RubyGems - warrant - Versions diffs - 4.0.0 → 5.0.0 - Mend

warrant 4.0.0 → 5.0.0

Files changed (16) hide show

checksums.yaml +4 -4
data/lib/warrant/api_operations.rb +9 -7
data/lib/warrant/models/feature.rb +122 -99
data/lib/warrant/models/list_response.rb +14 -0
data/lib/warrant/models/object.rb +230 -0
data/lib/warrant/models/permission.rb +72 -103
data/lib/warrant/models/pricing_tier.rb +128 -97
data/lib/warrant/models/query_result.rb +16 -0
data/lib/warrant/models/role.rb +72 -97
data/lib/warrant/models/session.rb +4 -4
data/lib/warrant/models/tenant.rb +131 -133
data/lib/warrant/models/user.rb +180 -155
data/lib/warrant/models/warrant.rb +196 -94
data/lib/warrant/version.rb +1 -1
data/lib/warrant.rb +3 -0
metadata +5 -2

data/lib/warrant/models/role.rb CHANGED Viewed

@@ -1,23 +1,22 @@
 # frozen_string_literal: true
 module Warrant
-    class Role
+    class Role < Warrant::Object
         OBJECT_TYPE = "role"
         include Warrant::WarrantObject
-        attr_reader :role_id, :name, :description
+        alias :role_id :object_id
         # @!visibility private
-        def initialize(role_id, name = nil, description = nil)
-            @role_id = role_id
-            @name = name
-            @description = description
+        def initialize(role_id, meta = {}, created_at = nil)
+            super(OBJECT_TYPE, role_id, meta, created_at)
         end
         # Creates a role with the given parameters
         #
-        # @option params [String] :role_id A string identifier for this new role. The role_id can only be composed of lower-case alphanumeric chars and/or '-' and '_'.
+        # @option params [String] :role_id User defined string identifier for this role. If not provided, Warrant will create an id for the role and return it. In this case, you should store the id in your system as you will need to provide it for any authorization requests for that role. Note that roleIds in Warrant must be composed of alphanumeric chars, '-', and/or '_'. (optional)
+        # @option params [Hash] :meta A JSON object containing additional information about this role (e.g. name/description) to be persisted to Warrant. (optional)
         #
         # @return [Role] created role
         #
@@ -28,16 +27,9 @@ module Warrant
         # @raise [Warrant::InternalError]
         # @raise [Warrant::InvalidRequestError]
         # @raise [Warrant::UnauthorizedError]
-        def self.create(params = {})
-            res = APIOperations.post(URI.parse("#{::Warrant.config.api_base}/v1/roles"), Util.normalize_params(params))
-            case res
-            when Net::HTTPSuccess
-                res_json = JSON.parse(res.body)
-                Role.new(res_json['roleId'], res_json['name'], res_json['description'])
-            else
-                APIOperations.raise_error(res)
-            end
+        def self.create(params = {}, options = {})
+            object = Object.create({ object_type: OBJECT_TYPE, object_id: params[:role_id], meta: params[:meta] }, options)
+            return Role.new(object.object_id, object.meta, object.created_at)
         end
         # Deletes a role with given role id
@@ -53,27 +45,20 @@ module Warrant
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def self.delete(role_id)
-            res = APIOperations.delete(URI.parse("#{::Warrant.config.api_base}/v1/roles/#{role_id}"))
-            case res
-            when Net::HTTPSuccess
-                return
-            else
-                APIOperations.raise_error(res)
-            end
+        def self.delete(role_id, options = {})
+            return Object.delete(OBJECT_TYPE, role_id, options)
         end
         # Lists all roles for your organization
         #
-        # @option filters [Integer] :page A positive integer (starting with 1) representing the page of items to return in response. Used in conjunction with the limit param. (optional)
-        # @option filters [Integer] :limit A positive integer representing the max number of items to return in response. (optional)
-        # @option filters [String] :beforeId A string representing a cursor value in the form of a roleId. If provided, the results returned are immediately before the provided value. (optional)
-        # @option filters [String] :beforeValue A string representing a cursor value in the form of the `sortBy` value. If provided, the results returned are immediately before the provided value. (optional)
-        # @option filters [String] :afterId A string representing a cursor value in the form of a roleId. If provided, the results returned are immediately after the provided value. (optional)
-        # @option filters [String] :afterValue A string representing a cursor value in the form of the `sortBy` value. If provided, the results returned are immediately after the provided value. (optional)
-        # @option filters [String] :sortBy A string representing the field to sort results by. Default value is roleId. (optional)
-        # @option filters [String] :sortOrder A string representing whether to sort results in ascending or descending order. Must be ASC or DESC. (optional)
+        # @param [Hash] filters Filters to apply to result set
+        # @param [Hash] options Options to apply on a per-request basis
+        # @option filters [Integer] :limit A positive integer representing the maximum number of items to return in the response. Must be less than or equal to 1000. Defaults to 25. (optional)
+        # @option filters [String] :prev_cursor A cursor representing your place in a list of results. Requests containing prev_cursor will return the results immediately preceding the cursor. (optional)
+        # @option filters [String] :next_cursor A cursor representing your place in a list of results. Requests containing next_cursor will return the results immediately following the cursor. (optional)
+        # @option filters [String] :sort_by The column to sort the result by. Unless otherwise specified, all list endpoints are sorted by their unique identifier by default. Supported values for objects are +object_type+, +object_id+, and +created_at+ (optional)
+        # @option filters [String] :sort_order The order in which to sort the result by. Valid values are +ASC+ and +DESC+. Defaults to +ASC+. (optional)
+        # @option options [String] :warrant_token A valid warrant token from a previous write operation or latest. Used to specify desired consistency for this read operation. (optional)
         #
         # @return [Array<Role>] all roles for your organization
         #
@@ -83,16 +68,11 @@ module Warrant
         # @raise [Warrant::InternalError]
