripe/resources/payment_method.rb +33 -0
data/lib/stripe/resources/payout.rb +33 -0
data/lib/stripe/{person.rb → resources/person.rb} +8 -3
data/lib/stripe/{plan.rb → resources/plan.rb} +2 -1
data/lib/stripe/resources/price.rb +12 -0
data/lib/stripe/{product.rb → resources/product.rb} +4 -3
data/lib/stripe/resources/promotion_code.rb +12 -0
data/lib/stripe/resources/radar/early_fraud_warning.rb +12 -0
data/lib/stripe/{radar → resources/radar}/value_list.rb +3 -2
data/lib/stripe/{radar → resources/radar}/value_list_item.rb +3 -2
data/lib/stripe/{recipient.rb → resources/recipient.rb} +3 -6
data/lib/stripe/{recipient_transfer.rb → resources/recipient_transfer.rb} +1 -1
data/lib/stripe/{refund.rb → resources/refund.rb} +2 -1
data/lib/stripe/{reporting → resources/reporting}/report_run.rb +3 -2
data/lib/stripe/{reporting → resources/reporting}/report_type.rb +3 -2
data/lib/stripe/resources/reversal.rb +29 -0
data/lib/stripe/resources/review.rb +21 -0
data/lib/stripe/resources/setup_attempt.rb +10 -0
data/lib/stripe/resources/setup_intent.rb +33 -0
data/lib/stripe/{sigma → resources/sigma}/scheduled_query_run.rb +3 -2
data/lib/stripe/{sku.rb → resources/sku.rb} +4 -3
data/lib/stripe/resources/source.rb +47 -0
data/lib/stripe/{source_transaction.rb → resources/source_transaction.rb} +1 -1
data/lib/stripe/resources/subscription.rb +26 -0
data/lib/stripe/resources/subscription_item.rb +26 -0
data/lib/stripe/resources/subscription_schedule.rb +33 -0
data/lib/stripe/resources/tax_id.rb +26 -0
data/lib/stripe/resources/tax_rate.rb +12 -0
data/lib/stripe/resources/terminal/connection_token.rb +12 -0
data/lib/stripe/{terminal → resources/terminal}/location.rb +4 -2
data/lib/stripe/{terminal → resources/terminal}/reader.rb +4 -2
data/lib/stripe/{three_d_secure.rb → resources/three_d_secure.rb} +2 -1
data/lib/stripe/{token.rb → resources/token.rb} +2 -1
data/lib/stripe/resources/topup.rb +23 -0
data/lib/stripe/resources/transfer.rb +27 -0
data/lib/stripe/resources/usage_record.rb +7 -0
data/lib/stripe/{usage_record_summary.rb → resources/usage_record_summary.rb} +1 -1
data/lib/stripe/{webhook_endpoint.rb → resources/webhook_endpoint.rb} +3 -2
data/lib/stripe/singleton_api_resource.rb +3 -1
data/lib/stripe/stripe_client.rb +493 -236
data/lib/stripe/stripe_configuration.rb +178 -0
data/lib/stripe/stripe_object.rb +75 -61
data/lib/stripe/stripe_response.rb +53 -21
data/lib/stripe/util.rb +66 -109
data/lib/stripe/version.rb +1 -1
data/lib/stripe/webhook.rb +43 -10
data/stripe.gemspec +14 -5
data/test/stripe/account_link_test.rb +4 -4
data/test/stripe/account_test.rb +193 -32
data/test/stripe/alipay_account_test.rb +1 -1
data/test/stripe/api_operations_test.rb +3 -4
data/test/stripe/api_resource_test.rb +159 -37
data/test/stripe/apple_pay_domain_test.rb +18 -5
data/test/stripe/application_fee_refund_test.rb +1 -1
data/test/stripe/application_fee_test.rb +45 -1
data/test/stripe/balance_test.rb +1 -1
data/test/stripe/balance_transaction_test.rb +20 -0
data/test/stripe/bank_account_test.rb +1 -1
data/test/stripe/billing_portal/session_test.rb +18 -0
data/test/stripe/capability_test.rb +45 -0
data/test/stripe/charge_test.rb +13 -8
data/test/stripe/checkout/session_test.rb +19 -1
