Merge pull request #136 from fschmtt/organization-resource

fschmtt · web-flow · commit 388a40e2f006 · 2024-12-30T23:16:30.000+01:00
feat: add organizations resource
diff --git a/README.md b/README.md
@@ -106,15 +106,15 @@ $myCustomRepresentation = $myCustomResource->myCustomEndpoint();
 ### [Attack Detection](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_attack_detection)
 
 | Endpoint                                                                   | Response                | API                                                               |
-|----------------------------------------------------------------------------|-------------------------|-------------------------------------------------------------------|
+| -------------------------------------------------------------------------- | ----------------------- | ----------------------------------------------------------------- |
 | `DELETE /admin/realms/{realm}/attack-detection/brute-force/users`          | `n/a`                   | [AttackDetection::clear()](src/Resource/AttackDetection.php)      |
 | `GET /admin/realms/{realm}/attack-detection/brute-force/users/{userId}`    | [Map](src/Type/Map.php) | [AttackDetection::userStatus()](src/Resource/AttackDetection.php) |
 | `DELETE /admin/realms/{realm}/attack-detection/brute-force/users/{userId}` | `n/a`                   | [AttackDetection::clearUser()](src/Resource/AttackDetection.php)  |
 
 ### [Clients](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_clients)
 
 | Endpoint                                                       | Response                                                | API                                                    |
-|----------------------------------------------------------------|---------------------------------------------------------|--------------------------------------------------------|
+| -------------------------------------------------------------- | ------------------------------------------------------- | ------------------------------------------------------ |
 | `GET /admin/realms/{realm}/clients`                            | [ClientCollection](src/Collection/ClientCollection.php) | [Clients::all()](src/Resource/Clients.php)             |
 | `GET /admin/realms/{realm}/clients/{client-uuid}`              | [Client](src/Representation/Client.php)                 | [Clients::get()](src/Resource/Clients.php)             |
 | `PUT /admin/realms/{realm}/clients/{client-uuid}`              | [Client](src/Representation/Client.php)                 | [Clients::update()](src/Resource/Clients.php)          |
@@ -124,7 +124,7 @@ $myCustomRepresentation = $myCustomResource->myCustomEndpoint();
 ### [Groups](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_clients)
 
 | Endpoint                                          | Response                                              | API                                           |
-|---------------------------------------------------|-------------------------------------------------------|-----------------------------------------------|
+| ------------------------------------------------- | ----------------------------------------------------- | --------------------------------------------- |
 | `GET /admin/realms/{realm}/groups`                | [GroupCollection](src/Collection/GroupCollection.php) | [Groups::all()](src/Resource/Groups.php)      |
 | `GET /admin/realms/{realm}/groups/{id}/children`  | [GroupCollection](src/Collection/GroupCollection.php) | [Groups::children()](src/Resource/Groups.php) |
 | `GET /admin/realms/{realm}/groups/{id}`           | [Group](src/Representation/Group.php)                 | [Groups::get()](src/Resource/Groups.php)      |
@@ -133,10 +133,20 @@ $myCustomRepresentation = $myCustomResource->myCustomEndpoint();
 | `POST /admin/realms/{realm}/groups/{id}/children` | `n/a`                                                 | [Groups::create()](src/Resource/Groups.php)   |
 | `DELETE /admin/realms/{realm}/groups`             | `n/a`                                                 | [Groups::delete()](src/Resource/Groups.php)   |
 
