Support mgmt login apis (#153)

* feat: added support for management login APIs, including CLI access

* test: added unit tests

* chore: styling fixes

* chore: more styling issues 😤

* chore: more styling issues 😤

* chore: more styling issues 😤

* chore: more styling issues 😤

* build: updating private key used by unit tests

* chore: more styling issues

* build: updating pom.xml version

Author: yosiharan

examples/management-cli/src/main/java/com/descope/JwtSignIn.java

@@ -0,0 +1,39 @@
+package com.descope;
+
+import com.descope.client.DescopeClient;
+import com.descope.exception.DescopeException;
+import com.descope.model.magiclink.LoginOptions;
+import java.util.concurrent.Callable;
+import picocli.CommandLine.Command;
+import picocli.CommandLine.Option;
+
+@Command(name = "jwt-signin", description = "Sign in and receive verified JWT")
+public class JwtSignIn extends HelpBase implements Callable<Integer> {
+
+  @Option(names = {"-l", "--login-id"}, description = "Login ID", required = true)
+  String loginId;
+
+  @Option(names = {"-j", "--jwt"}, description = "JWT token for authentication", required = false)
+  String jwt;
+
+  @Override
+  public Integer call() {
+    try {
+      LoginOptions loginOptions = new LoginOptions();
+      loginOptions.setJwt(jwt); // Optional JWT input
+
+      var client = new DescopeClient(); // Assume Client is properly initialized
+      var authInfo = client.getManagementServices().getJwtService().signIn(loginId, loginOptions);
+
+      System.out.println("Sign-in successful!");
+      System.out.println("Session JWT: " + authInfo.getToken().getJwt());
+      System.out.println("Refresh JWT: " + authInfo.getRefreshToken().getJwt());
+      System.out.println("User ID: " + authInfo.getUser().getUserId());
+
+      return 0; // Success
+    } catch (DescopeException e) {
+      System.err.println("Error during sign-in: " + e.getMessage());
+      return 1; // Error
+    }
+  }
+}

examples/management-cli/src/main/java/com/descope/JwtSignUp.java

@@ -0,0 +1,89 @@
+package com.descope;
+
+import com.descope.client.DescopeClient;
+import com.descope.exception.DescopeException;
+import com.descope.model.jwt.MgmtSignUpUser;
+import com.descope.model.user.User;
+import java.util.Map;
+import java.util.concurrent.Callable;
+import picocli.CommandLine.Command;
+import picocli.CommandLine.Option;
+
+@Command(name = "jwt-signup", description = "Sign up and receive verified JWT")
+public class JwtSignUp extends HelpBase implements Callable<Integer> {
+
+  @Option(names = {"-l", "--login-id"}, description = "Login ID", required = true)
+  String loginId;
+
+  @Option(names = {"--email"}, description = "Email address")
+  String email;
+
+  @Option(names = {"--phone"}, description = "Phone number")
+  String phone;
+
+  @Option(names = {"--name"}, description = "User's full name")
+  String name;
+
+  @Option(names = {"--verified-email"}, description = "Mark email as verified (true/false)")
+  boolean verifiedEmail;
+
+  @Option(names = {"--verified-phone"}, description = "Mark phone as verified (true/false)")
+  boolean verifiedPhone;
+
+  @Option(names = {"--sso-app-id"}, description = "SSO App ID")
+  String ssoAppId;
+
+  @Option(names = {"--custom-claims"}, description = "Custom claims (JSON format)")
+  String customClaimsJson;
+
+  @Override
+  public Integer call() {
+    try {
+
+      // Create User object if any user-related field is set
+      User user = null;
+      if (email != null || phone != null || name != null) {
+        user = new User();
+        user.setEmail(email);
+        user.setPhone(phone);
+        user.setName(name);
+      }
+
+      // Parse custom claims JSON if provided
+      Map<String, Object> customClaims = null;
+      if (customClaimsJson != null && !customClaimsJson.isEmpty()) {
+        customClaims = parseJsonToMap(customClaimsJson);
+      }
+
+      // Build the MgmtSignUpUser object
+      var signUpUser = new MgmtSignUpUser();
+      signUpUser.setUser(user);
+      signUpUser.setVerifiedEmail(verifiedEmail);
+      signUpUser.setVerifiedPhone(verifiedPhone);
+      signUpUser.setSsoAppId(ssoAppId);
+      signUpUser.setCustomClaims(customClaims);
+
+      var client = new DescopeClient(); // Assume Client is properly initialized
+      var authInfo = client.getManagementServices().getJwtService().signUp(loginId, signUpUser);
+
+      System.out.println("Signup successful!");
+      System.out.println("Session JWT: " + authInfo.getToken().getJwt());
+      System.out.println("Refresh JWT: " + authInfo.getRefreshToken().getJwt());
+      System.out.println("User ID: " + authInfo.getUser().getUserId());
+
+      return 0; // Success
+    } catch (DescopeException e) {
+      System.err.println("Error during sign-up: " + e.getMessage());
+      return 1; // Error
+    }
+  }
+
+  private Map<String, Object> parseJsonToMap(String json) {
+    try {
+      return new com.fasterxml.jackson.databind.ObjectMapper().readValue(json, Map.class);
+    } catch (Exception e) {
+      System.err.println("Invalid custom claims JSON format: " + json);
+      return null;
+    }
+  }
+}

