RubyGems - workos - Versions diffs - 5.25.0 → 5.26.0 - Mend

workos 5.25.0 → 5.26.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

checksums.yaml +4 -4
data/.gitignore +1 -0
data/Gemfile.lock +1 -1
data/lib/workos/organization_membership.rb +3 -1
data/lib/workos/session.rb +2 -1
data/lib/workos/types/widget_scope.rb +3 -1
data/lib/workos/user_management.rb +25 -13
data/lib/workos/version.rb +1 -1
data/spec/lib/workos/session_spec.rb +6 -0
data/spec/lib/workos/user_management_spec.rb +33 -0
data/spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/valid_multiple_roles.yml +76 -0
data/spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/valid_multiple_roles.yml +76 -0
metadata +6 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 86d12c42e6f45139b343d1f519807176eca7a9ac77dbd2d3de0287a9406c50c4
-  data.tar.gz: 3addd0959c8b7b8c2caae994b694bfda1eabe41499f540d76e71865e9ae9b35f
+  metadata.gz: 70fb176f7fd3b899bb8c88f2123536778e2a026d97582de2e1beb9525b2bec5b
+  data.tar.gz: 164650f3cdbe0181b9d249c69fc6bab6713f41bef3e419dbb8ce765211123068
 SHA512:
-  metadata.gz: e286d3aa2d010bbab396d9267795c9eee35cac00f7d3c4c95fb35d70b08df133d32b0081a5f83a1ecf1fe28d663f660947b27756b7225a22ed7b345d4e5d5898
-  data.tar.gz: 9571637a3bda0ce330a54ea0a8a09076905fdece0b2e85565a3dd9510d5c3f27d52021cca7a51372d7bc0c3de00a7aeaacb521e0522b9a849df8081d5c316828
+  metadata.gz: cd3a1e2254870e8d34ace357916f6a8287fefdfb0c89e9e82ed679e02460caad0f457a2a60c56fa19afefc9d74a92427603efc12c4a181c13fe27bf4b4babc27
+  data.tar.gz: 89e8b4854838de9fc893c16380df4d0b75ef0fb68659b25cbca140310c4cc7dd00e371183c432d60d978548059a941a8410a2e143cefed6011b95be219f84d43

data/.gitignore CHANGED Viewed

@@ -49,3 +49,4 @@
 # .rubocop-https?--*
 .vscode
+.idea/

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    workos (5.25.0)
+    workos (5.26.0)
       encryptor (~> 3.0)
       jwt (~> 2.8)

data/lib/workos/organization_membership.rb CHANGED Viewed

@@ -7,7 +7,7 @@ module WorkOS
   class OrganizationMembership
     include HashProvider
-    attr_accessor :id, :user_id, :organization_id, :status, :role, :created_at, :updated_at
+    attr_accessor :id, :user_id, :organization_id, :status, :role, :roles, :created_at, :updated_at
     def initialize(json)
       hash = JSON.parse(json, symbolize_names: true)
@@ -17,6 +17,7 @@ module WorkOS
       @organization_id = hash[:organization_id]
       @status = hash[:status]
       @role = hash[:role]
+      @roles = hash[:roles]
       @created_at = hash[:created_at]
       @updated_at = hash[:updated_at]
     end
@@ -28,6 +29,7 @@ module WorkOS
         organization_id: organization_id,
         status: status,
         role: role,
+        roles: roles,
         created_at: created_at,
         updated_at: updated_at,
       }