+### [Organizations](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_organizations)
+
+| Endpoint                                                            | Response                                                            | API                                                           |
+| ------------------------------------------------------------------- | ------------------------------------------------------------------- | ------------------------------------------------------------- |
+| `GET /admin/realms/{realm}/organizations`                           | [OrganizationCollection](src/Collection/OrganizationCollection.php) | [Organizations::all()](src/Resource/Organizations.php)        |
+| `GET /admin/realms/{realm}/organizations/{id}`                      | [Organization](src/Representation/Organization.php)                 | [Organizations::get()](src/Resource/Organizations.php)        |
+| `POST /admin/realms/{realm}/organizations`                          | `n/a`                                                               | [Organizations::create()](src/Resource/Organizations.php)     |
+| `DELETE /admin/realms/{realm}/organizations/{id}`                   | `n/a`                                                               | [Organizations::delete()](src/Resource/Organizations.php)     |
+| `POST /admin/realms/{realm}/organizations/{id}/members/invite-user` | `n/a`                                                               | [Organizations::inviteUser()](src/Resource/Organizations.php) |
+
 ### [Realms Admin](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_realms_admin)
 
 | Endpoint                                       | Response                                              | API                                                    |
-|------------------------------------------------|-------------------------------------------------------|--------------------------------------------------------|
+| ---------------------------------------------- | ----------------------------------------------------- | ------------------------------------------------------ |
 | `POST /admin/realms`                           | [Realm](src/Representation/Realm.php)                 | [Realms::import()](src/Resource/Realms.php)            |
 | `GET /admin/realms`                            | [RealmCollection](src/Collection/RealmCollection.php) | [Realms::all()](src/Resource/Realms.php)               |
 | `PUT /admin/realms/{realm}`                    | [Realm](src/Representation/Realm.php)                 | [Realms::update()](src/Resource/Realms.php)            |
@@ -151,7 +161,7 @@ $myCustomRepresentation = $myCustomResource->myCustomEndpoint();
 ### [Users](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_users)
 
 | Endpoint                                                | Response                                                        | API                                                            |
-|---------------------------------------------------------|-----------------------------------------------------------------|----------------------------------------------------------------|
+| ------------------------------------------------------- | --------------------------------------------------------------- | -------------------------------------------------------------- |
 | `GET /admin/realms/{realm}/users`                       | [UserCollection](src/Collection/UserCollection.php)             | [Users::all()](src/Resource/Users.php)                         |
 | `POST /admin/realms/{realm}/users`                      | `n/a`                                                           | [Users::create()](src/Resource/Users.php)                      |
 | `GET /admin/realms/{realm}/users/{userId}`              | [User](src/Representation/User.php)                             | [Users::get()](src/Resource/Users.php)                         |
@@ -171,7 +181,7 @@ $myCustomRepresentation = $myCustomResource->myCustomEndpoint();
 ### [Roles](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_roles)
 
 | Endpoint                                        | Response                                            | API                                       |
-|-------------------------------------------------|-----------------------------------------------------|-------------------------------------------|
+| ----------------------------------------------- | --------------------------------------------------- | ----------------------------------------- |
 | `GET /admin/realms/{realm}/roles`               | [RoleCollection](src/Collection/RoleCollection.php) | [Roles::all()](src/Resource/Roles.php)    |
 | `GET /admin/realms/{realm}/roles/{roleName}`    | [Role](src/Representation/Role.php)                 | [Roles::get()](src/Resource/Roles.php)    |
 | `POST /admin/realms/{realm}/roles`              | `n/a`                                               | [Roles::create()](src/Resource/Roles.php) |
@@ -180,7 +190,7 @@ $myCustomRepresentation = $myCustomResource->myCustomEndpoint();
 ### [Root](https://www.keycloak.org/docs-api/26.0.0/rest-api/index.html#_root)
 
 | Endpoint                | Response                                        | API                                              |
-|-------------------------|-------------------------------------------------|--------------------------------------------------|
+| ----------------------- | ----------------------------------------------- | ------------------------------------------------ |
 | `GET /admin/serverinfo` | [ServerInfo](src/Representation/ServerInfo.php) | [ServerInfo::get()](src/Resource/ServerInfo.php) |
 
 ## Local development and testing
diff --git a/src/Http/CommandExecutor.php b/src/Http/CommandExecutor.php
@@ -6,6 +6,8 @@
 
 use Fschmtt\Keycloak\Serializer\Serializer;
 
