stytch 4.4.0 → 4.5.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d2a9ecc30de6afe24d2a2bcc37d47d72cdc617f20339b03184b7ce60badc37e5
-  data.tar.gz: 34dc8549f4ccdd667f6bf02a351e0b8bf0292c8027ccb301144e6377013dcfce
+  metadata.gz: ee8240601c590ea9fac8e84fc7d93370c6244cbb028ea0cbf881794d9c78aad9
+  data.tar.gz: 531fd7ba0fd00397152083c2f99417e5fd0982c8ee53b9d578e207e530381bd6
 SHA512:
-  metadata.gz: 972b2a3aecca06699d3d3ca1a2812f1062ea3bc463d0e0ed274421cf71058b63309daa81c2ae2b5a37de14c38cf9b5dfea80a20d5129f9b3b985bdf761417e24
-  data.tar.gz: 2a58549c33709a42cccb4b29eb791bf471c88c62c7f939e619002f8298be7621c049c63bb1c55fe5d68676e10d3310b677364ef0e67040fc044e3f33ce0a9fa1
+  metadata.gz: d352d1e8faf1fb38cc73cf30b8229cbb30cca0b9cf4fc2ee782e35fdad9e43343df1a6ea404261eca11012586b800a3dc3a856fada4e5ff52bc9371f0a285acd
+  data.tar.gz: 3e3199bfcf473eb6d19efe139a918dda570a42ace8fdfcd5a07af856107f4fa495cfd18a28e8c7a825791217ba25036a9bdbd541925180563c528b3411330767

data/lib/stytch/b2b_client.rb

@@ -0,0 +1,65 @@
+# frozen_string_literal: true
+
+require_relative 'b2b_magic_links'
+require_relative 'b2b_organizations'
+require_relative 'b2b_passwords'
+require_relative 'b2b_sessions'
+require_relative 'b2b_sso'
+
+module StytchB2B
+  class Client
+    ENVIRONMENTS = %i[live test].freeze
+
+    attr_reader :magic_links, :organizations, :passwords, :sso, :sessions
+
+    def initialize(project_id:, secret:, env: nil, &block)
+      @api_host   = api_host(env, project_id)
+      @project_id = project_id
+      @secret     = secret
+
+      create_connection(&block)
+
+      @magic_links = StytchB2B::MagicLinks.new(@connection)
+      @organizations = StytchB2B::Organizations.new(@connection)
+      @passwords = StytchB2B::Passwords.new(@connection)
+      @sso = StytchB2B::SSO.new(@connection)
+      @sessions = StytchB2B::Sessions.new(@connection)
+    end
+
+    private
+
+    def api_host(env, project_id)
+      case env
+      when :live
+        'https://api.stytch.com'
+      when :test
+        'https://test.stytch.com'
+      when %r{\Ahttps?://}
+        # If this is a string that looks like a URL, assume it's an internal development URL.
+        env
+      else
+        if project_id.start_with? 'project-live-'
+          'https://api.stytch.com'
+        else
+          'https://test.stytch.com'
+        end
+      end
+    end
+
+    def create_connection
+      @connection = Faraday.new(url: @api_host) do |builder|
+        block_given? ? yield(builder) : build_default_connection(builder)
+      end
+      @connection.basic_auth(@project_id, @secret)
+    end
+
+    def build_default_connection(builder)
+      builder.options[:timeout] = Stytch::Middleware::NETWORK_TIMEOUT
+      builder.headers = Stytch::Middleware::NETWORK_HEADERS
+      builder.request :json
+      builder.use Stytch::Middleware
+      builder.response :json, content_type: /\bjson$/
+      builder.adapter Faraday.default_adapter
+    end
+  end
+end