data/lib/workos/session.rb CHANGED Viewed

@@ -30,6 +30,7 @@ module WorkOS
     # Authenticates the user based on the session data
     # @return [Hash] A hash containing the authentication response and a reason if the authentication failed
+    # rubocop:disable Metrics/AbcSize
     def authenticate
       return { authenticated: false, reason: 'NO_SESSION_COOKIE_PROVIDED' } if @session_data.nil?
@@ -49,6 +50,7 @@ module WorkOS
         session_id: decoded['sid'],
         organization_id: decoded['org_id'],
         role: decoded['role'],
+        roles: decoded['roles'],
         permissions: decoded['permissions'],
         entitlements: decoded['entitlements'],
         feature_flags: decoded['feature_flags'],
@@ -64,7 +66,6 @@ module WorkOS
     # @option options [String] :organization_id The organization ID to use for refreshing the session
     # @return [Hash] A hash containing a new sealed session, the authentication response,
     # and a reason if the refresh failed
-    # rubocop:disable Metrics/AbcSize
     # rubocop:disable Metrics/PerceivedComplexity
     def refresh(options = nil)
       cookie_password = options.nil? || options[:cookie_password].nil? ? @cookie_password : options[:cookie_password]

data/lib/workos/types/widget_scope.rb CHANGED Viewed

@@ -6,8 +6,10 @@ module WorkOS
     # scopes while generating a widget token.
     module WidgetScope
       USERS_TABLE_MANAGE = 'widgets:users-table:manage'
+      SSO_MANAGE = 'widgets:sso:manage'
+      DOMAIN_VERIFICATION_MANAGE = 'widgets:domain-verification:manage'
-      ALL = [USERS_TABLE_MANAGE].freeze
+      ALL = [USERS_TABLE_MANAGE, SSO_MANAGE, DOMAIN_VERIFICATION_MANAGE].freeze
     end
   end
 end

data/lib/workos/user_management.rb CHANGED Viewed

@@ -926,16 +926,23 @@ module WorkOS
       # @param [String] user_id The ID of the User.
       # @param [String] organization_id The ID of the Organization to which the user belongs to.
       # @param [String] role_slug The slug of the role to grant to this membership. (Optional)
+      # @param [Array<String>] role_slugs Array of role slugs to assign to this membership. (Optional)
       #
       # @return [WorkOS::OrganizationMembership]
-      def create_organization_membership(user_id:, organization_id:, role_slug: nil)
+      def create_organization_membership(user_id:, organization_id:, role_slug: nil, role_slugs: nil)
+        raise ArgumentError, 'Cannot specify both role_slug and role_slugs' if role_slug && role_slugs
+        body = {
+          user_id: user_id,
+          organization_id: organization_id,
+        }
+        body[:role_slugs] = role_slugs if role_slugs
+        body[:role_slug] = role_slug if role_slug
         request = post_request(
           path: '/user_management/organization_memberships',
-          body: {
-            user_id: user_id,
-            organization_id: organization_id,
-            role_slug: role_slug,
-          }.compact,
+          body: body.compact,
           auth: true,
         )
@@ -946,17 +953,22 @@ module WorkOS
       # Update an Organization Membership
       #
-      # @param [String] organization_membership_id The ID of the Organization Membership.
-      # @param [String] role_slug The slug of the role to grant to this membership.
+      # @param [String] id The ID of the Organization Membership.
+      # @param [String] role_slug The slug of the role to grant to this membership. (Optional)
+      # @param [Array<String>] role_slugs Array of role slugs to assign to this membership. (Optional)
       #
       # @return [WorkOS::OrganizationMembership]
-      def update_organization_membership(id:, role_slug:)
+      def update_organization_membership(id:, role_slug: nil, role_slugs: nil)
+        raise ArgumentError, 'Cannot specify both role_slug and role_slugs' if role_slug && role_slugs
+        body = { id: id }
+        body[:role_slugs] = role_slugs if role_slugs
+        body[:role_slug] = role_slug if role_slug
         request = put_request(
           path: "/user_management/organization_memberships/#{id}",
-          body: {
-            id: id,
-            role_slug: role_slug,
-          },
+          body: body.compact,
           auth: true,
         )

data/lib/workos/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module WorkOS
-  VERSION = '5.25.0'
+  VERSION = '5.26.0'
 end