data/test/stripe/connection_manager_test.rb +167 -0
data/test/stripe/country_spec_test.rb +1 -1
data/test/stripe/coupon_test.rb +16 -6
data/test/stripe/credit_note_test.rb +90 -0
data/test/stripe/customer_balance_transaction_test.rb +37 -0
data/test/stripe/customer_card_test.rb +7 -1
data/test/stripe/customer_test.rb +151 -40
data/test/stripe/dispute_test.rb +10 -1
data/test/stripe/ephemeral_key_test.rb +8 -1
data/test/stripe/errors_test.rb +42 -9
data/test/stripe/exchange_rate_test.rb +1 -1
data/test/stripe/file_link_test.rb +1 -1
data/test/stripe/file_test.rb +19 -5
data/test/stripe/instrumentation_test.rb +74 -0
data/test/stripe/invoice_item_test.rb +18 -7
data/test/stripe/invoice_line_item_test.rb +1 -1
data/test/stripe/invoice_test.rb +77 -9
data/test/stripe/issuing/authorization_test.rb +33 -11
data/test/stripe/issuing/card_test.rb +27 -6
data/test/stripe/issuing/cardholder_test.rb +1 -1
data/test/stripe/issuing/dispute_test.rb +23 -14
data/test/stripe/issuing/transaction_test.rb +1 -1
data/test/stripe/list_object_test.rb +70 -24
data/test/stripe/login_link_test.rb +2 -2
data/test/stripe/mandate_test.rb +14 -0
data/test/stripe/multipart_encoder_test.rb +130 -0
data/test/stripe/oauth_test.rb +17 -1
data/test/stripe/order_return_test.rb +1 -1
data/test/stripe/order_test.rb +28 -3
data/test/stripe/payment_intent_test.rb +31 -4
data/test/stripe/payment_method_test.rb +84 -0
data/test/stripe/payout_test.rb +23 -1
data/test/stripe/person_test.rb +1 -1
data/test/stripe/plan_test.rb +26 -20
data/test/stripe/price_test.rb +48 -0
data/test/stripe/product_test.rb +17 -8
data/test/stripe/promotion_code_test.rb +42 -0
data/test/stripe/radar/early_fraud_warning_test.rb +22 -0
data/test/stripe/radar/value_list_item_test.rb +16 -6
data/test/stripe/radar/value_list_test.rb +16 -6
data/test/stripe/recipient_test.rb +18 -5
data/test/stripe/refund_test.rb +1 -1
data/test/stripe/reporting/report_run_test.rb +1 -1
data/test/stripe/reporting/report_type_test.rb +1 -1
data/test/stripe/reversal_test.rb +1 -1
data/test/stripe/review_test.rb +1 -1
data/test/stripe/setup_attempt_test.rb +16 -0
data/test/stripe/setup_intent_test.rb +84 -0
data/test/stripe/sigma/scheduled_query_run_test.rb +1 -1
data/test/stripe/sku_test.rb +16 -6
data/test/stripe/source_test.rb +52 -19
data/test/stripe/stripe_client_test.rb +546 -78
data/test/stripe/stripe_configuration_test.rb +131 -0
data/test/stripe/stripe_object_test.rb +16 -41
data/test/stripe/stripe_response_test.rb +71 -25
data/test/stripe/subscription_item_test.rb +38 -7
data/test/stripe/subscription_schedule_test.rb +19 -1
data/test/stripe/subscription_test.rb +29 -9
data/test/stripe/tax_id_test.rb +31 -0
data/test/stripe/tax_rate_test.rb +43 -0
data/test/stripe/terminal/connection_token_test.rb +1 -1
data/test/stripe/terminal/location_test.rb +18 -1
data/test/stripe/terminal/reader_test.rb +18 -1
data/test/stripe/three_d_secure_test.rb +1 -1
data/test/stripe/topup_test.rb +9 -1
data/test/stripe/transfer_test.rb +46 -1
data/test/stripe/usage_record_summary_test.rb +15 -5
data/test/stripe/util_test.rb +1 -1
data/test/stripe/webhook_endpoint_test.rb +18 -1
data/test/stripe/webhook_test.rb +48 -9
data/test/stripe_mock.rb +4 -3
data/test/stripe_test.rb +102 -33
data/test/test_helper.rb +16 -12
