Module: Auth0::Api::V2::Users

Includes:

Mixins::Validation

Included in:

Auth0::Api::V2

Defined in:

lib/auth0/api/v2/users.rb

Overview

Methods to use the users endpoints

Instance Method Summary

• #add_user_permissions(user_id, permissions) ⇒ Object

  Add one or more permissions from a specific user.

• #add_user_roles(user_id, roles) ⇒ Object

  Add one or more roles to a specific user.

• #create_user(connection, options = {}) ⇒ json

  Creates a new user according to optional parameters received.

• #delete_user(user_id) ⇒ Object

  Deletes a single user given its id.

• #delete_user_provider(user_id, provider_name) ⇒ Object

  Delete a user’s multifactor provider.

• #delete_users ⇒ Object deprecated Deprecated.

  • 4.8.0, endpoint has been removed

• #generate_recovery_code(user_id) ⇒ Object

  Remove the current Guardian recovery code and generates and returns a new one.

• #get_enrollments(user_id) ⇒ json

  Get all Guardian enrollments for a specific user.

• #get_user_organizations(user_id) ⇒ json

  Get a list of organizations for a user.

• #get_user_permissions(user_id, options = {}) ⇒ json

  Get all permissions for a specific user.

• #get_user_roles(user_id, options = {}) ⇒ json

  Get all roles assigned to a specific user.

• #invalidate_browsers(user_id) ⇒ Object

  Invalidate all remembered browsers for all authentication factors for a specific user.

• #link_user_account(user_id, body) ⇒ json

  Links the account specified in the body (secondary account) to the account specified by the id param of the URL (primary account).

• #patch_user(user_id, body) ⇒ json (also: #update_user)

  Updates a user with the object’s properties received in the optional parameters.

• #remove_user_permissions(user_id, permissions) ⇒ Object

  Remove one or more permissions from a specific user.

• #remove_user_roles(user_id, roles) ⇒ Object

  Remove one or more roles from a specific user.

• #unlink_user_account(user_id, provider, secondary_user_id) ⇒ json (also: #unlink_users_account)

  Unlink a user account.

• #user(user_id, fields: nil, include_fields: true) ⇒ json

  Retrieves a user given a user_id.

• #user_logs(user_id, options = {}) ⇒ json (also: #get_user_log_events)

  Retrieve every log event for a specific user id rubocop:disable Metrics/MethodLength, Metrics/AbcSize.

• #users(options = {}) ⇒ json (also: #get_users)

  Retrieves a list of Auth0 users.

Methods included from Mixins::Validation

#validate_permissions_array, #validate_strings_array

Instance Method Details

#add_user_permissions(user_id, permissions) ⇒ Object

Add one or more permissions from a specific user.

Parameters:

• user_id (string) —

  The user_id of the permissions to add.

• permissions (array) —

  An array of Permission structs to add.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/post_permissions

# File 'lib/auth0/api/v2/users.rb', line 287

def add_user_permissions(user_id, permissions)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  permissions = validate_permissions_array permissions
  post "#{users_path}/#{user_id}/permissions", permissions: permissions
end

#add_user_roles(user_id, roles) ⇒ Object

Add one or more roles to a specific user.

Parameters:

• user_id (string) —

  The user_id of the roles to add.

• roles (array) —

  An array of role ids to add.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/post_user_roles

# File 'lib/auth0/api/v2/users.rb', line 231

def add_user_roles(user_id, roles)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  validate_strings_array roles
  path = "#{users_path}/#{user_id}/roles"
  post(path, roles: roles)
end

#create_user(connection, options = {}) ⇒ json

Creates a new user according to optional parameters received. The attribute connection is always mandatory but depending on the type of connection you are using there could be others too. For instance, Auth0 DB Connections require email and password.

Parameters:

• connection (string) —

  The connection the user belongs to.

• options (hash) (defaults to: {}) —

  See auth0.com/docs/api/management/v2#!/Users/post_users for available options

Returns:

• (json) —

  Returns the created user.