         # @raise [Warrant::InvalidParameterError]
         # @raise [Warrant::UnauthorizedError]
-        def self.list(filters = {})
-            res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/roles"), Util.normalize_params(filters))
-            case res
-            when Net::HTTPSuccess
-                roles = JSON.parse(res.body)
-                roles.map{ |role| Role.new(role['roleId'], role['name'], role['description']) }
-            else
-                APIOperations.raise_error(res)
-            end
+        def self.list(filters = {}, options = {})
+            filters.merge({ object_type: "role" })
+            list_response = Object.list(filters, options)
+            roles = list_response.results.map{ |object| Role.new(object.object_id, object.meta, object.created_at)}
+            return ListResponse.new(roles, list_response.prev_cursor, list_response.next_cursor)
         end
         # Get a role with the given role_id
@@ -105,24 +85,15 @@ module Warrant
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def self.get(role_id)
-            res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/roles/#{role_id}"))
-            case res
-            when Net::HTTPSuccess
-                role = JSON.parse(res.body)
-                Role.new(role['roleId'], role['name'], role['description'])
-            else
-                APIOperations.raise_error(res)
-            end
+        def self.get(role_id, options = {})
+            object = Object.get(OBJECT_TYPE, role_id, options)
+            return Role.new(object.object_id, object.meta, object.created_at)
         end
         # Updates a role with the given role_id and params
         #
         # @param role_id [String] The role_id of the role to be updated.
-        # @param [Hash] params attributes to update user with
-        # @option params [String] :name Name for the role. Designed to be used as a UI-friendly identifier. (optional)
-        # @option params [String] :description Description of the role. Designed to be used as a UI-friendly identifier. (optional)
+        # @param meta [Hash] A JSON object containing additional information about this role (e.g. name/description, etc.) to be persisted to Warrant.
         #
         # @return [Role] updated role
         #
@@ -134,65 +105,59 @@ module Warrant
         # @raise [Warrant::InvalidRequestError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def self.update(role_id, params = {})
-            res = APIOperations.put(URI.parse("#{::Warrant.config.api_base}/v1/roles/#{role_id}"), Util.normalize_params(params))
-            case res
-            when Net::HTTPSuccess
-                res_json = JSON.parse(res.body)
-                Role.new(res_json['roleId'], res_json['name'], res_json['description'])
-            else
-                APIOperations.raise_error(res)
-            end
+        def self.update(role_id, meta, options = {})
+            object = Object.update(OBJECT_TYPE, role_id, meta, options)
+            return Role.new(object.object_id, object.meta, object.created_at)
         end
         # Updates a role with the given params
         #
-        # @param [Hash] params attributes to update user with
-        # @option params [String] :name Name for the role. Designed to be used as a UI-friendly identifier. (optional)
-        # @option params [String] :description Description of the role. Designed to be used as a UI-friendly identifier. (optional)
+        # @param meta [Hash] A JSON object containing additional information about this role (e.g. name/description, etc.) to be persisted to Warrant.
         #
         # @return [Role] updated role
         #
         # @example Update role "test-role"'s name
-        #   Warrant::Role.update("test-role", { name: "Test Role" })
+        #   role = Warrant::Role.get("test-role")
+        #   role.update({ name: "Test Role" })
         #
         # @raise [Warrant::InternalError]
         # @raise [Warrant::InvalidParameterError]
         # @raise [Warrant::InvalidRequestError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def update(params = {})
-            return Role.update(role_id, params)
+        def update(meta, options = {})
+            return Role.update(role_id, meta)
         end
         # List roles for user
         #
         # @param user_id [String] The user_id of the user you want to retrieve roles for.
-        # @option filters [Integer] :page A positive integer (starting with 1) representing the page of items to return in response. Used in conjunction with the limit param. (optional)
-        # @option filters [Integer] :limit A positive integer representing the max number of items to return in response. (optional)
+        # @param [Hash] filters Filters to apply to result set
+        # @param [Hash] options Options to apply on a per-request basis
+        # @option filters [String] :object_type Only return objects with an `objectType` matching this value
+        # @option filters [Integer] :limit A positive integer representing the maximum number of items to return in the response. Must be less than or equal to 1000. Defaults to 25. (optional)
+        # @option filters [String] :prev_cursor A cursor representing your place in a list of results. Requests containing prev_cursor will return the results immediately preceding the cursor. (optional)
+        # @option filters [String] :next_cursor A cursor representing your place in a list of results. Requests containing next_cursor will return the results immediately following the cursor. (optional)
+        # @option filters [String] :sort_by The column to sort the result by. Unless otherwise specified, all list endpoints are sorted by their unique identifier by default. Supported values for objects are +object_type+, +object_id+, and +created_at+ (optional)
+        # @option filters [String] :sort_order The order in which to sort the result by. Valid values are +ASC+ and +DESC+. Defaults to +ASC+. (optional)
+        # @option options [String] :warrant_token A valid warrant token from a previous write operation or latest. Used to specify desired consistency for this read operation. (optional)
         #
         # @return [Array<Role>] all assigned roles for the user
         #
         # @raise [Warrant::InternalError]
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::UnauthorizedError]
-        def self.list_for_user(user_id, filters = {})
-            res = APIOperations.get(URI.parse("#{::Warrant.config.api_base}/v1/users/#{user_id}/roles"), Util.normalize_params(filters))
-            case res
-            when Net::HTTPSuccess