metadata +141 -129
data/lib/stripe/alipay_account.rb +0 -27
data/lib/stripe/application_fee.rb +0 -23
data/lib/stripe/application_fee_refund.rb +0 -22
data/lib/stripe/bank_account.rb +0 -32
data/lib/stripe/charge.rb +0 -84
data/lib/stripe/checkout/session.rb +0 -11
data/lib/stripe/customer.rb +0 -90
data/lib/stripe/dispute.rb +0 -19
data/lib/stripe/invoice.rb +0 -48
data/lib/stripe/issuer_fraud_record.rb +0 -9
data/lib/stripe/issuing/authorization.rb +0 -22
data/lib/stripe/issuing/card.rb +0 -18
data/lib/stripe/issuing/dispute.rb +0 -13
data/lib/stripe/login_link.rb +0 -11
data/lib/stripe/order.rb +0 -31
data/lib/stripe/payment_intent.rb +0 -26
data/lib/stripe/payout.rb +0 -20
data/lib/stripe/reversal.rb +0 -22
data/lib/stripe/review.rb +0 -14
data/lib/stripe/source.rb +0 -38
data/lib/stripe/subscription.rb +0 -25
data/lib/stripe/subscription_item.rb +0 -17
data/lib/stripe/subscription_schedule.rb +0 -32
data/lib/stripe/subscription_schedule_revision.rb +0 -25
data/lib/stripe/terminal/connection_token.rb +0 -11
data/lib/stripe/topup.rb +0 -16
data/lib/stripe/transfer.rb +0 -23
data/lib/stripe/usage_record.rb +0 -14
data/test/api_stub_helpers.rb +0 -1
data/test/stripe/account_external_accounts_operations_test.rb +0 -69
data/test/stripe/account_login_links_operations_test.rb +0 -21
data/test/stripe/account_persons_operations_test.rb +0 -70
data/test/stripe/application_fee_refunds_operations_test.rb +0 -56
data/test/stripe/customer_sources_operations_test.rb +0 -64
data/test/stripe/file_upload_test.rb +0 -76
data/test/stripe/issuer_fraud_record_test.rb +0 -20
data/test/stripe/source_transaction_test.rb +0 -19
data/test/stripe/subscription_schedule_revision_test.rb +0 -37
data/test/stripe/subscription_schedule_revisions_operations_test.rb +0 -35
data/test/stripe/transfer_reversals_operations_test.rb +0 -57
data/test/stripe/usage_record_test.rb +0 -28

@@ -11,6 +11,7 @@ module Stripe
     attr_accessor :response
     attr_reader :code
+    attr_reader :error
     attr_reader :http_body
     attr_reader :http_headers
     attr_reader :http_status
@@ -18,15 +19,30 @@ module Stripe
     attr_reader :request_id
     # Initializes a StripeError.
-    def initialize(message = nil, http_status: nil, http_body: nil, json_body: nil,
-                   http_headers: nil, code: nil)
+    def initialize(message = nil, http_status: nil, http_body: nil,
+                   json_body: nil, http_headers: nil, code: nil)
       @message = message
       @http_status = http_status
       @http_body = http_body
       @http_headers = http_headers || {}
+      @idempotent_replayed = @http_headers["idempotent-replayed"] == "true"
       @json_body = json_body
       @code = code
-      @request_id = @http_headers[:request_id]
+      @request_id = @http_headers["request-id"]
+      @error = construct_error_object
+    end
+    def construct_error_object
+      return nil if @json_body.nil? || !@json_body.key?(:error)
+      ErrorObject.construct_from(@json_body[:error])
+    end
+    # Whether the error was the result of an idempotent replay, meaning that it
+    # originally occurred on a previous request and is being replayed back
+    # because the user sent the same idempotency key for this one.
