review

Author: swaroopAkkineniWorkos

pkg/authorization/client.go

@@ -375,12 +375,10 @@ type GetAuthorizationResourceOpts struct {
 type CreateAuthorizationResourceOpts struct {
 	ExternalId               string                   `json:"external_id"`
 	Name                     string                   `json:"name"`
-	Description              string                   `json:"description,omitempty"`
+	Description              *string                  `json:"description,omitempty"`
 	ResourceTypeSlug         string                   `json:"resource_type_slug"`
 	OrganizationId           string                   `json:"organization_id"`
 	ParentResourceIdentifier ParentResourceIdentifier `json:"-"`
-	ParentResourceExternalId string                   `json:"-"`
-	ParentResourceTypeSlug   string                   `json:"-"`
 }
 
 // UpdateAuthorizationResourceOpts contains the options for updating a resource.
@@ -625,13 +623,6 @@ func (c *Client) DeletePermission(ctx context.Context, opts DeletePermissionOpts
 func (c *Client) CreateResource(ctx context.Context, opts CreateAuthorizationResourceOpts) (AuthorizationResource, error) {
 	c.once.Do(c.init)
 
-	if opts.ParentResourceIdentifier != nil && opts.ParentResourceExternalId != "" {
-		return AuthorizationResource{}, errors.New("cannot specify both ParentResourceIdentifier and ParentResourceExternalId; use one approach")
-	}
-	if opts.ParentResourceExternalId != "" && opts.ParentResourceTypeSlug == "" {
-		return AuthorizationResource{}, errors.New("ParentResourceTypeSlug is required when ParentResourceExternalId is set")
-	}
-
 	endpoint := fmt.Sprintf("%s/%s", c.Endpoint, authorizationResourcesPath)
 
 	body := map[string]interface{}{
@@ -640,18 +631,14 @@ func (c *Client) CreateResource(ctx context.Context, opts CreateAuthorizationRes
 		"resource_type_slug": opts.ResourceTypeSlug,
 		"organization_id":    opts.OrganizationId,
 	}
-	if opts.Description != "" {
-		body["description"] = opts.Description
+	if opts.Description != nil {
+		body["description"] = *opts.Description
 	}
 	if opts.ParentResourceIdentifier != nil {
 		for k, v := range opts.ParentResourceIdentifier.parentResourceIdentifierParams() {
 			body[k] = v
 		}
 	}
-	if opts.ParentResourceExternalId != "" {
-		body["parent_resource_external_id"] = opts.ParentResourceExternalId
-		body["parent_resource_type_slug"] = opts.ParentResourceTypeSlug
-	}
 
 	data, err := c.JSONEncode(body)
 	if err != nil {

pkg/authorization/client_test.go

@@ -38,34 +38,6 @@ func TestCreateResource(t *testing.T) {
 			},
 			err: true,
 		},
-		{
-			scenario: "Request with both ParentResourceIdentifier and ParentResourceExternalId returns error",
-			client:   &Client{APIKey: "test"},
-			handler:  createResourceWithParentTestHandler,
-			options: CreateAuthorizationResourceOpts{
-				ExternalId:               "ext_123",
-				Name:                     "Test Resource",
-				ResourceTypeSlug:         "document",
-				OrganizationId:           "org_123",
-				ParentResourceIdentifier: ParentResourceIdentifierById{ParentResourceId: "parent_123"},
-				ParentResourceExternalId: "parent_ext_123",
-				ParentResourceTypeSlug:   "folder",
-			},
-			err: true,
-		},
-		{
-			scenario: "Request with ParentResourceExternalId but no ParentResourceTypeSlug returns error",
-			client:   &Client{APIKey: "test"},
-			handler:  createResourceWithParentTestHandler,
-			options: CreateAuthorizationResourceOpts{
-				ExternalId:               "ext_123",
-				Name:                     "Test Resource",
-				ResourceTypeSlug:         "document",
-				OrganizationId:           "org_123",
-				ParentResourceExternalId: "parent_ext_123",
-			},
-			err: true,
-		},
 		{
 			scenario: "Request creates resource with parent by ID",
 			client:   &Client{APIKey: "test"},
@@ -94,12 +66,14 @@ func TestCreateResource(t *testing.T) {
 			client:   &Client{APIKey: "test"},
 			handler:  createResourceWithParentTestHandler,
 			options: CreateAuthorizationResourceOpts{
-				ExternalId:               "ext_123",
-				Name:                     "Test Resource",
-				ResourceTypeSlug:         "document",
-				OrganizationId:           "org_123",
-				ParentResourceExternalId: "parent_ext_123",
-				ParentResourceTypeSlug:   "folder",
+				ExternalId:       "ext_123",
+				Name:             "Test Resource",
+				ResourceTypeSlug: "document",
+				OrganizationId:   "org_123",
+				ParentResourceIdentifier: ParentResourceIdentifierByExternalId{
+					ParentResourceExternalId: "parent_ext_123",
+					ParentResourceTypeSlug:   "folder",
+				},
 			},
 			expected: AuthorizationResource{
 				Object:           "authorization_resource",
@@ -463,17 +437,15 @@ func TestDeleteResource(t *testing.T) {
 	}
 }
 
