RubyGems - workos - Versions diffs - 7.0.0 → 7.1.1 - Mend

workos 7.0.0 → 7.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (76) hide show

checksums.yaml +4 -4
data/.github/workflows/ci.yml +1 -1
data/.github/workflows/lint.yml +1 -1
data/.github/workflows/release-please.yml +30 -2
data/.github/workflows/release.yml +1 -1
data/.last-synced-sha +1 -0
data/.oagen-manifest.json +739 -4
data/.release-please-manifest.json +1 -1
data/CHANGELOG.md +23 -0
data/Gemfile.lock +2 -2
data/README.md +0 -1
data/lib/workos/admin_portal/domain_verification_intent_options.rb +18 -0
data/lib/workos/admin_portal/generate_link.rb +3 -3
data/lib/workos/admin_portal/intent_options.rb +6 -2
data/lib/workos/admin_portal.rb +3 -3
data/lib/workos/authorization.rb +61 -67
data/lib/workos/client.rb +8 -0
data/lib/workos/directory_sync/directory_user_with_groups.rb +10 -2
data/lib/workos/groups/create_group.rb +22 -0
data/lib/workos/groups/create_group_membership.rb +18 -0
data/lib/workos/groups/update_group.rb +7 -0
data/lib/workos/groups.rb +256 -0
data/lib/workos/session.rb +16 -5
data/lib/workos/shared/waitlist_user.rb +37 -0
data/lib/workos/shared/waitlist_user_approved.rb +34 -0
data/lib/workos/shared/waitlist_user_created.rb +34 -0
data/lib/workos/shared/waitlist_user_denied.rb +34 -0
data/lib/workos/types/create_webhook_endpoint_events.rb +4 -1
data/lib/workos/types/groups_order.rb +9 -0
data/lib/workos/types/sso_provider.rb +10 -1
data/lib/workos/types/user_management_authentication_provider.rb +10 -1
data/lib/workos/types/user_management_organization_membership_groups_order.rb +9 -0
data/lib/workos/types/waitlist_user_state.rb +14 -0
data/lib/workos/user_management/invitation.rb +3 -0
data/lib/workos/user_management/invitation_accepted_data.rb +3 -0
data/lib/workos/user_management/invitation_created_data.rb +3 -0
data/lib/workos/user_management/invitation_resent_data.rb +3 -0
data/lib/workos/user_management/invitation_revoked_data.rb +3 -0
data/lib/workos/user_management/user_invite.rb +3 -0
data/lib/workos/user_management.rb +32 -40
data/lib/workos/user_management_organization_membership_groups.rb +60 -0
data/lib/workos/version.rb +1 -1
data/lib/workos.rb +4 -0
data/rbi/workos/admin_portal.rbi +2 -2
data/rbi/workos/authorization.rbi +13 -12
data/rbi/workos/client.rbi +6 -0
data/rbi/workos/create_group.rbi +30 -0
data/rbi/workos/create_group_membership.rbi +24 -0
data/rbi/workos/domain_verification_intent_options.rbi +24 -0
data/rbi/workos/generate_link.rbi +2 -2
data/rbi/workos/groups.rbi +97 -0
data/rbi/workos/intent_options.rbi +8 -2
data/rbi/workos/invitation.rbi +6 -0
data/rbi/workos/invitation_accepted_data.rbi +6 -0
data/rbi/workos/invitation_created_data.rbi +6 -0
data/rbi/workos/invitation_resent_data.rbi +6 -0
data/rbi/workos/invitation_revoked_data.rbi +6 -0
data/rbi/workos/update_group.rbi +30 -0
data/rbi/workos/user_invite.rbi +6 -0
data/rbi/workos/user_management_organization_membership_groups.rbi +25 -0
data/rbi/workos/waitlist_user.rbi +60 -0
data/rbi/workos/waitlist_user_approved.rbi +54 -0
data/rbi/workos/waitlist_user_created.rbi +54 -0
data/rbi/workos/waitlist_user_denied.rbi +54 -0
data/test/workos/test_authorization.rb +33 -33
data/test/workos/test_groups.rb +89 -0
data/test/workos/test_model_round_trip.rb +153 -24
data/test/workos/test_session.rb +125 -0
data/test/workos/test_user_management_organization_membership_groups.rb +33 -0
metadata +29 -8
data/lib/workos/user_management/urn_ietf_params_oauth_grant_type_device_code_session_authenticate_request.rb +0 -8
data/lib/workos/user_management/urn_workos_oauth_grant_type_email_verification_code_session_authenticate_request.rb +0 -8
data/lib/workos/user_management/urn_workos_oauth_grant_type_magic_auth_code_session_authenticate_request.rb +0 -8
data/lib/workos/user_management/urn_workos_oauth_grant_type_mfa_totp_session_authenticate_request.rb +0 -8
data/lib/workos/user_management/urn_workos_oauth_grant_type_organization_selection_session_authenticate_request.rb +0 -8
/data/lib/workos/{shared → groups}/group.rb +0 -0