data/lib/stytch/b2b_discovery.rb

@@ -0,0 +1,96 @@
+# frozen_string_literal: true
+
+require_relative 'request_helper'
+
+module StytchB2B
+  class Discovery
+    include Stytch::RequestHelper
+    attr_reader :intermediate_sessions, :organizations
+
+    def initialize(connection)
+      @connection = connection
+
+      @intermediate_sessions = StytchB2B::Discovery::IntermediateSessions.new(@connection)
+      @organizations = StytchB2B::Discovery::Organizations.new(@connection)
+    end
+
+    class IntermediateSessions
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def exchange(
+        intermediate_session_token:,
+        organization_id:,
+        session_duration_minutes: nil,
+        session_custom_claims: nil
+      )
+        request = {
+          intermediate_session_token: intermediate_session_token,
+          organization_id: organization_id
+        }
+        request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+        request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+        post_request('/v1/b2b/discovery/intermediate_sessions/exchange', request)
+      end
+    end
+
+    class Organizations
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def create(
+        intermediate_session_token:,
+        organization_name:,
+        organization_slug:,
+        session_duration_minutes: nil,
+        session_custom_claims: nil,
+        organization_logo_url: nil,
+        trusted_metadata: nil,
+        sso_jit_provisioning: nil,
+        email_allowed_domains: nil,
+        email_jit_provisioning: nil,
+        email_invites: nil,
+        auth_methods: nil,
+        allowed_auth_methods: nil
+      )
+        request = {
+          intermediate_session_token: intermediate_session_token,
+          organization_name: organization_name,
+          organization_slug: organization_slug
+        }
+        request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+        request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+        request[:organization_logo_url] = organization_logo_url unless organization_logo_url.nil?
+        request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+        request[:sso_jit_provisioning] = sso_jit_provisioning unless sso_jit_provisioning.nil?
+        request[:email_allowed_domains] = email_allowed_domains unless email_allowed_domains.nil?
+        request[:email_jit_provisioning] = email_jit_provisioning unless email_jit_provisioning.nil?
+        request[:email_invites] = email_invites unless email_invites.nil?
+        request[:auth_methods] = auth_methods unless auth_methods.nil?
+        request[:allowed_auth_methods] = allowed_auth_methods unless allowed_auth_methods.nil?
+
+        post_request('/v1/b2b/discovery/organizations/create', request)
+      end
+
+      def list(
+        intermediate_session_token: nil,
+        session_token: nil,
+        session_jwt: nil
+      )
+        request = {}
+        request[:intermediate_session_token] = intermediate_session_token unless intermediate_session_token.nil?
+        request[:session_token] = session_token unless session_token.nil?
+        request[:session_jwt] = session_jwt unless session_jwt.nil?
+
+        post_request('/v1/b2b/discovery/organizations', request)
+      end
+    end
+  end
+end