data/spec/lib/workos/session_spec.rb CHANGED Viewed

@@ -108,6 +108,7 @@ describe WorkOS::Session do
         sid: 'session_id',
         org_id: 'org_id',
         role: 'role',
+        roles: ['role'],
         permissions: ['read'],
         exp: Time.now.to_i + 3600,
       }
@@ -173,6 +174,7 @@ describe WorkOS::Session do
                              session_id: 'session_id',
                              organization_id: 'org_id',
                              role: 'role',
+                             roles: ['role'],
                              permissions: ['read'],
                              feature_flags: nil,
                              entitlements: nil,
@@ -188,6 +190,7 @@ describe WorkOS::Session do
           sid: 'session_id',
           org_id: 'org_id',
           role: 'role',
+          roles: ['role'],
           permissions: ['read'],
           entitlements: ['billing'],
           exp: Time.now.to_i + 3600,
@@ -208,6 +211,7 @@ describe WorkOS::Session do
                                session_id: 'session_id',
                                organization_id: 'org_id',
                                role: 'role',
+                               roles: ['role'],
                                permissions: ['read'],
                                entitlements: ['billing'],
                                feature_flags: nil,
@@ -224,6 +228,7 @@ describe WorkOS::Session do
           sid: 'session_id',
           org_id: 'org_id',
           role: 'role',
+          roles: ['role'],
           permissions: ['read'],
           feature_flags: ['new_feature_enabled'],
           exp: Time.now.to_i + 3600,
@@ -244,6 +249,7 @@ describe WorkOS::Session do
                                session_id: 'session_id',
                                organization_id: 'org_id',
                                role: 'role',
+                               roles: ['role'],
                                permissions: ['read'],
                                entitlements: nil,
                                feature_flags: ['new_feature_enabled'],

data/spec/lib/workos/user_management_spec.rb CHANGED Viewed

@@ -1302,6 +1302,23 @@ describe WorkOS::UserManagement do
         end
       end
     end
+    context 'with role slugs' do
+      it 'creates an organization membership with multiple roles' do
+        VCR.use_cassette 'user_management/create_organization_membership/valid_multiple_roles' do
+          organization_membership = described_class.create_organization_membership(
+            user_id: 'user_01H5JQDV7R7ATEYZDEG0W5PRYS',
+            organization_id: 'org_01H5JQDV7R7ATEYZDEG0W5PRYS',
+            role_slugs: %w[admin member],
+          )
+          expect(organization_membership.organization_id).to eq('organization_01H5JQDV7R7ATEYZDEG0W5PRYS')
+          expect(organization_membership.user_id).to eq('user_01H5JQDV7R7ATEYZDEG0W5PRYS')
+          expect(organization_membership.roles).to be_an(Array)
+          expect(organization_membership.roles.length).to eq(2)
+        end
+      end
+    end
   end
   describe '.update_organization_membership' do
@@ -1329,6 +1346,22 @@ describe WorkOS::UserManagement do
         end
       end
     end
+    context 'with role slugs' do
+      it 'updates an organization membership with multiple roles' do
+        VCR.use_cassette('user_management/update_organization_membership/valid_multiple_roles') do
+          organization_membership = WorkOS::UserManagement.update_organization_membership(
+            id: 'om_01H5JQDV7R7ATEYZDEG0W5PRYS',
+            role_slugs: %w[admin editor],
+          )
+          expect(organization_membership.organization_id).to eq('organization_01H5JQDV7R7ATEYZDEG0W5PRYS')
+          expect(organization_membership.user_id).to eq('user_01H5JQDV7R7ATEYZDEG0W5PRYS')
+          expect(organization_membership.roles).to be_an(Array)
+          expect(organization_membership.roles.length).to eq(2)
+        end
+      end
+    end
   end
   describe '.delete_organization_membership' do

data/spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/valid_multiple_roles.yml ADDED Viewed