data/.release-please-manifest.json CHANGED Viewed

@@ -1,3 +1,3 @@
 {
-  ".": "7.0.0"
+  ".": "7.1.1"
 }

data/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,28 @@
 # Changelog
+## [7.1.1](https://github.com/workos/workos-ruby/compare/v7.1.0...v7.1.1) (2026-04-29)
+### Bug Fixes
+* seal session client-side in Session#refresh ([#470](https://github.com/workos/workos-ruby/issues/470)) ([32662ab](https://github.com/workos/workos-ruby/commit/32662ab3d67ffdcc895141aa8fd5efb22ba79fdb))
+## [7.1.0](https://github.com/workos/workos-ruby/compare/v7.0.0...v7.1.0) (2026-04-27)
+### Features
+* **generated:** update generated SDK from spec changes ([#465](https://github.com/workos/workos-ruby/issues/465)) ([6c145d2](https://github.com/workos/workos-ruby/commit/6c145d2bfec9af8fcffdc5ffe678f452ea925f22))
+### Bug Fixes
+* add ruby/setup-ruby to release-please workflow ([aa5ebd0](https://github.com/workos/workos-ruby/commit/aa5ebd0e26edc291f54d92b2f4681a224b0d3889))
+* eagerly load configuration.rb to fix WorkOS.configure ([#467](https://github.com/workos/workos-ruby/issues/467)) ([eea391c](https://github.com/workos/workos-ruby/commit/eea391cd88015373fb89f3b8fbe1dda9c5cfedbe))
+* remove stale URN-prefixed alias files breaking Zeitwerk ([#466](https://github.com/workos/workos-ruby/issues/466)) ([92b2aa5](https://github.com/workos/workos-ruby/commit/92b2aa5166e370bc8f9aaaee22626058d93521a5))
+* update Gemfile.lock in release-please PR and bump action pins ([2aa0574](https://github.com/workos/workos-ruby/commit/2aa0574f3084e79af488c2125adbfc337604a3be))
+* update Zeitwerk autoload for inflections.rb ([#460](https://github.com/workos/workos-ruby/issues/460)) ([4fa1332](https://github.com/workos/workos-ruby/commit/4fa1332f66c14e89c6df8d8d6af6ac8024824b15))
 ## [7.0.0](https://github.com/workos/workos-ruby/compare/v6.2.0...v7.0.0) (2026-04-20)
 This is a major release that introduces a fully redesigned SDK architecture. The SDK is now **generated from the WorkOS OpenAPI spec**, bringing type safety, consistent interfaces, and improved developer ergonomics.

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    workos (7.0.0)
+    workos (7.1.1)
       jwt (~> 3.1)
       logger (~> 1.7)
       zeitwerk (~> 2.6)
@@ -124,7 +124,7 @@ CHECKSUMS
   unicode-display_width (3.2.0) sha256=0cdd96b5681a5949cdbc2c55e7b420facae74c4aaf9a9815eee1087cb1853c42
   unicode-emoji (4.2.0) sha256=519e69150f75652e40bf736106cfbc8f0f73aa3fb6a65afe62fefa7f80b0f80f
   webmock (3.26.2) sha256=774556f2ea6371846cca68c01769b2eac0d134492d21f6d0ab5dd643965a4c90
-  workos (7.0.0)
+  workos (7.1.1)
   zeitwerk (2.7.5) sha256=d8da92128c09ea6ec62c949011b00ed4a20242b255293dd66bf41545398f73dd
 BUNDLED WITH