data/lib/stytch/b2b_magic_links.rb

@@ -0,0 +1,144 @@
+# frozen_string_literal: true
+
+require_relative 'request_helper'
+
+module StytchB2B
+  class MagicLinks
+    include Stytch::RequestHelper
+    attr_reader :email, :discovery
+
+    def initialize(connection)
+      @connection = connection
+
+      @email = StytchB2B::MagicLinks::Email.new(@connection)
+      @discovery = StytchB2B::MagicLinks::Discovery.new(@connection)
+    end
+
+    def authenticate(
+      magic_links_token:,
+      pkce_code_verifier: nil,
+      session_token: nil,
+      session_jwt: nil,
+      session_duration_minutes: nil,
+      session_custom_claims: nil
+    )
+      request = {
+        magic_links_token: magic_links_token
+      }
+      request[:pkce_code_verifier] = pkce_code_verifier unless pkce_code_verifier.nil?
+      request[:session_token] = session_token unless session_token.nil?
+      request[:session_jwt] = session_jwt unless session_jwt.nil?
+      request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+      request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+      post_request('/v1/b2b/magic_links/authenticate', request)
+    end
+
+    class Email
+      include Stytch::RequestHelper
+      attr_reader :discovery
+
+      def initialize(connection)
+        @connection = connection
+
+        @discovery = StytchB2B::MagicLinks::Email::Discovery.new(@connection)
+      end
+
+      def login_or_signup(
+        organization_id:,
+        email_address:,
+        login_redirect_url: nil,
+        signup_redirect_url: nil,
+        pkce_code_challenge: nil,
+        login_template_id: nil,
+        signup_template_id: nil,
+        locale: nil
+      )
+        request = {
+          organization_id: organization_id,
+          email_address: email_address
+        }
+        request[:login_redirect_url] = login_redirect_url unless login_redirect_url.nil?
+        request[:signup_redirect_url] = signup_redirect_url unless signup_redirect_url.nil?
+        request[:pkce_code_challenge] = pkce_code_challenge unless pkce_code_challenge.nil?
+        request[:login_template_id] = login_template_id unless login_template_id.nil?
+        request[:signup_template_id] = signup_template_id unless signup_template_id.nil?
+        request[:locale] = locale unless locale.nil?
+
+        post_request('/v1/b2b/magic_links/email/login_or_signup', request)
+      end
+
+      def invite(
+        organization_id:,
+        email_address:,
+        invite_redirect_url: nil,
+        invited_by_member_id: nil,
+        name: nil,
+        trusted_metadata: nil,
+        untrusted_metadata: nil,
+        invite_template_id: nil,
+        locale: nil
+      )
+        request = {
+          organization_id: organization_id,
+          email_address: email_address
+        }
+        request[:invite_redirect_url] = invite_redirect_url unless invite_redirect_url.nil?
+        request[:invited_by_member_id] = invited_by_member_id unless invited_by_member_id.nil?
+        request[:name] = name unless name.nil?
+        request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+        request[:untrusted_metadata] = untrusted_metadata unless untrusted_metadata.nil?
+        request[:invite_template_id] = invite_template_id unless invite_template_id.nil?
+        request[:locale] = locale unless locale.nil?
+
+        post_request('/v1/b2b/magic_links/email/invite', request)
+      end
+
+      class Discovery
+        include Stytch::RequestHelper
+
+        def initialize(connection)
+          @connection = connection
+        end
+
+        def send(
+          email_address:,
+          discovery_redirect_url: nil,
+          pkce_code_challenge: nil,
+          login_template_id: nil,
+          locale: nil
+        )
+          request = {
+            email_address: email_address
+          }
+          request[:discovery_redirect_url] = discovery_redirect_url unless discovery_redirect_url.nil?
+          request[:pkce_code_challenge] = pkce_code_challenge unless pkce_code_challenge.nil?
+          request[:login_template_id] = login_template_id unless login_template_id.nil?
+          request[:locale] = locale unless locale.nil?
+
+          post_request('/v1/b2b/magic_links/email/discovery/send', request)
+        end
+      end
+    end
+
+    class Discovery
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def authenticate(
+        discovery_magic_links_token:,
+        pkce_code_verifier: nil
+      )
+        request = {
+          discovery_magic_links_token: discovery_magic_links_token
+        }
+        request[:pkce_code_verifier] = pkce_code_verifier unless pkce_code_verifier.nil?
+
+        post_request('/v1/b2b/magic_links/discovery/authenticate', request)
+      end
+    end
+  end
+end

