Feat: Added Support for Application Access Permission

[tanya732]

Changes

Updated Below Endpoints -

Path	HTTP Method	Method Name
/api/v2/resource-servers/{id}	GET	get
/api/v2/resource-servers	GET	getAll
/api/v2/resource-servers/{id}	PATCH	update
/api/v2/resource-servers	POST	create
/api/v2/client-grants	GET	getAll
/api/v2/client-grants	POST	create
/api/v2/client-grants/:id	PATCH	update

ResourceServer Endpoint is updated with the following new property:

subject_type_authorization: {
  "user": {
    "policy": string,
  }
  "client": {
    "policy": string
  } 

ClientGrants Endpoint is updated with the following new property:
subject_type and authorization_details_types

References

Please include relevant links supporting this change such as a:

• support ticket
• community post
• StackOverflow post
• support forum thread

Manual Testing Code

const auth = new ManagementClient({
    domain: '<DOMAIN>',
    token: "<TOKEN>",
  
});

// Endpoint - GET : /api/v2/client-grants
const getPermissions = await auth.clientGrants.getAll();

// Endpoint - POST : /api/v2/client-grants
  const createClientPayload : ClientGrantCreate = {
    client_id: "<CLIENT_ID>",
    audience: "<AUDIENCE>",
    scope: []
    subject_type: "user", //By default it will be client
    authorization_details_types: ["<TYPE>"]
  }
  const createClientGrant = await auth.clientGrants.create(createClientPayload);

// Endpoint - PATCH : /api/v2/client-grants/{id}
  const updateClientPayload : PatchClientGrantsByIdRequest = {
    scope: ["read:client_grants", "create:client_grants", "update:client_grants", "delete:client_grants", "read:users"],
    authorization_details_types: ["<TYPE>"]
  }
  const updateClientGrant = await auth.clientGrants.update({id: "<ID>"}, updateClientPayload);

// Endpoint - GET : /api/v2/resource-servers
  const getResourceServer = await auth.resourceServers.getAll();

// Endpoint - POST : /api/v2/resource-servers
  const createResourceServerPayload : ResourceServerCreate = {
    name: "<NAME>",
    identifier: "<IDENTIFIER>",
    scopes: [
      {
        value: "read:resource",
        description: "Read access to the resource"
      },
      {
        value: "write:resource",
        description: "Write access to the resource"
      }
    ]
  }
  const createResourceServer = await auth.resourceServers.create(createResourceServerPayload);

// Endpoint - PATCH : /api/v2/resource-servers/{id}
  const updateResourceServerPayload : ResourceServerUpdate = {
    subject_type_authorization: {
      user: {
        policy: "<POLICY>",
      },
      client: {
        policy: "<POLICY>",
      }
    } 

  }
  const updateResourceServer = await auth.resourceServers.update({id: "<ID>"}, updateResourceServerPayload);

Testing

Please describe how this can be tested by reviewers. Be specific about anything not tested and reasons why. If this library has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.

• This change adds unit test coverage
• This change adds integration test coverage

Checklist

• I have read the Auth0 general contribution guidelines
• I have read the Auth0 Code of Conduct
• All existing and new tests complete without errors