data/README.md CHANGED Viewed

@@ -37,7 +37,6 @@ Or configure the SDK in an initializer:
 # /config/initializers/workos.rb
 require "workos"
-require "workos/configuration"
 WorkOS.configure do |config|
   config.api_key = ENV.fetch("WORKOS_API_KEY")

data/lib/workos/admin_portal/domain_verification_intent_options.rb ADDED Viewed

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+# This file is auto-generated by oagen. Do not edit.
+module WorkOS
+  class DomainVerificationIntentOptions < WorkOS::Types::BaseModel
+    HASH_ATTRS = {
+      domain_name: :domain_name
+    }.freeze
+    attr_accessor :domain_name
+    def initialize(json)
+      hash = self.class.normalize(json)
+      @domain_name = hash[:domain_name]
+    end
+  end
+end

data/lib/workos/admin_portal/generate_link.rb CHANGED Viewed

@@ -10,7 +10,7 @@ module WorkOS
       organization: :organization,
       intent: :intent,
       intent_options: :intent_options,
-      admin_emails: :admin_emails
+      it_contact_emails: :it_contact_emails
     }.freeze
     attr_accessor \
@@ -19,7 +19,7 @@ module WorkOS
       :organization,
       :intent,
       :intent_options,
-      :admin_emails
+      :it_contact_emails
     def initialize(json)
       hash = self.class.normalize(json)
@@ -28,7 +28,7 @@ module WorkOS
       @organization = hash[:organization]
       @intent = hash[:intent]
       @intent_options = hash[:intent_options] ? WorkOS::IntentOptions.new(hash[:intent_options]) : nil
-      @admin_emails = hash[:admin_emails] || []
+      @it_contact_emails = hash[:it_contact_emails] || []
     end
   end
 end

data/lib/workos/admin_portal/intent_options.rb CHANGED Viewed

@@ -5,14 +5,18 @@
 module WorkOS
   class IntentOptions < WorkOS::Types::BaseModel
     HASH_ATTRS = {
-      sso: :sso
+      sso: :sso,
+      domain_verification: :domain_verification
     }.freeze
-    attr_accessor :sso
+    attr_accessor \
+      :sso,
+      :domain_verification
     def initialize(json)
       hash = self.class.normalize(json)
       @sso = hash[:sso] ? WorkOS::SSOIntentOptions.new(hash[:sso]) : nil
+      @domain_verification = hash[:domain_verification] ? WorkOS::DomainVerificationIntentOptions.new(hash[:domain_verification]) : nil
     end
   end
 end

data/lib/workos/admin_portal.rb CHANGED Viewed

@@ -16,7 +16,7 @@ module WorkOS
     # @param organization [String] An [Organization](https://workos.com/docs/reference/organization) identifier.
     # @param intent [WorkOS::Types::GenerateLinkIntent, nil] The intent of the Admin Portal. - `sso` - Launch Admin Portal for creating SSO connections - `dsync` - Launch Admin Portal for creating Directory Sync connections - `audit_logs` - Launch Admin Portal for viewing Audit Logs - `log_streams` - Launch Admin Portal for creating Log Streams - `domain_verification` - Launch Admin Portal for Domain Verification - `certificate_renewal` - Launch Admin Portal for renewing SAML Certificates - `bring_your_own_key` - Launch Admin Portal for configuring Bring Your Own Key
     # @param intent_options [WorkOS::IntentOptions, nil] Options to configure the Admin Portal based on the intent.
-    # @param admin_emails [Array<String>, nil] The email addresses of the IT admins to grant access to the Admin Portal for the given organization. Accepts up to 20 emails.
+    # @param it_contact_emails [Array<String>, nil] The email addresses of the IT contacts to grant access to the Admin Portal for the given organization. Accepts up to 20 emails.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::PortalLinkResponse]
     def generate_link(
@@ -25,7 +25,7 @@ module WorkOS
       success_url: nil,
       intent: nil,
       intent_options: nil,
-      admin_emails: nil,
+      it_contact_emails: nil,
       request_options: {}
     )
       body = {
@@ -34,7 +34,7 @@ module WorkOS
         "organization" => organization,
         "intent" => intent,
         "intent_options" => intent_options,
-        "admin_emails" => admin_emails
+        "it_contact_emails" => it_contact_emails
       }.compact
       response = @client.request(
         method: :post,