+    def idempotent_replayed?
+      @idempotent_replayed
     end
     def to_s
@@ -59,9 +75,8 @@ module Stripe
   class CardError < StripeError
     attr_reader :param
-    # TODO: make code a keyword arg in next major release
-    def initialize(message, param, code, http_status: nil, http_body: nil, json_body: nil,
-                   http_headers: nil)
+    def initialize(message, param, code: nil, http_status: nil, http_body: nil,
+                   json_body: nil, http_headers: nil)
       super(message, http_status: http_status, http_body: http_body,
                      json_body: json_body, http_headers: http_headers,
                      code: code)
@@ -79,8 +94,8 @@ module Stripe
   class InvalidRequestError < StripeError
     attr_accessor :param
-    def initialize(message, param, http_status: nil, http_body: nil, json_body: nil,
-                   http_headers: nil, code: nil)
+    def initialize(message, param, http_status: nil, http_body: nil,
+                   json_body: nil, http_headers: nil, code: nil)
       super(message, http_status: http_status, http_body: http_body,
                      json_body: json_body, http_headers: http_headers,
                      code: code)
@@ -113,12 +128,18 @@ module Stripe
   module OAuth
     # OAuthError is raised when the OAuth API returns an error.
     class OAuthError < StripeError
-      def initialize(code, description, http_status: nil, http_body: nil, json_body: nil,
-                     http_headers: nil)
+      def initialize(code, description, http_status: nil, http_body: nil,
+                     json_body: nil, http_headers: nil)
         super(description, http_status: http_status, http_body: http_body,
                            json_body: json_body, http_headers: http_headers,
                            code: code)
       end
+      def construct_error_object
+        return nil if @json_body.nil?
+        OAuthErrorObject.construct_from(@json_body)
+      end
     end
     # InvalidClientError is raised when the client doesn't belong to you, or

data/lib/stripe/instrumentation.rb ADDED

@@ -0,0 +1,82 @@
+# frozen_string_literal: true
+module Stripe
+  class Instrumentation
+    # Event emitted on `request_begin` callback.
+    class RequestBeginEvent
+      attr_reader :method
+      attr_reader :path
+      # Arbitrary user-provided data in the form of a Ruby hash that's passed
+      # from subscribers on `request_begin` to subscribers on `request_end`.
+      # `request_begin` subscribers can set keys which will then be available
+      # in `request_end`.
+      #
+      # Note that all subscribers of `request_begin` share the same object, so
+      # they must be careful to set unique keys so as to not conflict with data
+      # set by other subscribers.
+      attr_reader :user_data
+      def initialize(method:, path:, user_data:)
+        @method = method
+        @path = path
+        @user_data = user_data
+        freeze
+      end
+    end
+    # Event emitted on `request_end` callback.
+    class RequestEndEvent
+      attr_reader :duration
+      attr_reader :http_status
+      attr_reader :method
+      attr_reader :num_retries
+      attr_reader :path
+      # Arbitrary user-provided data in the form of a Ruby hash that's passed
+      # from subscribers on `request_begin` to subscribers on `request_end`.
+      # `request_begin` subscribers can set keys which will then be available
+      # in `request_end`.
+      attr_reader :user_data
+      def initialize(duration:, http_status:, method:, num_retries:, path:,
+                     user_data: nil)
+        @duration = duration
+        @http_status = http_status
+        @method = method
+        @num_retries = num_retries
+        @path = path
+        @user_data = user_data
+        freeze
+      end
+    end
+    # This class was renamed for consistency. This alias is here for backwards
+    # compatibility.