+use function is_array;
+
 /**
  * @internal
  */
@@ -18,6 +20,20 @@ public function __construct(
 
     public function executeCommand(Command $command): void
     {
+        $payload = $command->getPayload();
+
+        if (is_array($payload)) {
+            $this->client->request(
+                $command->getMethod()->value,
+                $command->getPath(),
+                [
+                    'form_params' => $payload,
+                ],
+            );
+
+            return;
+        }
+
         $this->client->request(
             $command->getMethod()->value,
             $command->getPath(),
diff --git a/src/Keycloak.php b/src/Keycloak.php
@@ -12,6 +12,7 @@
 use Fschmtt\Keycloak\Resource\AttackDetection;
 use Fschmtt\Keycloak\Resource\Clients;
 use Fschmtt\Keycloak\Resource\Groups;
+use Fschmtt\Keycloak\Resource\Organizations;
 use Fschmtt\Keycloak\Resource\Realms;
 use Fschmtt\Keycloak\Resource\Resource;
 use Fschmtt\Keycloak\Resource\Roles;
@@ -114,6 +115,13 @@ public function roles(): Roles
         return new Roles($this->commandExecutor, $this->queryExecutor);
     }
 
+    public function organizations(): Organizations
+    {
+        $this->fetchVersion();
+
+        return new Organizations($this->commandExecutor, $this->queryExecutor);
+    }
+
     /**
      * @param class-string<Resource> $resource
      * @return Resource
diff --git a/src/Representation/Realm.php b/src/Representation/Realm.php
@@ -278,6 +278,12 @@
  * @method self withWebAuthnPolicySignatureAlgorithms(?string[] $value)
  * @method self withWebAuthnPolicyUserVerificationRequirement(?string $value)
  *
+ * @method OrganizationCollection|null getOrganizations()
+ * @method self withOrganizations(?OrganizationCollection $organizations)
+ *
+ * @method bool|null getOrganizationsEnabled()
+ * @method self withOrganizationsEnabled(?bool $organizationsEnabled)
+ *
  * @codeCoverageIgnore
  */
 class Realm extends Representation
diff --git a/src/Resource/Organizations.php b/src/Resource/Organizations.php
@@ -0,0 +1,77 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Fschmtt\Keycloak\Resource;
+
+use Fschmtt\Keycloak\Collection\OrganizationCollection;
+use Fschmtt\Keycloak\Http\Command;
+use Fschmtt\Keycloak\Http\Criteria;
+use Fschmtt\Keycloak\Http\Method;
+use Fschmtt\Keycloak\Http\Query;
+use Fschmtt\Keycloak\Representation\Organization;
+
+class Organizations extends Resource
+{
+    public function all(string $realm, ?Criteria $criteria = null): OrganizationCollection
+    {
+        return $this->queryExecutor->executeQuery(
+            new Query(
+                '/admin/realms/{realm}/organizations',
+                OrganizationCollection::class,
+                ['realm' => $realm],
+                $criteria,
+            ),
+        );
+    }
+
+    public function get(string $realm, string $id): Organization
+    {
+        return $this->queryExecutor->executeQuery(
+            new Query(
+                '/admin/realms/{realm}/organizations/{id}',
+                Organization::class,
+                ['realm' => $realm, 'id' => $id],
+            ),
+        );
+    }
+
+    public function create(string $realm, Organization $organization): void
+    {
+        $this->commandExecutor->executeCommand(
+            new Command(
+                '/admin/realms/{realm}/organizations',
+                Method::POST,
+                ['realm' => $realm],
+                $organization,
+            ),
+        );
+    }
+
+    public function delete(string $realm, string $id): void
+    {
+        $this->commandExecutor->executeCommand(
+            new Command(
+                '/admin/realms/{realm}/organizations/{id}',
+                Method::DELETE,
+                ['realm' => $realm, 'id' => $id],
+            ),
+        );
+    }
+
+    public function inviteUser(string $realm, string $id, string $email, string $firstName, string $lastName): void
+    {
+        $this->commandExecutor->executeCommand(
+            new Command(
+                '/admin/realms/{realm}/organizations/{id}/members/invite-user',
+                Method::POST,
+                ['realm' => $realm, 'id' => $id],
+                payload: [
+                    'email' => $email,
+                    'firstName' => $firstName,
+                    'lastName' => $lastName,
+                ],
+            ),
+        );
+    }
+}
diff --git a/src/Resource/Realms.php b/src/Resource/Realms.php
@@ -47,8 +47,7 @@ public function import(Realm $realm): Realm
             new Command(
                 '/admin/realms',
                 Method::POST,
-                [],
-                $realm,
+                payload: $realm,
             ),
         );
 