data/lib/stytch/b2b_organizations.rb

@@ -0,0 +1,204 @@
+# frozen_string_literal: true
+
+require_relative 'request_helper'
+
+module StytchB2B
+  class Organizations
+    include Stytch::RequestHelper
+    attr_reader :members
+
+    def initialize(connection)
+      @connection = connection
+
+      @members = StytchB2B::Organizations::Members.new(@connection)
+    end
+
+    def create(
+      organization_name:,
+      organization_slug:,
+      organization_logo_url: nil,
+      trusted_metadata: nil,
+      sso_jit_provisioning: nil,
+      email_allowed_domains: nil,
+      email_jit_provisioning: nil,
+      email_invites: nil,
+      auth_methods: nil,
+      allowed_auth_methods: nil
+    )
+      request = {
+        organization_name: organization_name,
+        organization_slug: organization_slug
+      }
+      request[:organization_logo_url] = organization_logo_url unless organization_logo_url.nil?
+      request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+      request[:sso_jit_provisioning] = sso_jit_provisioning unless sso_jit_provisioning.nil?
+      request[:email_allowed_domains] = email_allowed_domains unless email_allowed_domains.nil?
+      request[:email_jit_provisioning] = email_jit_provisioning unless email_jit_provisioning.nil?
+      request[:email_invites] = email_invites unless email_invites.nil?
+      request[:auth_methods] = auth_methods unless auth_methods.nil?
+      request[:allowed_auth_methods] = allowed_auth_methods unless allowed_auth_methods.nil?
+
+      post_request('/v1/b2b/organizations', request)
+    end
+
+    def get(
+      organization_id:
+    )
+      query_params = {
+        organization_id: organization_id
+      }
+      request = request_with_query_params("/v1/b2b/organizations/#{organization_id}", query_params)
+      get_request(request)
+    end
+
+    def update(
+      organization_id:,
+      organization_name: nil,
+      organization_slug: nil,
+      organization_logo_url: nil,
+      trusted_metadata: nil,
+      sso_default_connection_id: nil,
+      sso_jit_provisioning: nil,
+      sso_jit_provisioning_allowed_connections: nil,
+      email_allowed_domains: nil,
+      email_jit_provisioning: nil,
+      email_invites: nil,
+      auth_methods: nil,
+      allowed_auth_methods: nil
+    )
+      request = {
+        organization_id: organization_id
+      }
+      request[:organization_name] = organization_name unless organization_name.nil?
+      request[:organization_slug] = organization_slug unless organization_slug.nil?
+      request[:organization_logo_url] = organization_logo_url unless organization_logo_url.nil?
+      request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+      request[:sso_default_connection_id] = sso_default_connection_id unless sso_default_connection_id.nil?
+      request[:sso_jit_provisioning] = sso_jit_provisioning unless sso_jit_provisioning.nil?
+      unless sso_jit_provisioning_allowed_connections.nil?
+        request[:sso_jit_provisioning_allowed_connections] =
+          sso_jit_provisioning_allowed_connections
+      end
+      request[:email_allowed_domains] = email_allowed_domains unless email_allowed_domains.nil?
+      request[:email_jit_provisioning] = email_jit_provisioning unless email_jit_provisioning.nil?
+      request[:email_invites] = email_invites unless email_invites.nil?
+      request[:auth_methods] = auth_methods unless auth_methods.nil?
+      request[:allowed_auth_methods] = allowed_auth_methods unless allowed_auth_methods.nil?
+
+      put_request("/v1/b2b/organizations/#{organization_id}", request)
+    end
+
+    def delete(
+      organization_id:
+    )
+      delete_request("/v1/b2b/organizations/#{organization_id}")
+    end
+
+    def search(
+      cursor: nil,
+      limit: nil,
+      query: nil
+    )
+      request = {}
+      request[:cursor] = cursor unless cursor.nil?
+      request[:limit] = limit unless limit.nil?
+      request[:query] = query unless query.nil?
+
+      post_request('/v1/b2b/organizations/search', request)
+    end
+
+    class Members
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def create(
+        organization_id:,
+        email_address:,
+        name: nil,
+        trusted_metadata: nil,
+        untrusted_metadata: nil,
+        create_member_as_pending: nil,
+        is_breakglass: nil
+      )
+        request = {
+          organization_id: organization_id,
+          email_address: email_address
+        }
+        request[:name] = name unless name.nil?
+        request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+        request[:untrusted_metadata] = untrusted_metadata unless untrusted_metadata.nil?
+        request[:create_member_as_pending] = create_member_as_pending unless create_member_as_pending.nil?
+        request[:is_breakglass] = is_breakglass unless is_breakglass.nil?
+
+        post_request("/v1/b2b/organizations/#{organization_id}/members", request)
+      end
+
+      def get(
+        organization_id:,
+        member_id: nil,
+        email_address: nil
+      )
+        query_params = {
+          organization_id: organization_id,
+          member_id: member_id,
+          email_address: email_address
+        }
+        request = request_with_query_params("/v1/b2b/organizations/#{organization_id}/member", query_params)
+        get_request(request)
+      end
+
+      def update(
+        organization_id:,
+        member_id:,
+        name: nil,
+        trusted_metadata: nil,
+        untrusted_metadata: nil,
+        is_breakglass: nil
+      )
+        request = {
+          organization_id: organization_id,
+          member_id: member_id
+        }
+        request[:name] = name unless name.nil?
+        request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+        request[:untrusted_metadata] = untrusted_metadata unless untrusted_metadata.nil?
+        request[:is_breakglass] = is_breakglass unless is_breakglass.nil?
+
+        put_request("/v1/b2b/organizations/#{organization_id}/members/#{member_id}", request)
+      end
+
+      def delete(
+        organization_id:,
+        member_id:
+      )
+        delete_request("/v1/b2b/organizations/#{organization_id}/members/#{member_id}")
+      end
+
+      def search(
+        organization_ids:,
+        cursor: nil,
+        limit: nil,
+        query: nil
+      )
+        request = {
+          organization_ids: organization_ids
+        }
+        request[:cursor] = cursor unless cursor.nil?
+        request[:limit] = limit unless limit.nil?
+        request[:query] = query unless query.nil?
+
+        post_request('/v1/b2b/organizations/members/search', request)
+      end
+
+      def organizations_delete_password(
+        organization_id:,
+        member_password_id:
+      )
+        delete_request("/v1/b2b/organizations/#{organization_id}/members/passwords/#{member_password_id}")
+      end
+    end
+  end
+end