data/lib/workos/authorization.rb CHANGED Viewed

@@ -27,25 +27,23 @@ module WorkOS
       resource_type_slug: nil,
       request_options: {}
     )
-      params = {}.compact
-      case resource_target[:type]
-      when "by_id"
-        params["resource_id"] = resource_target[:resource_id]
-      when "by_external_id"
-        params["resource_external_id"] = resource_target[:resource_external_id]
-        params["resource_type_slug"] = resource_target[:resource_type_slug]
-      end
       body = {
         "permission_slug" => permission_slug,
         "resource_id" => resource_id,
         "resource_external_id" => resource_external_id,
         "resource_type_slug" => resource_type_slug
       }.compact
+      case resource_target[:type]
+      when "by_id"
+        body["resource_id"] = resource_target[:resource_id]
+      when "by_external_id"
+        body["resource_external_id"] = resource_target[:resource_external_id]
+        body["resource_type_slug"] = resource_target[:resource_type_slug]
+      end
       response = @client.request(
         method: :post,
         path: "/authorization/organization_memberships/#{WorkOS::Util.encode_path(organization_membership_id)}/check",
         auth: true,
-        params: params,
         body: body,
         request_options: request_options
       )
@@ -63,7 +61,7 @@ module WorkOS
     # @param permission_slug [String] The permission slug to filter by. Only child resources where the organization membership has this permission are returned.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Types::ListStruct<WorkOS::AuthorizationResource>]
-    def list_organization_membership_resources(
+    def list_resources_for_membership(
       organization_membership_id:,
       permission_slug:,
       parent_resource:,
@@ -95,7 +93,7 @@ module WorkOS
         request_options: request_options
       )
       fetch_next = ->(cursor) {
-        list_organization_membership_resources(
+        list_resources_for_membership(
           organization_membership_id: organization_membership_id,
           before: before,
           after: cursor,
@@ -123,7 +121,7 @@ module WorkOS
     # @param order [WorkOS::Types::AuthorizationOrder, nil] Order the results by the creation time. Supported values are `"asc"` (ascending), `"desc"` (descending), and `"normal"` (descending with reversed cursor semantics where `before` fetches older records and `after` fetches newer records). Defaults to descending.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Types::ListStruct<WorkOS::AuthorizationPermission>]
-    def list_resource_permissions(
+    def list_effective_permissions(
       organization_membership_id:,
       resource_id:,
       before: nil,
@@ -146,7 +144,7 @@ module WorkOS
         request_options: request_options
       )
       fetch_next = ->(cursor) {
-        list_resource_permissions(
+        list_effective_permissions(
           organization_membership_id: organization_membership_id,
           resource_id: resource_id,
           before: before,
@@ -225,7 +223,7 @@ module WorkOS
     # @param order [WorkOS::Types::AuthorizationOrder, nil] Order the results by the creation time. Supported values are `"asc"` (ascending), `"desc"` (descending), and `"normal"` (descending with reversed cursor semantics where `before` fetches older records and `after` fetches newer records). Defaults to descending.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Types::ListStruct<WorkOS::RoleAssignment>]
-    def list_organization_membership_role_assignments(
+    def list_role_assignments(
       organization_membership_id:,
       before: nil,
       after: nil,
@@ -247,7 +245,7 @@ module WorkOS
         request_options: request_options
       )
       fetch_next = ->(cursor) {
-        list_organization_membership_role_assignments(
+        list_role_assignments(
           organization_membership_id: organization_membership_id,
           before: before,
           after: cursor,
@@ -281,25 +279,23 @@ module WorkOS
       resource_type_slug: nil,
       request_options: {}
     )
-      params = {}.compact
-      case resource_target[:type]
-      when "by_id"
-        params["resource_id"] = resource_target[:resource_id]
-      when "by_external_id"
-        params["resource_external_id"] = resource_target[:resource_external_id]
-        params["resource_type_slug"] = resource_target[:resource_type_slug]
-      end
       body = {
         "role_slug" => role_slug,
         "resource_id" => resource_id,
         "resource_external_id" => resource_external_id,
         "resource_type_slug" => resource_type_slug
       }.compact
+      case resource_target[:type]
+      when "by_id"
+        body["resource_id"] = resource_target[:resource_id]
+      when "by_external_id"
+        body["resource_external_id"] = resource_target[:resource_external_id]
+        body["resource_type_slug"] = resource_target[:resource_type_slug]
+      end
       response = @client.request(
         method: :post,
         path: "/authorization/organization_memberships/#{WorkOS::Util.encode_path(organization_membership_id)}/role_assignments",
