Merge branch 'master' into sdk-6065-tenant-acl-autho-java-support-ga

Author: tanya732

.github/actions/maven-publish/action.yml

@@ -36,7 +36,7 @@ runs:
 
     - name: Publish Android/Java Packages to Maven
       shell: bash
-      run: ./gradlew publish -PisSnapshot=false --stacktrace
+      run: ./gradlew publishToSonatype closeAndReleaseSonatypeStagingRepository --stacktrace
       env:
         JAVA_HOME: ${{ env.JAVA_HOME }}
         MAVEN_USERNAME: ${{ inputs.ossr-username }}

.github/workflows/build-and-test.yml

@@ -15,10 +15,14 @@ jobs:
         with:
           distribution: temurin
           java-version: 8
-      - uses: gradle/gradle-build-action@4c39dd82cd5e1ec7c6fa0173bb41b4b6bb3b86ff
-        with:
-          arguments: assemble apiDiff check jacocoTestReport --continue --console=plain
-      - uses: codecov/codecov-action@125fc84a9a348dbcf27191600683ec096ec9021c
+
+      - name: Set up Gradle
+        uses: gradle/actions/setup-gradle@06832c7b30a0129d7fb559bcc6e43d26f6374244 # v4.3.1
+
+      - name: Test and Assemble and ApiDiff with Gradle
+        run: ./gradlew assemble apiDiff check jacocoTestReport --continue --console=plain
+
+      - uses: codecov/codecov-action@18283e04ce6e62d37312384ff67231eb8fd56d24 # v5.4.3
         with:
           flags: unittests
       - uses: actions/upload-artifact@v4

.github/workflows/gradle-wrapper-validation.yml

@@ -7,4 +7,4 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
-      - uses: gradle/wrapper-validation-action@216d1ad2b3710bf005dc39237337b9673fd8fcd5 # pin@3.3.2
+      - uses: gradle/actions/wrapper-validation@v4

.github/workflows/rl-scanner.yml

@@ -39,10 +39,11 @@ jobs:
           distribution: temurin
           java-version: ${{ inputs.java-version }}
 
-      - name: Build with Gradle
-        uses: gradle/gradle-build-action@4c39dd82cd5e1ec7c6fa0173bb41b4b6bb3b86ff
-        with:
-          arguments: assemble apiDiff check jacocoTestReport --continue --console=plain
+      - name: Set up Gradle
+        uses: gradle/actions/setup-gradle@06832c7b30a0129d7fb559bcc6e43d26f6374244 # v4.3.1
+
+      - name: Test and Assemble and ApiDiff with Gradle
+        run: ./gradlew assemble apiDiff check jacocoTestReport --continue --console=plain
 
       - id: get_version
         uses: ./.github/actions/get-version

.version

@@ -1 +1 @@
-2.22.0
+2.23.0

CHANGELOG.md

@@ -1,5 +1,14 @@
 # Change Log
 
+## [2.23.0](https://github.com/auth0/auth0-java/tree/2.23.0) (2025-07-21)
+[Full Changelog](https://github.com/auth0/auth0-java/compare/2.22.0...2.23.0)
+
+**Added**
+- Added organization support for Change Password [\#726](https://github.com/auth0/auth0-java/pull/726) ([tanya732](https://github.com/tanya732))
+
+**Fixed**
+- Fix: Resource Server Scopes [\#725](https://github.com/auth0/auth0-java/pull/725) ([tanya732](https://github.com/tanya732))
+
 ## [2.22.0](https://github.com/auth0/auth0-java/tree/2.22.0) (2025-06-20)
 [Full Changelog](https://github.com/auth0/auth0-java/compare/2.21.0...2.22.0)
 

README.md

@@ -34,14 +34,14 @@ Add the dependency via Maven:
 <dependency>
   <groupId>com.auth0</groupId>
   <artifactId>auth0</artifactId>
-  <version>2.22.0</version>
+  <version>2.23.0</version>
 </dependency>
 ```
 
 or Gradle:
 