See Also:

• https://auth0.com/docs/api/v2#!/Users/post_users

# File 'lib/auth0/api/v2/users.rb', line 49

def create_user(connection, options = {})
  if !connection.is_a?(String) || connection.empty?
    raise Auth0::MissingParameter, 'Must supply a valid connection'
  end
  request_params = Hash[options.map { |(k, v)| [k.to_sym, v] }]
  request_params[:connection] = connection
  post(users_path, request_params)
end

#delete_user(user_id) ⇒ Object

Deletes a single user given its id

Parameters:

• user_id (string) —

  The user_id of the user to delete.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/v2#!/Users/delete_users_by_id

# File 'lib/auth0/api/v2/users.rb', line 84

def delete_user(user_id)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  path = "#{users_path}/#{user_id}"
  delete(path)
end

#delete_user_provider(user_id, provider_name) ⇒ Object

Delete a user’s multifactor provider

Parameters:

• user_id (string) —

  The user_id of the user to delete the multifactor provider from.

• provider_name (string) —

  The multifactor provider. Supported values ‘duo’ or ‘google-authenticator’.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/v2#!/Users/delete_multifactor_by_provider

# File 'lib/auth0/api/v2/users.rb', line 118

def delete_user_provider(user_id, provider_name)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  raise Auth0::InvalidParameter, 'Must supply a valid provider name' if provider_name.to_s.empty?
  path = "#{users_path}/#{user_id}/multifactor/#{provider_name}"
  delete(path)
end

#delete_users ⇒ Object

Deprecated.

• 4.8.0, endpoint has been removed

Delete all users - USE WITH CAUTION

# File 'lib/auth0/api/v2/users.rb', line 60

def delete_users
  delete(users_path)
end

#generate_recovery_code(user_id) ⇒ Object

Remove the current Guardian recovery code and generates and returns a new one.

Parameters:

• user_id (string) —

  The user_id of the recovery codes to regenerate.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/post_recovery_code_regeneration

# File 'lib/auth0/api/v2/users.rb', line 297

def generate_recovery_code(user_id)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  post "#{users_path}/#{user_id}/recovery-code-regeneration"
end

#get_enrollments(user_id) ⇒ json

Get all Guardian enrollments for a specific user

Parameters:

• user_id (string) —

  The user_id of the enrollments to get.

Returns:

• (json) —

  Returns Guardian enrollments for the given user_id.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/get_enrollments

# File 'lib/auth0/api/v2/users.rb', line 244

def get_enrollments(user_id)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  get "#{users_path}/#{user_id}/enrollments"
end

#get_user_organizations(user_id) ⇒ json

Get a list of organizations for a user.

Parameters:

• user_id (string) —

  The user_id of the permissions to get.

Returns:

• (json) —

  Returns organizations for the given user_id.

Raises:

• (Auth0::MissingUserId)

# File 'lib/auth0/api/v2/users.rb', line 317

def get_user_organizations(user_id)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?

  get "#{users_path}/#{user_id}/organizations"
end

#get_user_permissions(user_id, options = {}) ⇒ json

Get all permissions for a specific user.

Parameters:

• user_id (string) —

  The user_id of the permissions to get.

• options (hash) (defaults to: {}) —

  A hash of options for getting permissions

  • :per_page [integer] The amount of permissions per page. (optional)

  • :page [integer] The page number. Zero based. (optional)

  • :include_totals [boolean] True if a query summary must be included in the result. (optional)

Returns:

• (json) —

  Returns permissions for the given user_id.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/get_permissions

# File 'lib/auth0/api/v2/users.rb', line 259

def get_user_permissions(user_id, options = {})
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?

  request_params = {
    per_page: options.fetch(:per_page, nil),
    page: options.fetch(:page, nil),
    include_totals: options.fetch(:include_totals, nil)
  }

  get "#{users_path}/#{user_id}/permissions", request_params
end

#get_user_roles(user_id, options = {}) ⇒ json

Get all roles assigned to a specific user.

Parameters:

• user_id (string) —

  The user_id of the roles to retrieve.

• options (hash) (defaults to: {}) —

  • :per_page [integer] The amount of entries per page. Default: 50. Max value: 100.

  • :page [integer] The page number. Zero based.

  • :include_totals [boolean] True if a query summary must be included in the result.

  • :sort [string] The field to use for sorting. 1 == ascending and -1 == descending.

Returns:

• (json) —

  Returns roles for the given user_id.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/get_user_roles

# File 'lib/auth0/api/v2/users.rb', line 203

def get_user_roles(user_id, options = {})
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  path = "#{users_path}/#{user_id}/roles"
  request_params = {
    per_page:       options.fetch(:per_page, nil),
    page:           options.fetch(:page, nil),
    include_totals: options.fetch(:include_totals, nil)
  }
  get(path, request_params)
end

#invalidate_browsers(user_id) ⇒ Object

Invalidate all remembered browsers for all authentication factors for a specific user.