-                roles = JSON.parse(res.body)
-                roles.map{ |role| Role.new(role['roleId'], role['name'], role['description']) }
-            else
-                APIOperations.raise_error(res)
-            end
+        def self.list_for_user(user_id, filters = {}, options = {})
+            query_response = Warrant.query("select role where user:#{user_id} is *", filters: filters, options: options)
+            roles = query_response.results.map{ |result| Role.new(result.object_id, result.meta) }
+            return ListResponse.new(roles, query_response.prev_cursor, query_response.next_cursor)
         end
         # Assign a role to a user
         #
         # @param user_id [String] The user_id of the user you want to assign a role to.
         # @param role_id [String] The role_id of the role you want to assign to a user.
+        # @param relation [String] The relation for this role to user association. The relation must be valid as per the +role+ object type definition.
         #
         # @return [Warrant] warrant assigning role to user
         #
@@ -202,14 +167,15 @@ module Warrant
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def self.assign_to_user(user_id, role_id)
-            Warrant.create({ object_type: Role::OBJECT_TYPE, object_id: role_id }, "member", { object_type: User::OBJECT_TYPE, object_id: user_id })
+        def self.assign_to_user(user_id, role_id, relation: "member", options: {})
+            Warrant.create({ object_type: Role::OBJECT_TYPE, object_id: role_id }, relation, { object_type: User::OBJECT_TYPE, object_id: user_id }, nil, options)
         end
         # Remove a role from a user
         #
         # @param user_id [String] The user_id of the role you want to remove a role from.
         # @param role_id [String] The role_id of the role you want to remove from a user.
+        # @param relation [String] The relation for this role to user association. The relation must be valid as per the +role+ object type definition.
         #
         # @return [nil] if remove was successful
         #
@@ -219,27 +185,35 @@ module Warrant
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
         # @raise [Warrant::WarrantError]
-        def self.remove_from_user(user_id, role_id)
-            Warrant.delete({ object_type: Role::OBJECT_TYPE, object_id: role_id }, "member", { object_type: User::OBJECT_TYPE, object_id: user_id })
+        def self.remove_from_user(user_id, role_id, relation: "member", options: {})
+            Warrant.delete({ object_type: Role::OBJECT_TYPE, object_id: role_id }, relation, { object_type: User::OBJECT_TYPE, object_id: user_id }, nil, options)
         end
         # List assigned permissions for the role
         #
-        # @option filters [Integer] :page A positive integer (starting with 1) representing the page of items to return in response. Used in conjunction with the limit param. (optional)
-        # @option filters [Integer] :limit A positive integer representing the max number of items to return in response. (optional)
+        # @param [Hash] filters Filters to apply to result set
+        # @param [Hash] options Options to apply on a per-request basis
+        # @option filters [String] :object_type Only return objects with an `objectType` matching this value
+        # @option filters [Integer] :limit A positive integer representing the maximum number of items to return in the response. Must be less than or equal to 1000. Defaults to 25. (optional)
+        # @option filters [String] :prev_cursor A cursor representing your place in a list of results. Requests containing prev_cursor will return the results immediately preceding the cursor. (optional)
+        # @option filters [String] :next_cursor A cursor representing your place in a list of results. Requests containing next_cursor will return the results immediately following the cursor. (optional)
+        # @option filters [String] :sort_by The column to sort the result by. Unless otherwise specified, all list endpoints are sorted by their unique identifier by default. Supported values for objects are +object_type+, +object_id+, and +created_at+ (optional)
+        # @option filters [String] :sort_order The order in which to sort the result by. Valid values are +ASC+ and +DESC+. Defaults to +ASC+. (optional)
+        # @option options [String] :warrant_token A valid warrant token from a previous write operation or latest. Used to specify desired consistency for this read operation. (optional)
         #
         # @return [Permission] assigned permissions
         #
         # @raise [Warrant::InternalError]
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::UnauthorizedError]
-        def list_permissions(filters = {})
-            return Permission.list_for_role(role_id, filters)
+        def list_permissions(filters = {}, options = {})
+            return Permission.list_for_role(role_id, filters, options)
         end
         # Assign a permission to a role
         #
         # @param permission_id [String] The permission_id of the permission you want to assign to the role.
+        # @param relation [String] The relation for this permission to user association. The relation must be valid as per the +permission+ object type definition.
         #
         # @return [Permission] assigned permission
         #
@@ -249,13 +223,14 @@ module Warrant
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def assign_permission(permission_id)
-            return Permission.assign_to_role(role_id, permission_id)
+        def assign_permission(permission_id, relation: "member", options: {})
+            return Permission.assign_to_role(role_id, permission_id, relation: relation, options: options)
         end
         # Remove a permission from a role
         #
         # @param permission_id [String] The permission_id of the permission you want to remove from the role.
+        # @param relation [String] The relation for this permission to user association. The relation must be valid as per the +permission+ object type definition.
         #
         # @return [nil] if remove was successful
         #
@@ -264,8 +239,8 @@ module Warrant
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
         # @raise [Warrant::WarrantError]
-        def remove_permission(permission_id)
-            return Permission.remove_from_role(role_id, permission_id)
+        def remove_permission(permission_id, relation: "member", options: {})
+            return Permission.remove_from_role(role_id, permission_id, relation: relation, options: options)
         end
         def warrant_object_type