data/lib/stytch/b2b_passwords.rb

@@ -0,0 +1,195 @@
+# frozen_string_literal: true
+
+require_relative 'request_helper'
+
+module StytchB2B
+  class Passwords
+    include Stytch::RequestHelper
+    attr_reader :email, :sessions, :existing_password
+
+    def initialize(connection)
+      @connection = connection
+
+      @email = StytchB2B::Passwords::Email.new(@connection)
+      @sessions = StytchB2B::Passwords::Sessions.new(@connection)
+      @existing_password = StytchB2B::Passwords::ExistingPassword.new(@connection)
+    end
+
+    def strength_check(
+      password:,
+      email_address: nil
+    )
+      request = {
+        password: password
+      }
+      request[:email_address] = email_address unless email_address.nil?
+
+      post_request('/v1/b2b/passwords/strength_check', request)
+    end
+
+    def migrate(
+      email_address:,
+      hash:,
+      hash_type:,
+      organization_id:,
+      md_5_config: nil,
+      argon_2_config: nil,
+      sha_1_config: nil,
+      scrypt_config: nil,
+      name: nil,
+      trusted_metadata: nil,
+      untrusted_metadata: nil
+    )
+      request = {
+        email_address: email_address,
+        hash: hash,
+        hash_type: hash_type,
+        organization_id: organization_id
+      }
+      request[:md_5_config] = md_5_config unless md_5_config.nil?
+      request[:argon_2_config] = argon_2_config unless argon_2_config.nil?
+      request[:sha_1_config] = sha_1_config unless sha_1_config.nil?
+      request[:scrypt_config] = scrypt_config unless scrypt_config.nil?
+      request[:name] = name unless name.nil?
+      request[:trusted_metadata] = trusted_metadata unless trusted_metadata.nil?
+      request[:untrusted_metadata] = untrusted_metadata unless untrusted_metadata.nil?
+
+      post_request('/v1/b2b/passwords/migrate', request)
+    end
+
+    def authenticate(
+      organization_id:,
+      email_address:,
+      password:,
+      session_token: nil,
+      session_duration_minutes: nil,
+      session_jwt: nil,
+      session_custom_claims: nil
+    )
+      request = {
+        organization_id: organization_id,
+        email_address: email_address,
+        password: password
+      }
+      request[:session_token] = session_token unless session_token.nil?
+      request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+      request[:session_jwt] = session_jwt unless session_jwt.nil?
+      request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+      post_request('/v1/b2b/passwords/authenticate', request)
+    end
+
+    class Email
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def reset_start(
+        organization_id:,
+        email_address:,
+        reset_password_redirect_url: nil,
+        reset_password_expiration_minutes: nil,
+        code_challenge: nil,
+        login_redirect_url: nil,
+        locale: nil,
+        reset_password_template_id: nil
+      )
+        request = {
+          organization_id: organization_id,
+          email_address: email_address
+        }
+        request[:reset_password_redirect_url] = reset_password_redirect_url unless reset_password_redirect_url.nil?
+        unless reset_password_expiration_minutes.nil?
+          request[:reset_password_expiration_minutes] =
+            reset_password_expiration_minutes
+        end
+        request[:code_challenge] = code_challenge unless code_challenge.nil?
+        request[:login_redirect_url] = login_redirect_url unless login_redirect_url.nil?
+        request[:locale] = locale unless locale.nil?
+        request[:reset_password_template_id] = reset_password_template_id unless reset_password_template_id.nil?
+
+        post_request('/v1/b2b/passwords/email/reset/start', request)
+      end
+
+      def reset(
+        password_reset_token:,
+        password:,
+        session_token: nil,
+        session_duration_minutes: nil,
+        session_jwt: nil,
+        code_verifier: nil,
+        session_custom_claims: nil
+      )
+        request = {
+          password_reset_token: password_reset_token,
+          password: password
+        }
+        request[:session_token] = session_token unless session_token.nil?