         auth: true,
-        params: params,
         body: body,
         request_options: request_options
       )
@@ -355,7 +351,7 @@ module WorkOS
     # @param role_assignment_id [String] The ID of the role assignment to remove.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [void]
-    def delete_organization_membership_role_assignment(
+    def remove_role_assignment(
       organization_membership_id:,
       role_assignment_id:,
       request_options: {}
@@ -498,7 +494,7 @@ module WorkOS
     # @param body_slug [String] The slug of the permission to add to the role.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Role]
-    def create_role_permission(
+    def add_organization_role_permission(
       organization_id:,
       slug:,
       body_slug:,
@@ -525,7 +521,7 @@ module WorkOS
     # @param permissions [Array<String>] The permission slugs to assign to the role.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Role]
-    def update_role_permissions(
+    def set_organization_role_permissions(
       organization_id:,
       slug:,
       permissions:,
@@ -552,7 +548,7 @@ module WorkOS
     # @param permission_slug [String] The slug of the permission to remove.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Role]
-    def delete_role_permission(
+    def remove_organization_role_permission(
       organization_id:,
       slug:,
       permission_slug:,
@@ -575,7 +571,7 @@ module WorkOS
     # @param external_id [String] An identifier you provide to reference the resource in your system.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::AuthorizationResource]
-    def get_organization_resource(
+    def get_resource_by_external_id(
       organization_id:,
       resource_type_slug:,
       external_id:,
@@ -603,7 +599,7 @@ module WorkOS
     # @param parent_resource_type_slug [String, nil] The resource type slug of the parent resource. Required with `parent_resource_external_id`. Mutually exclusive with `parent_resource_id`.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::AuthorizationResource]
-    def update_organization_resource(
+    def update_resource_by_external_id(
       organization_id:,
       resource_type_slug:,
       external_id:,
@@ -615,16 +611,6 @@ module WorkOS
       parent_resource: nil,
       request_options: {}
     )
-      params = {}.compact
-      if parent_resource
-        case parent_resource[:type]
-        when "by_id"
-          params["parent_resource_id"] = parent_resource[:parent_resource_id]
-        when "by_external_id"
-          params["parent_resource_external_id"] = parent_resource[:parent_resource_external_id]
-          params["parent_resource_type_slug"] = parent_resource[:parent_resource_type_slug]
-        end
-      end
       body = {
         "name" => name,
         "description" => description,
@@ -632,11 +618,19 @@ module WorkOS
         "parent_resource_external_id" => parent_resource_external_id,
         "parent_resource_type_slug" => parent_resource_type_slug
       }.compact
+      if parent_resource
+        case parent_resource[:type]
+        when "by_id"
+          body["parent_resource_id"] = parent_resource[:parent_resource_id]
+        when "by_external_id"
+          body["parent_resource_external_id"] = parent_resource[:parent_resource_external_id]
+          body["parent_resource_type_slug"] = parent_resource[:parent_resource_type_slug]
+        end
+      end
       response = @client.request(
         method: :patch,
         path: "/authorization/organizations/#{WorkOS::Util.encode_path(organization_id)}/resources/#{WorkOS::Util.encode_path(resource_type_slug)}/#{WorkOS::Util.encode_path(external_id)}",
         auth: true,
-        params: params,
         body: body,
         request_options: request_options
       )
@@ -652,7 +646,7 @@ module WorkOS
     # @param cascade_delete [Boolean, nil] If true, deletes all descendant resources and role assignments. If not set and the resource has children or assignments, the request will fail.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [void]
-    def delete_organization_resource(
+    def delete_resource_by_external_id(
       organization_id:,
       resource_type_slug:,
       external_id:,
@@ -684,7 +678,7 @@ module WorkOS
     # @param assignment [WorkOS::Types::AuthorizationAssignment, nil] Filter by assignment type. Use "direct" for direct assignments only, or "indirect" to include inherited assignments.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Types::ListStruct<WorkOS::UserOrganizationMembershipBaseListData>]
-    def list_resource_organization_memberships(
+    def list_memberships_for_resource_by_external_id(
       organization_id:,
       resource_type_slug:,
       external_id:,
@@ -712,7 +706,7 @@ module WorkOS
         request_options: request_options
       )
       fetch_next = ->(cursor) {
-        list_resource_organization_memberships(
+        list_memberships_for_resource_by_external_id(
           organization_id: organization_id,
           resource_type_slug: resource_type_slug,