@@ -0,0 +1,76 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://api.workos.com/user_management/organization_memberships
+    body:
+      encoding: UTF-8
+      string: '{"user_id":"user_01H5JQDV7R7ATEYZDEG0W5PRYS","organization_id":"org_01H5JQDV7R7ATEYZDEG0W5PRYS","role_slugs":["admin","member"]}'
+    headers:
+      Content-Type:
+      - application/json
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Accept:
+      - "*/*"
+      User-Agent:
+      - WorkOS; ruby/3.1.4; arm64-darwin24; v5.25.0
+      Authorization:
+      - Bearer <API_KEY>
+  response:
+    status:
+      code: 201
+      message: Created
+    headers:
+      Date:
+      - Mon, 06 Oct 2025 19:57:34 GMT
+      Content-Type:
+      - application/json; charset=utf-8
+      Content-Length:
+      - '26'
+      Connection:
+      - keep-alive
+      Server:
+      - cloudflare
+      Cf-Ray:
+      - 98a7ba7fea91ead7-ORD
+      Cf-Cache-Status:
+      - DYNAMIC
+      Etag:
+      - W/"1a-pljHtlo127JYJR4E/RYOPb6ucbw"
+      Strict-Transport-Security:
+      - max-age=15552000; includeSubDomains
+      Vary:
+      - Origin, Accept-Encoding
+      Access-Control-Allow-Credentials:
+      - 'true'
+      Content-Security-Policy:
+      - 'default-src ''self'';base-uri ''self'';block-all-mixed-content;font-src ''self''
+        https: data:;frame-ancestors ''self'';img-src ''self'' data:;object-src ''none'';script-src
+        ''self'';script-src-attr ''none'';style-src ''self'' https: ''unsafe-inline'';upgrade-insecure-requests'
+      Expect-Ct:
+      - max-age=0
+      Referrer-Policy:
+      - no-referrer
+      X-Content-Type-Options:
+      - nosniff
+      X-Dns-Prefetch-Control:
+      - 'off'
+      X-Download-Options:
+      - noopen
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Permitted-Cross-Domain-Policies:
+      - none
+      X-Request-Id:
+      - 6507807d-d3b9-4e8f-9ca8-f84c6f9c6eb4
+      X-Xss-Protection:
+      - '0'
+      Set-Cookie:
+      - _cfuvid=recfIuOTSO3jIxK5SUOdhHRRfTGoiOFOMgSbEpVIjpg-1759780654123-0.0.1.1-604800000;
+        path=/; domain=.workos.com; HttpOnly; Secure; SameSite=None
+    body:
+      encoding: UTF-8
+      string: '{"object":"organization_membership","id":"om_01H5JQDV7R7ATEYZDEG0W5PRYS","user_id":"user_01H5JQDV7R7ATEYZDEG0W5PRYS","organization_id":"organization_01H5JQDV7R7ATEYZDEG0W5PRYS","status":"active","role":{"slug":"member"}, "roles":[{"slug":"member"}, {"slug":"admin"}], "created_at":"2023-07-18T02:07:19.911Z","updated_at":"2023-07-18T02:07:19.911Z"}'
+  recorded_at: Mon, 06 Oct 2025 19:57:34 GMT
+recorded_with: VCR 6.3.1

data/spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/valid_multiple_roles.yml ADDED Viewed