+    RequestEvent = RequestEndEvent
+    # Returns true if there are a non-zero number of subscribers on the given
+    # topic, and false otherwise.
+    def self.any_subscribers?(topic)
+      !subscribers[topic].empty?
+    end
+    def self.subscribe(topic, name = rand, &block)
+      subscribers[topic][name] = block
+      name
+    end
+    def self.unsubscribe(topic, name)
+      subscribers[topic].delete(name)
+    end
+    def self.notify(topic, event)
+      subscribers[topic].each_value { |subscriber| subscriber.call(event) }
+    end
+    def self.subscribers
+      @subscribers ||= Hash.new { |hash, key| hash[key] = {} }
+    end
+    private_class_method :subscribers
+  end
+end

data/lib/stripe/list_object.rb CHANGED

@@ -7,7 +7,7 @@ module Stripe
     include Stripe::APIOperations::Request
     include Stripe::APIOperations::Create
-    OBJECT_NAME = "list".freeze
+    OBJECT_NAME = "list"
     # This accessor allows a `ListObject` to inherit various filters that were
     # given to a predecessor. This allows for things like consistent limits,
@@ -26,12 +26,16 @@ module Stripe
       self.filters = {}
     end
-    def [](k)
-      case k
+    def [](key)
+      case key
       when String, Symbol
         super
       else
-        raise ArgumentError, "You tried to access the #{k.inspect} index, but ListObject types only support String keys. (HINT: List calls return an object with a 'data' (which is the data array). You likely want to call #data[#{k.inspect}])"
+        raise ArgumentError,
+              "You tried to access the #{key.inspect} index, but ListObject " \
+              "types only support String keys. (HINT: List calls return an " \
+              "object with a 'data' (which is the data array). You likely " \
+              "want to call #data[#{key.inspect}])"
       end
     end
@@ -47,6 +51,16 @@ module Stripe
     # Iterates through each resource in all pages, making additional fetches to
     # the API as necessary.
     #
+    # The default iteration direction is forwards according to Stripe's API
+    # "natural" ordering direction -- newer objects first, and moving towards
+    # older objects.
+    #
+    # However, if the initial list object was fetched using an `ending_before`
+    # cursor (and only `ending_before`, `starting_after` cannot also be
+    # included), the method assumes that the user is trying to iterate
+    # backwards compared to natural ordering and returns results that way --
+    # older objects first, and moving towards newer objects.
+    #
     # Note that this method will make as many API calls as necessary to fetch
     # all resources. For more granular control, please see +each+ and
     # +next_page+.
@@ -55,8 +69,18 @@ module Stripe
       page = self
       loop do
-        page.each(&blk)
-        page = page.next_page
+        # Backward iterating activates if we have an `ending_before` constraint
+        # and _just_ an `ending_before` constraint. If `starting_after` was
+        # also used, we iterate forwards normally.
+        if filters.include?(:ending_before) &&
+           !filters.include?(:starting_after)
+          page.reverse_each(&blk)
+          page = page.previous_page
+        else
+          page.each(&blk)
+          page = page.next_page
+        end
         break if page.empty?
       end
     end
@@ -68,7 +92,8 @@ module Stripe
     def retrieve(id, opts = {})
       id, retrieve_params = Util.normalize_id(id)
-      resp, opts = request(:get, "#{resource_url}/#{CGI.escape(id)}", retrieve_params, opts)
+      url = "#{resource_url}/#{CGI.escape(id)}"
+      resp, opts = execute_resource_request(:get, url, retrieve_params, opts)
       Util.convert_to_stripe_object(resp.data, opts)
     end
@@ -78,6 +103,7 @@ module Stripe
     # was given, the default limit will be fetched again.
     def next_page(params = {}, opts = {})
       return self.class.empty_list(opts) unless has_more
       last_id = data.last.id
       params = filters.merge(starting_after: last_id).merge(params)
@@ -90,6 +116,8 @@ module Stripe
     # This method will try to respect the limit of the current page. If none
     # was given, the default limit will be fetched again.
     def previous_page(params = {}, opts = {})
+      return self.class.empty_list(opts) unless has_more
       first_id = data.first.id
       params = filters.merge(ending_before: first_id).merge(params)
@@ -101,5 +129,11 @@ module Stripe
       url ||
         raise(ArgumentError, "List object does not contain a 'url' field.")
     end
+    # Iterates through each resource in the page represented by the current
+    # `ListObject` in reverse.