           external_id: external_id,
@@ -740,6 +734,7 @@ module WorkOS
     # @param order [WorkOS::Types::AuthorizationOrder, nil] Order the results by the creation time. Supported values are `"asc"` (ascending), `"desc"` (descending), and `"normal"` (descending with reversed cursor semantics where `before` fetches older records and `after` fetches newer records). Defaults to descending.
     # @param organization_id [String, nil] Filter resources by organization ID.
     # @param resource_type_slug [String, nil] Filter resources by resource type slug.
+    # @param resource_external_id [String, nil] Filter resources by external ID.
     # @param search [String, nil] Search resources by name.
     # @param request_options [Hash] (see WorkOS::Types::RequestOptions)
     # @return [WorkOS::Types::ListStruct<WorkOS::AuthorizationResource>]
@@ -750,6 +745,7 @@ module WorkOS
       order: "desc",
       organization_id: nil,
       resource_type_slug: nil,
+      resource_external_id: nil,
       search: nil,
       parent: nil,
       request_options: {}
@@ -761,6 +757,7 @@ module WorkOS
         "order" => order,
         "organization_id" => organization_id,
         "resource_type_slug" => resource_type_slug,
+        "resource_external_id" => resource_external_id,
         "search" => search
       }.compact
       if parent
@@ -787,6 +784,7 @@ module WorkOS
           order: order,
           organization_id: organization_id,
           resource_type_slug: resource_type_slug,
+          resource_external_id: resource_external_id,
           search: search,
           parent: parent,
           request_options: request_options
@@ -795,7 +793,7 @@ module WorkOS
       WorkOS::Types::ListStruct.from_response(
         response,
         model: WorkOS::AuthorizationResource,
-        filters: {before: before, limit: limit, order: order, organization_id: organization_id, resource_type_slug: resource_type_slug, search: search, parent: parent},
+        filters: {before: before, limit: limit, order: order, organization_id: organization_id, resource_type_slug: resource_type_slug, resource_external_id: resource_external_id, search: search, parent: parent},
         fetch_next: fetch_next
       )
     end
@@ -823,16 +821,6 @@ module WorkOS
       parent_resource: nil,
       request_options: {}
     )
-      params = {}.compact
-      if parent_resource
-        case parent_resource[:type]
-        when "by_id"
-          params["parent_resource_id"] = parent_resource[:parent_resource_id]
-        when "by_external_id"
-          params["parent_resource_external_id"] = parent_resource[:parent_resource_external_id]
-          params["parent_resource_type_slug"] = parent_resource[:parent_resource_type_slug]
-        end
-      end
       body = {
         "external_id" => external_id,
         "name" => name,
@@ -843,11 +831,19 @@ module WorkOS
         "parent_resource_external_id" => parent_resource_external_id,
         "parent_resource_type_slug" => parent_resource_type_slug
       }.compact
+      if parent_resource
+        case parent_resource[:type]
+        when "by_id"
+          body["parent_resource_id"] = parent_resource[:parent_resource_id]
+        when "by_external_id"
+          body["parent_resource_external_id"] = parent_resource[:parent_resource_external_id]
+          body["parent_resource_type_slug"] = parent_resource[:parent_resource_type_slug]
+        end
+      end
       response = @client.request(
         method: :post,
         path: "/authorization/resources",
         auth: true,
-        params: params,
         body: body,
         request_options: request_options
       )
@@ -894,16 +890,6 @@ module WorkOS
       parent_resource: nil,
       request_options: {}
     )
-      params = {}.compact
-      if parent_resource
-        case parent_resource[:type]
-        when "by_id"
-          params["parent_resource_id"] = parent_resource[:parent_resource_id]
-        when "by_external_id"
-          params["parent_resource_external_id"] = parent_resource[:parent_resource_external_id]
-          params["parent_resource_type_slug"] = parent_resource[:parent_resource_type_slug]
-        end
-      end
       body = {
         "name" => name,
         "description" => description,
@@ -911,11 +897,19 @@ module WorkOS
         "parent_resource_external_id" => parent_resource_external_id,
         "parent_resource_type_slug" => parent_resource_type_slug
       }.compact
+      if parent_resource
+        case parent_resource[:type]
+        when "by_id"
+          body["parent_resource_id"] = parent_resource[:parent_resource_id]
+        when "by_external_id"
+          body["parent_resource_external_id"] = parent_resource[:parent_resource_external_id]
+          body["parent_resource_type_slug"] = parent_resource[:parent_resource_type_slug]
+        end
+      end
       response = @client.request(
         method: :patch,
         path: "/authorization/resources/#{WorkOS::Util.encode_path(resource_id)}",
         auth: true,
-        params: params,
         body: body,
         request_options: request_options
       )