Parameters:

• user_id (string) —

  The user_id of the browsers to invalidate.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/post_invalidate_remember_browser

# File 'lib/auth0/api/v2/users.rb', line 306

def invalidate_browsers(user_id)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  post "#{users_path}/#{user_id}/multifactor/actions/invalidate-remember-browser"
end

#link_user_account(user_id, body) ⇒ json

Links the account specified in the body (secondary account) to the account specified by the id param of the URL (primary account).

1. With the authenticated primary account’s JWT in the Authorization header, which has the

update:current_user_identities scope. In this case only the link_with param is required in the body, containing the JWT obtained upon the secondary account’s authentication.

1. With an API V2 generated token with update:users scope. In this case you need to send provider and user_id

in the body. Optionally you can also send the connection_id param which is suitable for identifying a particular database connection for the ‘auth0’ provider.

Parameters:

• user_id (string) —

  The user_id of the primary identity where you are linking the secondary account to.

• body (string) —

  the options to link the account to.

Returns:

• (json) —

  Returns the new array of the primary account identities.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/v2#!/Users/post_identities

# File 'lib/auth0/api/v2/users.rb', line 138

def link_user_account(user_id, body)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  raise Auth0::InvalidParameter, 'Must supply a valid body' if body.to_s.empty?
  path = "#{users_path}/#{user_id}/identities"
  post(path, body)
end

#patch_user(user_id, body) ⇒ json Also known as: update_user

Updates a user with the object’s properties received in the optional parameters. These are the attributes that can be updated at the root level: blocked, email_verified, email, verify_email, password, phone_number, phone_verified, verify_password, user_metadata, app_metadata, username Some considerations: The properties of the new object will replace the old ones. The metadata fields are an exception to this rule (user_metadata and app_metadata). These properties are merged instead of being replaced but be careful, the merge only occurs on the first level. If you are updating email_verified, phone_verified, username or password you need to specify the connection property too. If your are updating email or phone_number you need to specify the connection and the client_id properties.

Parameters:

• user_id (string) —

  The user_id of the user to update.

• body (hash) —

  The optional parameters to update.

Returns:

• (json) —

  Returns the updated user.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/v2#!/Users/patch_users_by_id

# File 'lib/auth0/api/v2/users.rb', line 106

def patch_user(user_id, body)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  raise Auth0::InvalidParameter, 'Must supply a valid body' if body.to_s.empty? || body.empty?
  path = "#{users_path}/#{user_id}"
  patch(path, body)
end

#remove_user_permissions(user_id, permissions) ⇒ Object

Remove one or more permissions from a specific user.

Parameters:

• user_id (string) —

  The user_id of the permissions to remove.

• permissions (array) —

  An array of Permission structs to remove.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/delete_permissions

# File 'lib/auth0/api/v2/users.rb', line 276

def remove_user_permissions(user_id, permissions)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  permissions = validate_permissions_array permissions
  delete_with_body "#{users_path}/#{user_id}/permissions", permissions: permissions
end

#remove_user_roles(user_id, roles) ⇒ Object

Remove one or more roles from a specific user.

Parameters:

• user_id (string) —

  The user_id of the roles to remove.

• roles (array) —

  An array of role names to remove.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/delete_user_roles

# File 'lib/auth0/api/v2/users.rb', line 219

def remove_user_roles(user_id, roles)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  validate_strings_array roles
  path = "#{users_path}/#{user_id}/roles"
  delete_with_body path, roles: roles
end

#unlink_user_account(user_id, provider, secondary_user_id) ⇒ json Also known as: unlink_users_account

Unlink a user account

Parameters:

• user_id (string) —

  The user_id of the user identity.

• provider (string) —

  The type of identity provider.

• secondary_user_id (string) —

  The unique identifier for the user for the identity.

Returns:

• (json) —

  Returns the array of the unlinked account identities.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/v2#!/Users/delete_provider_by_user_id

# File 'lib/auth0/api/v2/users.rb', line 152

def unlink_user_account(user_id, provider, secondary_user_id)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  raise Auth0::MissingUserId, 'Must supply a valid secondary user_id' if secondary_user_id.to_s.empty?
  raise Auth0::InvalidParameter, 'Must supply a valid provider' if provider.to_s.empty?
  path = "#{users_path}/#{user_id}/identities/#{provider}/#{secondary_user_id}"
  delete(path)
end

#user(user_id, fields: nil, include_fields: true) ⇒ json

Retrieves a user given a user_id

Parameters:

• user_id (string) —

  The user_id of the user to retrieve.