+    def reverse_each(&blk)
+      data.reverse_each(&blk)
+    end
   end
 end

data/lib/stripe/multipart_encoder.rb ADDED

@@ -0,0 +1,131 @@
+# frozen_string_literal: true
+require "securerandom"
+require "tempfile"
+module Stripe
+  # Encodes parameters into a `multipart/form-data` payload as described by RFC
+  # 2388:
+  #
+  #     https://tools.ietf.org/html/rfc2388
+  #
+  # This is most useful for transferring file-like objects.
+  #
+  # Parameters should be added with `#encode`. When ready, use `#body` to get
+  # the encoded result and `#content_type` to get the value that should be
+  # placed in the `Content-Type` header of a subsequent request (which includes
+  # a boundary value).
+  class MultipartEncoder
+    MULTIPART_FORM_DATA = "multipart/form-data"
+    # A shortcut for encoding a single set of parameters and finalizing a
+    # result.
+    #
+    # Returns an encoded body and the value that should be set in the content
+    # type header of a subsequent request.
+    def self.encode(params)
+      encoder = MultipartEncoder.new
+      encoder.encode(params)
+      encoder.close
+      [encoder.body, encoder.content_type]
+    end
+    # Gets the object's randomly generated boundary string.
+    attr_reader :boundary
+    # Initializes a new multipart encoder.
+    def initialize
+      # Kind of weird, but required by Rubocop because the unary plus operator
+      # is considered faster than `Stripe.new`.
+      @body = +""
+      # Chose the same number of random bytes that Go uses in its standard
+      # library implementation. Easily enough entropy to ensure that it won't
+      # be present in a file we're sending.
+      @boundary = SecureRandom.hex(30)
+      @closed = false
+      @first_field = true
+    end
+    # Gets the encoded body. `#close` must be called first.
+    def body
+      raise "object must be closed before getting body" unless @closed
+      @body
+    end
+    # Finalizes the object by writing the final boundary.
+    def close
+      raise "object already closed" if @closed
+      @body << "\r\n"
+      @body << "--#{@boundary}--"
+      @closed = true
+      nil
+    end
+    # Gets the value including boundary that should be put into a multipart
+    # request's `Content-Type`.
+    def content_type
+      "#{MULTIPART_FORM_DATA}; boundary=#{@boundary}"
+    end
+    # Encodes a set of parameters to the body.
+    #
+    # Note that parameters are expected to be a hash, but a "flat" hash such
+    # that complex substructures like hashes and arrays have already been
+    # appropriately Stripe-encoded. Pass a complex structure through
+    # `Util.flatten_params` first before handing it off to this method.
+    def encode(params)
+      raise "no more parameters can be written to closed object" if @closed
+      params.each do |name, val|
+        if val.is_a?(::File) || val.is_a?(::Tempfile)
+          write_field(name, val.read, filename: ::File.basename(val.path))
+        elsif val.respond_to?(:read)
+          write_field(name, val.read, filename: "blob")
+        else
+          write_field(name, val, filename: nil)
+        end
+      end
+      nil
+    end
+    #
+    # private
+    #
+    # Escapes double quotes so that the given value can be used in a
+    # double-quoted string and replaces any linebreak characters with spaces.