@@ -0,0 +1,76 @@
+---
+http_interactions:
+- request:
+    method: put
+    uri: https://api.workos.com/user_management/organization_memberships/om_01H5JQDV7R7ATEYZDEG0W5PRYS
+    body:
+      encoding: UTF-8
+      string: '{"id":"om_01H5JQDV7R7ATEYZDEG0W5PRYS","role_slugs":["admin","editor"]}'
+    headers:
+      Content-Type:
+      - application/json
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Accept:
+      - "*/*"
+      User-Agent:
+      - WorkOS; ruby/3.1.4; arm64-darwin24; v5.25.0
+      Authorization:
+      - Bearer <API_KEY>
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Date:
+      - Tue, 07 Oct 2025 14:22:26 GMT
+      Content-Type:
+      - application/json; charset=utf-8
+      Content-Length:
+      - '26'
+      Connection:
+      - keep-alive
+      Server:
+      - cloudflare
+      Cf-Ray:
+      - 98ae0cf66dd9344d-ORD
+      Cf-Cache-Status:
+      - DYNAMIC
+      Etag:
+      - W/"1a-pljHtlo127JYJR4E/RYOPb6ucbw"
+      Strict-Transport-Security:
+      - max-age=15552000; includeSubDomains
+      Vary:
+      - Origin, Accept-Encoding
+      Access-Control-Allow-Credentials:
+      - 'true'
+      Content-Security-Policy:
+      - 'default-src ''self'';base-uri ''self'';block-all-mixed-content;font-src ''self''
+        https: data:;frame-ancestors ''self'';img-src ''self'' data:;object-src ''none'';script-src
+        ''self'';script-src-attr ''none'';style-src ''self'' https: ''unsafe-inline'';upgrade-insecure-requests'
+      Expect-Ct:
+      - max-age=0
+      Referrer-Policy:
+      - no-referrer
+      X-Content-Type-Options:
+      - nosniff
+      X-Dns-Prefetch-Control:
+      - 'off'
+      X-Download-Options:
+      - noopen
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Permitted-Cross-Domain-Policies:
+      - none
+      X-Request-Id:
+      - 92b6245b-40a8-4bdd-95d1-e32f6e9d1d70
+      X-Xss-Protection:
+      - '0'
+      Set-Cookie:
+      - _cfuvid=hq7zKar8D7SHPwNzTjLw.29beujgLQlq6cOYaWvYhEM-1759846946364-0.0.1.1-604800000;
+        path=/; domain=.workos.com; HttpOnly; Secure; SameSite=None
+    body:
+      encoding: UTF-8
+      string: '{"object":"organization_membership","id":"om_01H5JQDV7R7ATEYZDEG0W5PRYS","user_id":"user_01H5JQDV7R7ATEYZDEG0W5PRYS","organization_id":"organization_01H5JQDV7R7ATEYZDEG0W5PRYS","status":"active","role":{"slug":"admin"},"roles":[{"slug":"admin"},{"slug":"editor"}],"created_at":"2023-07-18T02:07:19.911Z","updated_at":"2023-07-18T02:07:19.911Z"}'
+  recorded_at: Tue, 07 Oct 2025 14:22:26 GMT
+recorded_with: VCR 6.3.1

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: workos
 version: !ruby/object:Gem::Version
-  version: 5.25.0
+  version: 5.26.0
 platform: ruby
 authors:
 - WorkOS
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-08-05 00:00:00.000000000 Z
+date: 2025-10-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: encryptor
@@ -326,6 +326,7 @@ files:
 - spec/support/fixtures/vcr_cassettes/user_management/create_magic_auth/valid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/valid.yml
+- spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/valid_multiple_roles.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_password_reset/valid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_user_invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_user_valid.yml
@@ -377,6 +378,7 @@ files:
 - spec/support/fixtures/vcr_cassettes/user_management/send_verification_email/valid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/valid.yml
+- spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/valid_multiple_roles.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_user/email.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_user/invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_user/valid.yml
@@ -557,6 +559,7 @@ test_files:
 - spec/support/fixtures/vcr_cassettes/user_management/create_magic_auth/valid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/valid.yml
+- spec/support/fixtures/vcr_cassettes/user_management/create_organization_membership/valid_multiple_roles.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_password_reset/valid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_user_invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/create_user_valid.yml
@@ -608,6 +611,7 @@ test_files:
 - spec/support/fixtures/vcr_cassettes/user_management/send_verification_email/valid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/valid.yml
+- spec/support/fixtures/vcr_cassettes/user_management/update_organization_membership/valid_multiple_roles.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_user/email.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_user/invalid.yml
 - spec/support/fixtures/vcr_cassettes/user_management/update_user/valid.yml