examples/management-cli/src/main/java/com/descope/JwtSignUpOrIn.java

@@ -0,0 +1,89 @@
+package com.descope;
+
+import com.descope.client.DescopeClient;
+import com.descope.exception.DescopeException;
+import com.descope.model.jwt.MgmtSignUpUser;
+import com.descope.model.user.User;
+import java.util.Map;
+import java.util.concurrent.Callable;
+import picocli.CommandLine.Command;
+import picocli.CommandLine.Option;
+
+@Command(name = "jwt-signuporin", description = "Sign up and receive verified JWT")
+public class JwtSignUpOrIn extends HelpBase implements Callable<Integer> {
+
+  @Option(names = {"-l", "--login-id"}, description = "Login ID", required = true)
+  String loginId;
+
+  @Option(names = {"--email"}, description = "Email address")
+  String email;
+
+  @Option(names = {"--phone"}, description = "Phone number")
+  String phone;
+
+  @Option(names = {"--name"}, description = "User's full name")
+  String name;
+
+  @Option(names = {"--verified-email"}, description = "Mark email as verified (true/false)")
+  boolean verifiedEmail;
+
+  @Option(names = {"--verified-phone"}, description = "Mark phone as verified (true/false)")
+  boolean verifiedPhone;
+
+  @Option(names = {"--sso-app-id"}, description = "SSO App ID")
+  String ssoAppId;
+
+  @Option(names = {"--custom-claims"}, description = "Custom claims (JSON format)")
+  String customClaimsJson;
+
+  @Override
+  public Integer call() {
+    try {
+
+      // Create User object if any user-related field is set
+      User user = null;
+      if (email != null || phone != null || name != null) {
+        user = new User();
+        user.setEmail(email);
+        user.setPhone(phone);
+        user.setName(name);
+      }
+
+      // Parse custom claims JSON if provided
+      Map<String, Object> customClaims = null;
+      if (customClaimsJson != null && !customClaimsJson.isEmpty()) {
+        customClaims = parseJsonToMap(customClaimsJson);
+      }
+
+      // Build the MgmtSignUpUser object
+      var signUpUser = new MgmtSignUpUser();
+      signUpUser.setUser(user);
+      signUpUser.setVerifiedEmail(verifiedEmail);
+      signUpUser.setVerifiedPhone(verifiedPhone);
+      signUpUser.setSsoAppId(ssoAppId);
+      signUpUser.setCustomClaims(customClaims);
+
+      var client = new DescopeClient(); // Assume Client is properly initialized
+      var authInfo = client.getManagementServices().getJwtService().signUpOrIn(loginId, signUpUser);
+
+      System.out.println("Signuporin successful!");
+      System.out.println("Session JWT: " + authInfo.getToken().getJwt());
+      System.out.println("Refresh JWT: " + authInfo.getRefreshToken().getJwt());
+      System.out.println("User ID: " + authInfo.getUser().getUserId());
+
+      return 0; // Success
+    } catch (DescopeException e) {
+      System.err.println("Error during sign-up: " + e.getMessage());
+      return 1; // Error
+    }
+  }
+
+  private Map<String, Object> parseJsonToMap(String json) {
+    try {
+      return new com.fasterxml.jackson.databind.ObjectMapper().readValue(json, Map.class);
+    } catch (Exception e) {
+      System.err.println("Invalid custom claims JSON format: " + json);
+      return null;
+    }
+  }
+}

examples/management-cli/src/main/java/com/descope/ManagementCLI.java

@@ -6,33 +6,36 @@
 import picocli.CommandLine.Option;
 