+    private def escape(str)
+      str.gsub('"', "%22").tr("\n", " ").tr("\r", " ")
+    end
+    private def write_field(name, data, filename:)
+      if !@first_field
+        @body << "\r\n"
+      else
+        @first_field = false
+      end
+      @body << "--#{@boundary}\r\n"
+      if filename
+        @body << %(Content-Disposition: form-data) +
+                 %(; name="#{escape(name.to_s)}") +
+                 %(; filename="#{escape(filename)}"\r\n)
+        @body << %(Content-Type: application/octet-stream\r\n)
+      else
+        @body << %(Content-Disposition: form-data) +
+                 %(; name="#{escape(name.to_s)}"\r\n)
+      end
+      @body << "\r\n"
+      @body << data.to_s
+    end
+  end
+end

data/lib/stripe/oauth.rb CHANGED

@@ -5,7 +5,7 @@ module Stripe
     module OAuthOperations
       extend APIOperations::Request::ClassMethods
-      def self.request(method, url, params, opts)
+      def self.execute_resource_request(method, url, params, opts)
         opts = Util.normalize_opts(opts)
         opts[:client] ||= StripeClient.active_client
         opts[:api_base] ||= Stripe.connect_base
@@ -43,7 +43,8 @@ module Stripe
     def self.token(params = {}, opts = {})
       opts = Util.normalize_opts(opts)
-      resp, opts = OAuthOperations.request(
+      opts[:api_key] = params[:client_secret] if params[:client_secret]
+      resp, opts = OAuthOperations.execute_resource_request(
         :post, "/oauth/token", params, opts
       )
       # This is just going to return a generic StripeObject, but that's okay
@@ -53,7 +54,7 @@ module Stripe
     def self.deauthorize(params = {}, opts = {})
       opts = Util.normalize_opts(opts)
       params[:client_id] = get_client_id(params)
-      resp, opts = OAuthOperations.request(
+      resp, opts = OAuthOperations.execute_resource_request(
         :post, "/oauth/deauthorize", params, opts
       )
       # This is just going to return a generic StripeObject, but that's okay

data/lib/stripe/object_types.rb ADDED

@@ -0,0 +1,101 @@
+# frozen_string_literal: true
+# rubocop:disable Metrics/MethodLength
+module Stripe
+  module ObjectTypes
+    def self.object_names_to_classes
+      {
+        # data structures
+        ListObject::OBJECT_NAME => ListObject,
+        # business objects
+        Account::OBJECT_NAME => Account,
+        AccountLink::OBJECT_NAME => AccountLink,
+        AlipayAccount::OBJECT_NAME => AlipayAccount,
+        ApplePayDomain::OBJECT_NAME => ApplePayDomain,
+        ApplicationFee::OBJECT_NAME => ApplicationFee,
+        ApplicationFeeRefund::OBJECT_NAME => ApplicationFeeRefund,
+        Balance::OBJECT_NAME => Balance,
+        BalanceTransaction::OBJECT_NAME => BalanceTransaction,
+        BankAccount::OBJECT_NAME => BankAccount,
+        BillingPortal::Session::OBJECT_NAME => BillingPortal::Session,
+        BitcoinReceiver::OBJECT_NAME => BitcoinReceiver,
+        BitcoinTransaction::OBJECT_NAME => BitcoinTransaction,
+        Capability::OBJECT_NAME => Capability,
+        Card::OBJECT_NAME => Card,
+        Charge::OBJECT_NAME => Charge,
+        Checkout::Session::OBJECT_NAME => Checkout::Session,
+        CountrySpec::OBJECT_NAME => CountrySpec,
+        Coupon::OBJECT_NAME => Coupon,
+        CreditNote::OBJECT_NAME => CreditNote,
+        CreditNoteLineItem::OBJECT_NAME => CreditNoteLineItem,