+        request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+        request[:session_jwt] = session_jwt unless session_jwt.nil?
+        request[:code_verifier] = code_verifier unless code_verifier.nil?
+        request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+        post_request('/v1/b2b/passwords/email/reset', request)
+      end
+    end
+
+    class Sessions
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def reset(
+        organization_id:,
+        password:,
+        session_token: nil,
+        session_jwt: nil
+      )
+        request = {
+          organization_id: organization_id,
+          password: password
+        }
+        request[:session_token] = session_token unless session_token.nil?
+        request[:session_jwt] = session_jwt unless session_jwt.nil?
+
+        post_request('/v1/b2b/passwords/session/reset', request)
+      end
+    end
+
+    class ExistingPassword
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def reset(
+        email_address:,
+        existing_password:,
+        new_password:,
+        organization_id:,
+        session_token: nil,
+        session_duration_minutes: nil,
+        session_jwt: nil,
+        session_custom_claims: nil
+      )
+        request = {
+          email_address: email_address,
+          existing_password: existing_password,
+          new_password: new_password,
+          organization_id: organization_id
+        }
+        request[:session_token] = session_token unless session_token.nil?
+        request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+        request[:session_jwt] = session_jwt unless session_jwt.nil?
+        request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+        post_request('/v1/b2b/passwords/existing_password/reset', request)
+      end
+    end
+  end
+end

data/lib/stytch/b2b_sessions.rb

@@ -0,0 +1,83 @@
+# frozen_string_literal: true
+
+require_relative 'request_helper'
+
+module StytchB2B
+  class Sessions
+    include Stytch::RequestHelper
+
+    def initialize(connection)
+      @connection = connection
+    end
+
+    def get(
+      organization_id:,
+      member_id:
+    )
+      query_params = {
+        organization_id: organization_id,
+        member_id: member_id
+      }
+      request = request_with_query_params('/v1/b2b/sessions', query_params)
+      get_request(request)
+    end
+
+    def authenticate(
+      session_token: nil,
+      session_duration_minutes: nil,
+      session_jwt: nil,
+      session_custom_claims: nil
+    )
+      request = {}
+      request[:session_token] = session_token unless session_token.nil?
+      request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+      request[:session_jwt] = session_jwt unless session_jwt.nil?
+      request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+      post_request('/v1/b2b/sessions/authenticate', request)
+    end
+
+    def revoke(
+      member_session_id: nil,
+      session_token: nil,
+      session_jwt: nil,
+      member_id: nil
+    )
+      request = {}
+      request[:member_session_id] = member_session_id unless member_session_id.nil?
+      request[:session_token] = session_token unless session_token.nil?
+      request[:session_jwt] = session_jwt unless session_jwt.nil?
+      request[:member_id] = member_id unless member_id.nil?
+
+      post_request('/v1/b2b/sessions/revoke', request)
+    end
+
+    def exchange(
+      organization_id:,
+      session_token: nil,
+      session_jwt: nil,
+      session_duration_minutes: nil,
+      session_custom_claims: nil
+    )
+      request = {
+        organization_id: organization_id
+      }
+      request[:session_token] = session_token unless session_token.nil?
+      request[:session_jwt] = session_jwt unless session_jwt.nil?
+      request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+      request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+      post_request('/v1/b2b/sessions/exchange', request)
+    end
+
+    def jwks(
+      project_id:
+    )
+      query_params = {
+        project_id: project_id
+      }
+      request = request_with_query_params("/v1/b2b/sessions/jwks/#{project_id}", query_params)
+      get_request(request)
+    end
+  end
+end