diff --git a/tests/Integration/KeycloakTest.php b/tests/Integration/KeycloakTest.php
@@ -14,13 +14,13 @@ class KeycloakTest extends TestCase
     public function testFetchesKeycloakVersionBeforeResourceIsAccessedForTheFirstTime(): void
     {
         $reflection = new ReflectionClass($this->getKeycloak());
-        $version = $reflection->getProperty('version')->getValue($this->keycloak);
+        $version = $reflection->getProperty('version')->getValue($this->getKeycloak());
 
         static::assertNull($version);
 
-        $this->keycloak->realms();
+        $this->getKeycloak()->realms();
 
-        $version = $reflection->getProperty('version')->getValue($this->keycloak);
+        $version = $reflection->getProperty('version')->getValue($this->getKeycloak());
         static::assertIsString($version);
     }
 }
diff --git a/tests/Integration/Resource/OrganizationsTest.php b/tests/Integration/Resource/OrganizationsTest.php
@@ -0,0 +1,77 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Fschmtt\Keycloak\Test\Integration\Resource;
+
+use Fschmtt\Keycloak\Collection\OrganizationDomainCollection;
+use Fschmtt\Keycloak\Representation\Organization;
+use Fschmtt\Keycloak\Representation\OrganizationDomain;
+use Fschmtt\Keycloak\Representation\Realm;
+use Fschmtt\Keycloak\Test\Integration\IntegrationTestBehaviour;
+use GuzzleHttp\Exception\ServerException;
+use PHPUnit\Framework\Attributes\AfterClass;
+use PHPUnit\Framework\Attributes\BeforeClass;
+use PHPUnit\Framework\TestCase;
+
+class OrganizationsTest extends TestCase
+{
+    use IntegrationTestBehaviour;
+    private const REALM = 'organizations-tests';
+
+    public function testOrganizations(): void
+    {
+        $this->skipIfKeycloakVersionIsLessThan('26.0.0');
+
+        // Create realm
+        $this->getKeycloak()->realms()->import(new Realm(realm: self::REALM, organizationsEnabled: true));
+
+        // No organizations exist yet in realm
+        $organizations = $this->getKeycloak()->organizations()->all(self::REALM);
+        static::assertCount(0, $organizations);
+
+        // Create a new organization in realm
+        $createdOrganization = new Organization(
+            name: 'created-organization',
+            domains: new OrganizationDomainCollection([
+                new OrganizationDomain('foo.bar', true),
+                new OrganizationDomain('bar.foo', false),
+            ]),
+        );
+        $this->getKeycloak()->organizations()->create(self::REALM, $createdOrganization);
+
+        $organizations = $this->getKeycloak()->organizations()->all(self::REALM);
+        static::assertCount(1, $organizations);
+        static::assertSame($createdOrganization->getName(), $organizations->first()->getName());
+
+        // Get newly created organization
+        $organization = $this->getKeycloak()->organizations()->get(self::REALM, $organizations->first()->getId());
+        static::assertSame($createdOrganization->getName(), $organization->getName());
+
+        try {
+            // Invite user to newly created organization
+            $this->getKeycloak()->organizations()->inviteUser(
+                self::REALM,
+                $organizations->first()->getId(),
+                'john@doe.com',
+                'John',
+                'Doe',
+            );
+        } catch (ServerException $e) {
+            // Error is expected as SMTP is not configured
+            static::assertSame(500, $e->getCode());
+            static::assertSame(
+                ['errorMessage' => 'Failed to send invite email'],
+                json_decode($e->getResponse()->getBody()->getContents(), true, flags: JSON_THROW_ON_ERROR),
+            );
+        }
+
+        // Delete newly created organization
+        $this->getKeycloak()->organizations()->delete(self::REALM, $organizations->first()->getId());
+        $organizations = $this->getKeycloak()->organizations()->all(self::REALM);
+        static::assertCount(0, $organizations);
+
+        // Delete realm
+        $this->getKeycloak()->realms()->delete(self::REALM);
+    }
+}
diff --git a/tests/Unit/Http/CommandExecutorTest.php b/tests/Unit/Http/CommandExecutorTest.php
@@ -101,7 +101,7 @@ public function testCallsClientWithBodyIfCommandHasCollection(): void
         $executor->executeCommand($command);
     }
 