-func TestDeleteResourceCascadeQueryParam(t *testing.T) {
+func TestDeleteResourceCascadeTrue(t *testing.T) {
 	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		auth := r.Header.Get("Authorization")
 		if auth != "Bearer test" {
 			http.Error(w, "unauthorized", http.StatusUnauthorized)
 			return
 		}
 
-		cascadeParam := r.URL.Query().Get("cascade_delete")
-		require.Equal(t, "true", cascadeParam)
-
+		require.Equal(t, "true", r.URL.Query().Get("cascade_delete"))
 		w.WriteHeader(http.StatusNoContent)
 	}))
 	defer server.Close()
@@ -491,6 +463,32 @@ func TestDeleteResourceCascadeQueryParam(t *testing.T) {
 	require.NoError(t, err)
 }
 
+func TestDeleteResourceCascadeFalse(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test" {
+			http.Error(w, "unauthorized", http.StatusUnauthorized)
+			return
+		}
+
+		require.Equal(t, "", r.URL.Query().Get("cascade_delete"))
+		w.WriteHeader(http.StatusNoContent)
+	}))
+	defer server.Close()
+
+	client := &Client{
+		APIKey:     "test",
+		Endpoint:   server.URL,
+		HTTPClient: &retryablehttp.HttpClient{Client: *server.Client()},
+	}
+
+	err := client.DeleteResource(context.Background(), DeleteAuthorizationResourceOpts{
+		ResourceId:    "resource_123",
+		CascadeDelete: false,
+	})
+	require.NoError(t, err)
+}
+
 // List
 
 func TestListResources(t *testing.T) {
@@ -636,6 +634,171 @@ func TestListResourcesFilters(t *testing.T) {
 	require.NoError(t, err)
 }
 