data/lib/workos/client.rb CHANGED Viewed

@@ -48,6 +48,10 @@ module WorkOS
       @organizations ||= WorkOS::Organizations.new(self)
     end
+    def groups
+      @groups ||= WorkOS::Groups.new(self)
+    end
     def admin_portal
       @admin_portal ||= WorkOS::AdminPortal.new(self)
     end
@@ -60,6 +64,10 @@ module WorkOS
       @user_management ||= WorkOS::UserManagement.new(self)
     end
+    def user_management_organization_membership_groups
+      @user_management_organization_membership_groups ||= WorkOS::UserManagementOrganizationMembershipGroups.new(self)
+    end
     def webhooks
       @webhooks ||= WorkOS::Webhooks.new(self)
     end

data/lib/workos/directory_sync/directory_user_with_groups.rb CHANGED Viewed

@@ -34,6 +34,8 @@ module WorkOS
     #   @deprecated The username of the user.
     # @!attribute raw_attributes
     #   @deprecated The raw attributes received from the directory provider.
+    # @!attribute groups
+    #   @deprecated The directory groups the user belongs to. Use the List Directory Groups endpoint with a user filter instead.
     attr_accessor \
       :object,
@@ -49,8 +51,7 @@ module WorkOS
       :role,
       :roles,
       :created_at,
-      :updated_at,
-      :groups
+      :updated_at
     def emails
       warn "[DEPRECATION] `emails` is deprecated and will be removed in a future version.", uplevel: 1
@@ -80,6 +81,13 @@ module WorkOS
     attr_writer :raw_attributes
+    def groups
+      warn "[DEPRECATION] `groups` is deprecated and will be removed in a future version.", uplevel: 1
+      @groups
+    end
+    attr_writer :groups
     def initialize(json)
       hash = self.class.normalize(json)
       @object = hash[:object]

data/lib/workos/groups/create_group.rb ADDED Viewed

@@ -0,0 +1,22 @@
+# frozen_string_literal: true
+# This file is auto-generated by oagen. Do not edit.
+module WorkOS
+  class CreateGroup < WorkOS::Types::BaseModel
+    HASH_ATTRS = {
+      name: :name,
+      description: :description
+    }.freeze
+    attr_accessor \
+      :name,
+      :description
+    def initialize(json)
+      hash = self.class.normalize(json)
+      @name = hash[:name]
+      @description = hash[:description]
+    end
+  end
+end

data/lib/workos/groups/create_group_membership.rb ADDED Viewed

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+# This file is auto-generated by oagen. Do not edit.
+module WorkOS
+  class CreateGroupMembership < WorkOS::Types::BaseModel
+    HASH_ATTRS = {
+      organization_membership_id: :organization_membership_id
+    }.freeze
+    attr_accessor :organization_membership_id
+    def initialize(json)
+      hash = self.class.normalize(json)
+      @organization_membership_id = hash[:organization_membership_id]
+    end
+  end
+end

data/lib/workos/groups/update_group.rb ADDED Viewed

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+# This file is auto-generated by oagen. Do not edit.
+module WorkOS
+  UpdateGroup = UpdateAuthorizationPermission
+end