 @Command(name = "management-cli", subcommands = {
-  UserCreate.class,
-  UserUpdate.class,
-  UserDelete.class,
-  UserLoad.class,
-  UserSearch.class,
-  AccessKeyCreate.class,
-  AccessKeyUpdate.class,
-  AccessKeyDelete.class,
-  AccessKeyLoad.class,
-  AccessKeySearch.class,
-  TenantCreate.class,
-  TenantLoad.class,
-  TenantUpdate.class,
-  TenantDelete.class,
-  PermissionCreate.class,
-  PermissionUpdate.class,
-  PermissionDelete.class,
-  PermissionLoadAll.class,
-  RoleCreate.class,
-  RoleDelete.class,
-  RoleUpdate.class,
-  RoleLoadAll.class,
-  AuditSearch.class,
-  AuditCreate.class
+    UserCreate.class,
+    UserUpdate.class,
+    UserDelete.class,
+    UserLoad.class,
+    UserSearch.class,
+    AccessKeyCreate.class,
+    AccessKeyUpdate.class,
+    AccessKeyDelete.class,
+    AccessKeyLoad.class,
+    AccessKeySearch.class,
+    TenantCreate.class,
+    TenantLoad.class,
+    TenantUpdate.class,
+    TenantDelete.class,
+    PermissionCreate.class,
+    PermissionUpdate.class,
+    PermissionDelete.class,
+    PermissionLoadAll.class,
+    RoleCreate.class,
+    RoleDelete.class,
+    RoleUpdate.class,
+    RoleLoadAll.class,
+    AuditSearch.class,
+    AuditCreate.class,
+    JwtSignIn.class,
+    JwtSignUp.class,
+    JwtSignUpOrIn.class
 })
 public class ManagementCLI implements Callable<Integer> {
-  @Option(names = { "-h", "--help"}, usageHelp = true, description = "show this help message and exit")
+  @Option(names = { "-h", "--help" }, usageHelp = true, description = "show this help message and exit")
   boolean help;
 
   static CommandLine cli;

pom.xml

@@ -4,7 +4,7 @@
     <groupId>com.descope</groupId>
     <artifactId>java-sdk</artifactId>
     <modelVersion>4.0.0</modelVersion>
-    <version>1.0.32</version>
+    <version>1.0.33</version>
     <name>${project.groupId}:${project.artifactId}</name>
     <description>Java library used to integrate with Descope.</description>
     <url>https://github.com/descope/descope-java</url>

src/main/java/com/descope/literals/Routes.java

@@ -161,6 +161,9 @@ public static class ManagementEndPoints {
 
     // JWT
     public static final String UPDATE_JWT_LINK = "/v1/mgmt/jwt/update";
+    public static final String MANAGEMENT_SIGN_IN = "/v1/mgmt/auth/signin";
+    public static final String MANAGEMENT_SIGN_UP = "/v1/mgmt/auth/signup";
+    public static final String MANAGEMENT_SIGN_UP_OR_IN = "/v1/mgmt/auth/signup-in";
 
     // Access key
     public static final String MANAGEMENT_ACCESS_KEY_CREATE_LINK = "/v1/mgmt/accesskey/create";

src/main/java/com/descope/model/auth/AuthenticationInfo.java

@@ -8,7 +8,7 @@
 @Data
 @AllArgsConstructor
 public class AuthenticationInfo {
-  private Token token;
+  private Token token; // session token
   private Token refreshToken;
   private UserResponse user;
   private Boolean firstSeen;

src/main/java/com/descope/model/jwt/MgmtSignUpUser.java

@@ -0,0 +1,20 @@
+package com.descope.model.jwt;
+
+import com.descope.model.user.User;
+import java.util.Map;
+import lombok.AllArgsConstructor;
+import lombok.Builder;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
+@Builder
+public class MgmtSignUpUser {
+  private User user;
+  boolean verifiedEmail;
+  boolean verifiedPhone;
+  String ssoAppId;
+  Map<String, Object> customClaims;
+}

src/main/java/com/descope/model/jwt/request/ManagementSignInRequest.java

@@ -0,0 +1,18 @@
+package com.descope.model.jwt.request;
+
+import java.util.Map;
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
+public class ManagementSignInRequest {
+  private String loginId;
+  private boolean stepup;
+  private boolean mfa;
+  private boolean revokeOtherSessions;
+  private Map<String, Object> customClaims;
+  private String jwt;
+}

src/main/java/com/descope/model/jwt/request/ManagementSignUpRequest.java

@@ -0,0 +1,19 @@
+package com.descope.model.jwt.request;
+
+import com.descope.model.user.User;
+import java.util.Map;
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
+public class ManagementSignUpRequest {
+  private String loginId;
+  private User user;
+  private boolean emailVerified;
+  private boolean phoneVerified;
+  private String ssoAppId;
+  private Map<String, Object> customClaims;
+}