• fields (string) (defaults to: nil) —

  A comma separated list of fields to include or exclude from the result.

• include_fields (boolean) (defaults to: true) —

  True if the fields specified are to be included in the result, false otherwise.

Returns:

• (json) —

  Returns the user with the given user_id if it exists.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/v2#!/Users/get_users_by_id

# File 'lib/auth0/api/v2/users.rb', line 71

def user(user_id, fields: nil, include_fields: true)
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  path = "#{users_path}/#{user_id}"
  request_params = {
    fields:         fields,
    include_fields: include_fields
  }
  get(path, request_params)
end

#user_logs(user_id, options = {}) ⇒ json Also known as: get_user_log_events

Retrieve every log event for a specific user id rubocop:disable Metrics/MethodLength, Metrics/AbcSize

Parameters:

• user_id (string) —

  The user_id of the logs to retrieve.

• options (hash) (defaults to: {}) —

  • :per_page [integer] The amount of entries per page. Default: 50. Max value: 100.

  • :page [integer] The page number. Zero based.

  • :include_totals [boolean] True if a query summary must be included in the result.

  • :sort [string] The field to use for sorting. 1 == ascending and -1 == descending.

Returns:

• (json) —

  Returns the list of existing log entries for the given user_id.

Raises:

• (Auth0::MissingUserId)

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/get_logs_by_user

# File 'lib/auth0/api/v2/users.rb', line 172

def user_logs(user_id, options = {})
  raise Auth0::MissingUserId, 'Must supply a valid user_id' if user_id.to_s.empty?
  path = "#{users_path}/#{user_id}/logs"
  request_params = {
    per_page:       options.fetch(:per_page, nil),
    page:           options.fetch(:page, nil),
    include_totals: options.fetch(:include_totals, nil),
    sort:           options.fetch(:sort, nil)
  }
  if request_params[:per_page].to_i > 100
    raise Auth0::InvalidParameter, 'The total amount of entries per page should be less than 100'
  end
  sort_pattern = /^(([a-zA-Z0-9_\.]+))\:(1|-1)$/
  if !request_params[:sort].nil? && !sort_pattern.match(request_params[:sort])
    raise Auth0::InvalidParameter, 'Sort does not match pattern ^(([a-zA-Z0-9_\\.]+))\\:(1|-1)$'
  end
  get(path, request_params)
end

#users(options = {}) ⇒ json Also known as: get_users

Retrieves a list of Auth0 users.

Parameters:

• options (hash) (defaults to: {}) —

  The Hash options used to refine the User results.

  • :per_page [integer] The amount of entries per page. Default: 50. Max value: 100.

  • :page [integer] The page number. Zero based.

  • :include_totals [boolean] True if a query summary must be included in the result.

  • :sort [string] The field to use for sorting. 1 == ascending and -1 == descending.

  • :connection [string] Connection to filter results by.

  • :fields [string] A comma separated list of result fields.

  • :include_fields [boolean] True to include :fields, false to exclude.

  • :q [string] Query in Lucene query string syntax.

  • :search_engine [string] User search engine version.

    • Will default to v2 if no value is passed.

    • Default will change to v3 on 11/13/2018

    • See auth0.com/docs/users/search/v3#migrate-from-search-engine-v2-to-v3

Returns:

• (json) —

  Returns the list of existing users.

See Also:

• https://auth0.com/docs/api/management/v2#!/Users/get_users

# File 'lib/auth0/api/v2/users.rb', line 26

def users(options = {})
  request_params = {
    per_page:       options.fetch(:per_page, nil),
    page:           options.fetch(:page, nil),
    include_totals: options.fetch(:include_totals, nil),
    sort:           options.fetch(:sort, nil),
    connection:     options.fetch(:connection, nil),
    fields:         options.fetch(:fields, nil),
    include_fields: options.fetch(:include_fields, nil),
    q:              options.fetch(:q, nil),
    search_engine:  options.fetch(:search_engine, nil)
  }
  get(users_path, request_params)
end