data/lib/stytch/b2b_sso.rb

@@ -0,0 +1,150 @@
+# frozen_string_literal: true
+
+require_relative 'request_helper'
+
+module StytchB2B
+  class SSO
+    include Stytch::RequestHelper
+    attr_reader :oidc, :saml
+
+    def initialize(connection)
+      @connection = connection
+
+      @oidc = StytchB2B::SSO::OIDC.new(@connection)
+      @saml = StytchB2B::SSO::SAML.new(@connection)
+    end
+
+    def get_connections(
+      organization_id:
+    )
+      query_params = {}
+      request = request_with_query_params("/v1/b2b/sso/#{organization_id}", query_params)
+      get_request(request)
+    end
+
+    def delete_connection(
+      organization_id:,
+      connection_id:
+    )
+      delete_request("/v1/b2b/sso/#{organization_id}/connections/#{connection_id}")
+    end
+
+    def authenticate(
+      sso_token:,
+      pkce_code_verifier: nil,
+      session_token: nil,
+      session_jwt: nil,
+      session_duration_minutes: nil,
+      session_custom_claims: nil
+    )
+      request = {
+        sso_token: sso_token
+      }
+      request[:pkce_code_verifier] = pkce_code_verifier unless pkce_code_verifier.nil?
+      request[:session_token] = session_token unless session_token.nil?
+      request[:session_jwt] = session_jwt unless session_jwt.nil?
+      request[:session_duration_minutes] = session_duration_minutes unless session_duration_minutes.nil?
+      request[:session_custom_claims] = session_custom_claims unless session_custom_claims.nil?
+
+      post_request('/v1/b2b/sso/authenticate', request)
+    end
+
+    class OIDC
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def create_connection(
+        organization_id:,
+        display_name: nil
+      )
+        request = {
+          organization_id: organization_id
+        }
+        request[:display_name] = display_name unless display_name.nil?
+
+        post_request("/v1/b2b/sso/oidc/#{organization_id}", request)
+      end
+
+      def update_connection(
+        organization_id:,
+        connection_id:,
+        display_name: nil,
+        client_id: nil,
+        client_secret: nil,
+        issuer: nil,
+        authorization_url: nil,
+        token_url: nil,
+        userinfo_url: nil,
+        jwks_url: nil
+      )
+        request = {
+          organization_id: organization_id,
+          connection_id: connection_id
+        }
+        request[:display_name] = display_name unless display_name.nil?
+        request[:client_id] = client_id unless client_id.nil?
+        request[:client_secret] = client_secret unless client_secret.nil?
+        request[:issuer] = issuer unless issuer.nil?
+        request[:authorization_url] = authorization_url unless authorization_url.nil?
+        request[:token_url] = token_url unless token_url.nil?
+        request[:userinfo_url] = userinfo_url unless userinfo_url.nil?
+        request[:jwks_url] = jwks_url unless jwks_url.nil?
+
+        put_request("/v1/b2b/sso/oidc/#{organization_id}/connections/#{connection_id}", request)
+      end
+    end
+
+    class SAML
+      include Stytch::RequestHelper
+
+      def initialize(connection)
+        @connection = connection
+      end
+
+      def create_connection(
+        organization_id:,
+        display_name: nil
+      )
+        request = {
+          organization_id: organization_id
+        }
+        request[:display_name] = display_name unless display_name.nil?
+
+        post_request("/v1/b2b/sso/saml/#{organization_id}", request)
+      end
+
+      def update_connection(
+        organization_id:,
+        connection_id:,
+        idp_entity_id: nil,
+        display_name: nil,
+        attribute_mapping: nil,
+        x509_certificate: nil,
+        idp_sso_url: nil
+      )
+        request = {
+          organization_id: organization_id,
+          connection_id: connection_id
+        }
+        request[:idp_entity_id] = idp_entity_id unless idp_entity_id.nil?
+        request[:display_name] = display_name unless display_name.nil?
+        request[:attribute_mapping] = attribute_mapping unless attribute_mapping.nil?
+        request[:x509_certificate] = x509_certificate unless x509_certificate.nil?
+        request[:idp_sso_url] = idp_sso_url unless idp_sso_url.nil?
+
+        put_request("/v1/b2b/sso/saml/#{organization_id}/connections/#{connection_id}", request)
+      end
+
+      def delete_verification_certificate(
+        organization_id:,
+        connection_id:,
+        certificate_id:
+      )
+        delete_request("/v1/b2b/sso/saml/#{organization_id}/connections/#{connection_id}/verification_certificates/#{certificate_id}")
+      end
+    end
+  end
+end