-    public function testCallsClientWithBodyIfCommandHasArrayPayload(): void
+    public function testCallsClientWithFormParamsIfCommandHasArrayPayload(): void
     {
         $command = new Command(
             '/path/to/resource',
@@ -117,10 +117,7 @@ public function testCallsClientWithBodyIfCommandHasArrayPayload(): void
                 Method::PUT->value,
                 '/path/to/resource',
                 [
-                    'body' => (new JsonEncoder())->encode($payload),
-                    'headers' => [
-                        'Content-Type' => 'application/json',
-                    ],
+                    'form_params' => $payload,
                 ],
             );
 
diff --git a/tests/Unit/Resource/OrganizationsTest.php b/tests/Unit/Resource/OrganizationsTest.php

Original file line number	Diff line number	Diff line change
`@@ -14,13 +14,13 @@ class KeycloakTest extends TestCase`
`14`	`14`	`public function testFetchesKeycloakVersionBeforeResourceIsAccessedForTheFirstTime(): void`
`15`	`15`	`{`
`16`	`16`	`$reflection = new ReflectionClass($this->getKeycloak());`
`17`		`- $version = $reflection->getProperty('version')->getValue($this->keycloak);`
	`17`	`+ $version = $reflection->getProperty('version')->getValue($this->getKeycloak());`
`18`	`18`
`19`	`19`	`static::assertNull($version);`
`20`	`20`
`21`		`- $this->keycloak->realms();`
	`21`	`+ $this->getKeycloak()->realms();`
`22`	`22`
`23`		`- $version = $reflection->getProperty('version')->getValue($this->keycloak);`
	`23`	`+ $version = $reflection->getProperty('version')->getValue($this->getKeycloak());`
`24`	`24`	`static::assertIsString($version);`
`25`	`25`	`}`
`26`	`26`	`}`
Original file line number	Diff line number	Diff line change
`@@ -101,7 +101,7 @@ public function testCallsClientWithBodyIfCommandHasCollection(): void`
`101`	`101`	`$executor->executeCommand($command);`
`102`	`102`	`}`
`103`	`103`
`104`		`- public function testCallsClientWithBodyIfCommandHasArrayPayload(): void`
	`104`	`+ public function testCallsClientWithFormParamsIfCommandHasArrayPayload(): void`
`105`	`105`	`{`
`106`	`106`	`$command = new Command(`
`107`	`107`	`'/path/to/resource',`
`@@ -117,10 +117,7 @@ public function testCallsClientWithBodyIfCommandHasArrayPayload(): void`
`117`	`117`	`Method::PUT->value,`
`118`	`118`	`'/path/to/resource',`
`119`	`119`	`[`
`120`		`- 'body' => (new JsonEncoder())->encode($payload),`
`121`		`- 'headers' => [`
`122`		`- 'Content-Type' => 'application/json',`
`123`		`- ],`
	`120`	`+ 'form_params' => $payload,`
`124`	`121`	`],`
`125`	`122`	`);`
`126`	`123`