+        Customer::OBJECT_NAME => Customer,
+        CustomerBalanceTransaction::OBJECT_NAME => CustomerBalanceTransaction,
+        Discount::OBJECT_NAME => Discount,
+        Dispute::OBJECT_NAME => Dispute,
+        EphemeralKey::OBJECT_NAME => EphemeralKey,
+        Event::OBJECT_NAME => Event,
+        ExchangeRate::OBJECT_NAME => ExchangeRate,
+        File::OBJECT_NAME => File,
+        File::OBJECT_NAME_ALT => File,
+        FileLink::OBJECT_NAME => FileLink,
+        Invoice::OBJECT_NAME => Invoice,
+        InvoiceItem::OBJECT_NAME => InvoiceItem,
+        InvoiceLineItem::OBJECT_NAME => InvoiceLineItem,
+        Issuing::Authorization::OBJECT_NAME => Issuing::Authorization,
+        Issuing::Card::OBJECT_NAME => Issuing::Card,
+        Issuing::CardDetails::OBJECT_NAME => Issuing::CardDetails,
+        Issuing::Cardholder::OBJECT_NAME => Issuing::Cardholder,
+        Issuing::Dispute::OBJECT_NAME => Issuing::Dispute,
+        Issuing::Transaction::OBJECT_NAME => Issuing::Transaction,
+        LineItem::OBJECT_NAME => LineItem,
+        LoginLink::OBJECT_NAME => LoginLink,
+        Mandate::OBJECT_NAME => Mandate,
+        Order::OBJECT_NAME => Order,
+        OrderReturn::OBJECT_NAME => OrderReturn,
+        PaymentIntent::OBJECT_NAME => PaymentIntent,
+        PaymentMethod::OBJECT_NAME => PaymentMethod,
+        Payout::OBJECT_NAME => Payout,
+        Person::OBJECT_NAME => Person,
+        Plan::OBJECT_NAME => Plan,
+        Price::OBJECT_NAME => Price,
+        Product::OBJECT_NAME => Product,
+        PromotionCode::OBJECT_NAME => PromotionCode,
+        Radar::EarlyFraudWarning::OBJECT_NAME => Radar::EarlyFraudWarning,
+        Radar::ValueList::OBJECT_NAME => Radar::ValueList,
+        Radar::ValueListItem::OBJECT_NAME => Radar::ValueListItem,
+        Recipient::OBJECT_NAME => Recipient,
+        RecipientTransfer::OBJECT_NAME => RecipientTransfer,
+        Refund::OBJECT_NAME => Refund,
+        Reporting::ReportRun::OBJECT_NAME => Reporting::ReportRun,
+        Reporting::ReportType::OBJECT_NAME => Reporting::ReportType,
+        Reversal::OBJECT_NAME => Reversal,
+        Review::OBJECT_NAME => Review,
+        SKU::OBJECT_NAME => SKU,
+        SetupAttempt::OBJECT_NAME => SetupAttempt,
+        SetupIntent::OBJECT_NAME => SetupIntent,
+        Sigma::ScheduledQueryRun::OBJECT_NAME => Sigma::ScheduledQueryRun,
+        Source::OBJECT_NAME => Source,
+        SourceTransaction::OBJECT_NAME => SourceTransaction,
+        Subscription::OBJECT_NAME => Subscription,
+        SubscriptionItem::OBJECT_NAME => SubscriptionItem,
+        SubscriptionSchedule::OBJECT_NAME => SubscriptionSchedule,
+        TaxId::OBJECT_NAME => TaxId,
+        TaxRate::OBJECT_NAME => TaxRate,
+        Terminal::ConnectionToken::OBJECT_NAME => Terminal::ConnectionToken,
+        Terminal::Location::OBJECT_NAME => Terminal::Location,
+        Terminal::Reader::OBJECT_NAME => Terminal::Reader,
+        ThreeDSecure::OBJECT_NAME => ThreeDSecure,
+        Token::OBJECT_NAME => Token,
+        Topup::OBJECT_NAME => Topup,
+        Transfer::OBJECT_NAME => Transfer,
+        UsageRecord::OBJECT_NAME => UsageRecord,
+        UsageRecordSummary::OBJECT_NAME => UsageRecordSummary,
+        WebhookEndpoint::OBJECT_NAME => WebhookEndpoint,
+      }
+    end
+  end
+end
+# rubocop:enable Metrics/MethodLength