data/lib/stytch/client.rb

@@ -16,8 +16,8 @@ module Stytch
 
     attr_reader :users, :magic_links, :oauth, :otps, :sessions, :totps, :webauthn, :crypto_wallets, :passwords
 
-    def initialize(env:, project_id:, secret:, &block)
-      @api_host   = api_host(env)
+    def initialize(project_id:, secret:, env: nil, &block)
+      @api_host   = api_host(env, project_id)
       @project_id = project_id
       @secret     = secret
 
@@ -36,7 +36,7 @@ module Stytch
 
     private
 
-    def api_host(env)
+    def api_host(env, project_id)
       case env
       when :live
         'https://api.stytch.com'
@@ -46,7 +46,11 @@ module Stytch
         # If this is a string that looks like a URL, assume it's an internal development URL.
         env
       else
-        raise ArgumentError, "Invalid value for env (#{env}): should be :live or :test"
+        if project_id.start_with? 'project-live-'
+          'https://api.stytch.com'
+        else
+          'https://test.stytch.com'
+        end
       end
     end
 

data/lib/stytch/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Stytch
-  VERSION = '4.4.0'
+  VERSION = '4.5.0'
 end

data/lib/stytch.rb

@@ -3,8 +3,10 @@
 require 'faraday'
 require 'faraday_middleware'
 
+require_relative 'stytch/b2b_client'
 require_relative 'stytch/client'
 require_relative 'stytch/middleware'
 require_relative 'stytch/version'
 
 module Stytch end
+module StytchB2B end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: stytch
 version: !ruby/object:Gem::Version
-  version: 4.4.0
+  version: 4.5.0
 platform: ruby
 authors:
 - stytch
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2023-03-29 00:00:00.000000000 Z
+date: 2023-05-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: faraday
@@ -113,6 +113,13 @@ files:
 - bin/console
 - bin/setup
 - lib/stytch.rb
+- lib/stytch/b2b_client.rb
+- lib/stytch/b2b_discovery.rb
+- lib/stytch/b2b_magic_links.rb
+- lib/stytch/b2b_organizations.rb
+- lib/stytch/b2b_passwords.rb
+- lib/stytch/b2b_sessions.rb
+- lib/stytch/b2b_sso.rb
 - lib/stytch/client.rb
 - lib/stytch/crypto_wallets.rb
 - lib/stytch/errors.rb
@@ -149,7 +156,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.4
+rubygems_version: 3.2.3
 signing_key:
 specification_version: 4
 summary: Stytch Ruby Gem