Feature/adding sessions

README.md

@@ -121,6 +121,7 @@ For more code samples on how to integrate the auth0-python SDK in your Python ap
 - RulesConfigs() ( `Auth0().rules_configs` )
 - Rules() ( `Auth0().rules` )
 - Stats() ( `Auth0().stats` )
+- Sessions() ( `Auth0().sessions` )
 - Tenants() ( `Auth0().tenants` )
 - Tickets() ( `Auth0().tickets` )
 - UserBlocks() (`Auth0().user_blocks` )

auth0/management/__init__.py

@@ -22,6 +22,7 @@
 from .roles import Roles
 from .rules import Rules
 from .rules_configs import RulesConfigs
+from .sessions import Sessions
 from .stats import Stats
 from .tenants import Tenants
 from .tickets import Tickets
@@ -60,6 +61,7 @@
     "RulesConfigs",
     "Rules",
     "Stats",
+    "Sessions",
     "Tenants",
     "Tickets",
     "UserBlocks",

auth0/management/sessions.py

@@ -0,0 +1,84 @@
+from typing import Any
+
+from auth0.rest import RestClient
+from auth0.rest import RestClientOptions
+from auth0.types import TimeoutType
+
+
+class Sessions:
+    """Auth0 users endpoints
+
+    Args:
+        domain (str): Your Auth0 domain, e.g: 'username.auth0.com'
+
+        token (str): Management API v2 Token
+
+        telemetry (bool, optional): Enable or disable Telemetry
+            (defaults to True)
+
+        timeout (float or tuple, optional): Change the requests
+            connect and read timeout. Pass a tuple to specify
+            both values separately or a float to set both to it.
+            (defaults to 5.0 for both)
+
+        protocol (str, optional): Protocol to use when making requests.
+            (defaults to "https")
+
+        rest_options (RestClientOptions): Pass an instance of
+            RestClientOptions to configure additional RestClient
+            options, such as rate-limit retries.
+            (defaults to None)
+    """
+
+    def __init__(
+        self,
+        domain: str,
+        token: str,
+        telemetry: bool = True,
+        timeout: TimeoutType = 5.0,
+        protocol: str = "https",
+        rest_options: RestClientOptions | None = None,
+    ) -> None:
+        self.domain = domain
+        self.protocol = protocol
+        self.client = RestClient(jwt=token, telemetry=telemetry, timeout=timeout, options=rest_options)
+
+    def _url(self, id: str | None = None) -> str:
+        url = f"{self.protocol}://{self.domain}/api/v2/sessions"
+        if id is not None:
+            return f"{url}/{id}"
+        return url
+
+    def get(self, id: str) -> dict[str, Any]:
+        """Get a session.
+
+        Args:
+            id (str): The id of the session to retrieve.
+
+        See: https://auth0.com/docs/api/management/v2#!/Sessions/get-session
+        """
+
+        return self.client.get(self._url(id))
+
+    def delete(self, id: str) -> None:
+        """Delete a session.
+
+        Args:
+            id (str): The id of the session to delete.
+
+        See: https://auth0.com/docs/api/management/v2#!/Sessions/delete-session
+        """
+
+        return self.client.delete(self._url(id))
+
+    def revoke(self, id: str) -> None:
+        """Revokes a session by ID and all associated refresh tokens..
+
+        Args:
+            id (str): The id of the session to revoke.
+
+        See: https://auth0.com/docs/api/management/v2#!/Sessions/revoke-session
+        """
+
+        url = self._url(f"{id}/sessions")
+        return self.client.post(url)

auth0/management/users.py

@@ -348,7 +348,9 @@ def unlink_user_account(self, id: str, provider: str, user_id: str) -> Any:
         url = self._url(f"{id}/identities/{provider}/{user_id}")
         return self.client.delete(url)
 
-    def link_user_account(self, user_id: str, body: dict[str, Any]) -> list[dict[str, Any]]:
+    def link_user_account(
+        self, user_id: str, body: dict[str, Any]
+    ) -> list[dict[str, Any]]:
         """Link user accounts.
 