 ```gradle
-implementation 'com.auth0:auth0:2.22.0'
+implementation 'com.auth0:auth0:2.23.0'
 ```
 
 ### Configure the SDK

build.gradle

@@ -15,6 +15,7 @@ plugins {
     id 'java'
     id 'jacoco'
     id 'me.champeau.gradle.japicmp' version '0.2.9'
+    id 'io.github.gradle-nexus.publish-plugin' version '2.0.0'
 }
 
 repositories {

gradle/maven-publish.gradle

@@ -25,10 +25,6 @@ artifacts {
   archives sourcesJar, javadocJar
 }
 
-
-final releaseRepositoryUrl = "https://oss.sonatype.org/service/local/staging/deploy/maven2/"
-final snapshotRepositoryUrl = "https://oss.sonatype.org/content/repositories/snapshots/"
-
 publishing {
   publications {
     mavenJava(MavenPublication) {
@@ -68,28 +64,18 @@ publishing {
           connection = POM_SCM_CONNECTION
           developerConnection = POM_SCM_DEV_CONNECTION
         }
-
-        pom.withXml {
-          def dependenciesNode = asNode().appendNode('dependencies')
-
-          project.configurations.implementation.allDependencies.each {
-            def dependencyNode = dependenciesNode.appendNode('dependency')
-            dependencyNode.appendNode('groupId', it.group)
-            dependencyNode.appendNode('artifactId', it.name)
-            dependencyNode.appendNode('version', it.version)
-          }
-        }
       }
     }
   }
+}
+
+nexusPublishing {
   repositories {
-    maven {
-      name = "sonatype"
-      url = version.endsWith('SNAPSHOT') ? snapshotRepositoryUrl : releaseRepositoryUrl
-      credentials {
-        username = System.getenv("MAVEN_USERNAME")
-        password = System.getenv("MAVEN_PASSWORD")
-      }
+    sonatype {
+      nexusUrl.set(uri('https://ossrh-staging-api.central.sonatype.com/service/local/'))
+      snapshotRepositoryUrl.set(uri('https://central.sonatype.com/repository/maven-snapshots/'))
+      username.set(System.getenv("MAVEN_USERNAME"))
+      password.set(System.getenv("MAVEN_PASSWORD"))
     }
   }
 }

src/main/java/com/auth0/client/auth/AuthAPI.java

@@ -525,6 +525,31 @@ public Request<Void> resetPassword(String email, String connection) {
      * @return a Request to execute.
      */
     public Request<Void> resetPassword(String clientId, String email, String connection) {
+        return resetPassword(clientId, email, connection, null);
+    }
+
+    /**
+     * Request a password reset for the given client ID, email, database connection and organization ID. The response will always be successful even if
+     * there's no user associated to the given email for that database connection.
+     * i.e.:
+     * <pre>
+     * {@code
+     * try {
+     *      authAPI.resetPassword("CLIENT-ID", "me@auth0.com", "db-connection", "ORGANIZATION-ID").execute().getBody();
+     * } catch (Auth0Exception e) {
+     *      //Something happened
+     * }
+     * }
+     * </pre>
+     *
+     * @see <a href="https://auth0.com/docs/api/authentication#change-password">Change Password API docs</a>
+     * @param clientId   the client ID of your client.
+     * @param email      the email associated to the database user.
+     * @param connection the database connection where the user was created.
+     * @param organization the organization ID where the user was created.
+     * @return a Request to execute.
+     */
+    public Request<Void> resetPassword(String clientId, String email, String connection, String organization) {
         Asserts.assertNotNull(email, "email");
         Asserts.assertNotNull(connection, "connection");
 
@@ -538,6 +563,7 @@ public Request<Void> resetPassword(String clientId, String email, String connect
         request.addParameter(KEY_CLIENT_ID, clientId);
         request.addParameter(KEY_EMAIL, email);
         request.addParameter(KEY_CONNECTION, connection);
+        request.addParameter(KEY_ORGANIZATION, organization);
         return request;
     }