data/lib/warrant/models/session.rb CHANGED Viewed

@@ -15,9 +15,9 @@ module Warrant
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def self.create_authorization_session(params = {})
+        def self.create_authorization_session(params = {}, options = {})
             params = params.merge(type: "sess")
-            res = APIOperations.post(URI.parse("#{::Warrant.config.api_base}/v1/sessions"), Util.normalize_params(params))
+            res = APIOperations.post(URI.parse("#{::Warrant.config.api_base}/v1/sessions"), params: Util.normalize_params(params), options: options)
             case res
             when Net::HTTPSuccess
@@ -45,9 +45,9 @@ module Warrant
         # @raise [Warrant::MissingRequiredParameterError]
         # @raise [Warrant::NotFoundError]
         # @raise [Warrant::UnauthorizedError]
-        def self.create_self_service_session(redirect_url, params = {})
+        def self.create_self_service_session(redirect_url, params = {}, options = {})
             params = params.merge(type: "ssdash")
-            res = APIOperations.post(URI.parse("#{::Warrant.config.api_base}/v1/sessions"), Util.normalize_params(params))
+            res = APIOperations.post(URI.parse("#{::Warrant.config.api_base}/v1/sessions"), params: Util.normalize_params(params), options: options)
             case res
             when Net::HTTPSuccess