         Links the account specified in the body (secondary account) to the
@@ -538,7 +540,7 @@ def delete_authentication_method_by_id(
 
         url = self._url(f"{user_id}/authentication-methods/{authentication_method_id}")
         return self.client.delete(url)
-    
+
     def list_tokensets(
         self, id: str, page: int = 0, per_page: int = 25, include_totals: bool = True
     ):
@@ -567,9 +569,7 @@ def list_tokensets(
         url = self._url(f"{id}/tokensets")
         return self.client.get(url, params=params)
 
-    def delete_tokenset_by_id(
-        self, user_id: str, tokenset_id: str
-    ) -> Any:
+    def delete_tokenset_by_id(self, user_id: str, tokenset_id: str) -> Any:
         """Deletes an tokenset by ID.
 
         Args:
@@ -581,3 +581,27 @@ def delete_tokenset_by_id(
 
         url = self._url(f"{user_id}/tokensets/{tokenset_id}")
         return self.client.delete(url)
+
+    def get_sessions(self, user_id: str) -> dict[str, Any]:
+        """Get all sessions details for the given user.
+
+        Args:
+            user_id (str): The user_id to get all sessions for the given user for.
+
+        see: https://auth0.com/docs/api/management/v2#!/Users/get-sessions-for-user
+        """
+
+        url = self._url(f"{user_id}/sessions")
+        return self.client.get(url)
+
+    def delete_sessions(self, user_id: str) -> dict[str, Any]:
+        """Delete all sessions for the given user.
+
+        Args:
+            user_id (str): The user_id to delete all session for the given user for.
+
+        See: https://auth0.com/docs/api/management/v2#!/Users/delete-sessions-for-user
+        """
+
+        url = self._url(f"{user_id}/sessions")
+        return self.client.delete(url)

auth0/test/management/test_sessions.py

@@ -0,0 +1,45 @@
+import unittest
+from unittest import mock
+
+from ...management.sessions import Sessions
+
+
+class TestSessions(unittest.TestCase):
+    def test_init_with_optionals(self):
+        t = Sessions(domain="domain", token="jwttoken", telemetry=False, timeout=(10, 2))
+        self.assertEqual(t.client.options.timeout, (10, 2))
+        telemetry_header = t.client.base_headers.get("Auth0-Client", None)
+        self.assertEqual(telemetry_header, None)
+
+    @mock.patch("auth0.management.sessions.RestClient")
+    def test_get(self, mock_rc):
+        mock_instance = mock_rc.return_value
+
+        u = Sessions(domain="domain", token="jwttoken")
+        u.get("session_id")
+
+        mock_instance.get.assert_called_with(
+            "https://domain/api/v2/sessions/session_id"
+        )
+
+    @mock.patch("auth0.management.sessions.RestClient")
+    def test_delete(self, mock_rc):
+        mock_instance = mock_rc.return_value
+
+        u = Sessions(domain="domain", token="jwttoken")
+        u.delete("session_id")
+
+        mock_instance.delete.assert_called_with(
+            "https://domain/api/v2/sessions/session_id"
+        )
+
+    @mock.patch("auth0.management.sessions.RestClient")
+    def test_revoke(self, mock_rc):
+        mock_instance = mock_rc.return_value
+
+        u = Sessions(domain="domain", token="jwttoken")
+        u.revoke("session_id")
+
+        mock_instance.post.assert_called_with(
+            "https://domain/api/v2/sessions/session_id/sessions"
+        )

auth0/test/management/test_users.py

@@ -436,3 +436,25 @@ def test_delete_tokenset_by_id(self, mock_rc):
         mock_instance.delete.assert_called_with(
             "https://domain/api/v2/users/user_id/tokensets/tokenset_id"
         )
+
+    @mock.patch("auth0.management.users.RestClient")
+    def test_get_sessions_by_user(self, mock_rc):
+        mock_instance = mock_rc.return_value
+
+        u = Users(domain="domain", token="jwttoken")
+        u.get_sessions("user_id")
+
+        mock_instance.get.assert_called_with(
+            "https://domain/api/v2/users/user_id/sessions"
+        )
+
+    @mock.patch("auth0.management.users.RestClient")
+    def test_delete_sessions_by_user(self, mock_rc):
+        mock_instance = mock_rc.return_value
+
+        u = Users(domain="domain", token="jwttoken")
+        u.delete_sessions("user_id")
+
+        mock_instance.delete.assert_called_with(
+            "https://domain/api/v2/users/user_id/sessions"
+        )