+func TestListResourcesPaginationAfter(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test" {
+			http.Error(w, "unauthorized", http.StatusUnauthorized)
+			return
+		}
+
+		require.Equal(t, "5", r.URL.Query().Get("limit"))
+		require.Equal(t, "resource_001", r.URL.Query().Get("after"))
+		require.Equal(t, "desc", r.URL.Query().Get("order"))
+
+		body, _ := json.Marshal(ListAuthorizationResourcesResponse{
+			Data:         []AuthorizationResource{},
+			ListMetadata: common.ListMetadata{},
+		})
+		w.WriteHeader(http.StatusOK)
+		w.Write(body)
+	}))
+	defer server.Close()
+
+	client := &Client{
+		APIKey:     "test",
+		Endpoint:   server.URL,
+		HTTPClient: &retryablehttp.HttpClient{Client: *server.Client()},
+	}
+
+	_, err := client.ListResources(context.Background(), ListAuthorizationResourcesOpts{
+		Limit: 5,
+		After: "resource_001",
+		Order: common.Desc,
+	})
+	require.NoError(t, err)
+}
+
+func TestListResourcesPaginationBefore(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test" {
+			http.Error(w, "unauthorized", http.StatusUnauthorized)
+			return
+		}
+
+		require.Equal(t, "5", r.URL.Query().Get("limit"))
+		require.Equal(t, "resource_002", r.URL.Query().Get("before"))
+		require.Equal(t, "asc", r.URL.Query().Get("order"))
+
+		body, _ := json.Marshal(ListAuthorizationResourcesResponse{
+			Data:         []AuthorizationResource{},
+			ListMetadata: common.ListMetadata{},
+		})
+		w.WriteHeader(http.StatusOK)
+		w.Write(body)
+	}))
+	defer server.Close()
+
+	client := &Client{
+		APIKey:     "test",
+		Endpoint:   server.URL,
+		HTTPClient: &retryablehttp.HttpClient{Client: *server.Client()},
+	}
+
+	_, err := client.ListResources(context.Background(), ListAuthorizationResourcesOpts{
+		Limit:  5,
+		Before: "resource_002",
+		Order:  common.Asc,
+	})
+	require.NoError(t, err)
+}
+
+func TestListResourcesParentResourceIdFilter(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test" {
+			http.Error(w, "unauthorized", http.StatusUnauthorized)
+			return
+		}
+
+		require.Equal(t, "parent_001", r.URL.Query().Get("parent_resource_id"))
+
+		body, _ := json.Marshal(ListAuthorizationResourcesResponse{
+			Data:         []AuthorizationResource{},
+			ListMetadata: common.ListMetadata{},
+		})
+		w.WriteHeader(http.StatusOK)
+		w.Write(body)
+	}))
+	defer server.Close()
+
+	client := &Client{
+		APIKey:     "test",
+		Endpoint:   server.URL,
+		HTTPClient: &retryablehttp.HttpClient{Client: *server.Client()},
+	}
+
+	_, err := client.ListResources(context.Background(), ListAuthorizationResourcesOpts{
+		ParentResourceId: "parent_001",
+	})
+	require.NoError(t, err)
+}
+
+func TestListResourcesParentExternalIdFilter(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test" {
+			http.Error(w, "unauthorized", http.StatusUnauthorized)
+			return
+		}
+
+		require.Equal(t, "folder", r.URL.Query().Get("parent_resource_type_slug"))
+		require.Equal(t, "folder-123", r.URL.Query().Get("parent_external_id"))
+
+		body, _ := json.Marshal(ListAuthorizationResourcesResponse{
+			Data:         []AuthorizationResource{},
+			ListMetadata: common.ListMetadata{},
+		})
+		w.WriteHeader(http.StatusOK)
+		w.Write(body)
+	}))
+	defer server.Close()
+
+	client := &Client{
+		APIKey:     "test",
+		Endpoint:   server.URL,
+		HTTPClient: &retryablehttp.HttpClient{Client: *server.Client()},
+	}
+
+	_, err := client.ListResources(context.Background(), ListAuthorizationResourcesOpts{
+		ParentResourceTypeSlug: "folder",
+		ParentExternalId:       "folder-123",
+	})
+	require.NoError(t, err)
+}
+
+func TestListResourcesSearchFilter(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		auth := r.Header.Get("Authorization")
+		if auth != "Bearer test" {
+			http.Error(w, "unauthorized", http.StatusUnauthorized)
+			return
+		}
+
+		require.Equal(t, "Budget", r.URL.Query().Get("search"))
+
+		body, _ := json.Marshal(ListAuthorizationResourcesResponse{
+			Data:         []AuthorizationResource{},
+			ListMetadata: common.ListMetadata{},
+		})
+		w.WriteHeader(http.StatusOK)
+		w.Write(body)
+	}))
+	defer server.Close()
+
+	client := &Client{
+		APIKey:     "test",
+		Endpoint:   server.URL,
+		HTTPClient: &retryablehttp.HttpClient{Client: *server.Client()},
+	}
+
+	_, err := client.ListResources(context.Background(), ListAuthorizationResourcesOpts{
+		Search: "Budget",
+	})
+	require.NoError(t, err)
+}
+
 func TestListResourcesDefaultLimit(t *testing.T) {
 	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		auth := r.Header.Get("Authorization")