Merge pull request #50 from auth0/add-revoke-token

Add revoke token endpoint

Author: lbalmaceda

README.md

@@ -138,7 +138,7 @@ Creates a new request to exchange the `code` previously obtained by calling the
 
 Example:
 ```java
-AuthRequest request = exchangeCode("asdfgh", "https://me.auth0.com/callback")
+AuthRequest request = auth.exchangeCode("asdfgh", "https://me.auth0.com/callback")
     .setAudience("https://api.me.auth0.com/users")
     .setScope("openid contacts");
 try {
@@ -158,7 +158,7 @@ Creates a new request to log in the user with `username` and `password`. The con
 
 Example:
 ```java
-AuthRequest request = login("me@domain.com", "password123")
+AuthRequest request = auth.login("me@domain.com", "password123")
     .setAudience("https://api.me.auth0.com/users")
     .setScope("openid contacts");
 try {
@@ -178,7 +178,7 @@ Creates a new request to log in the user with `username` and `password` using th
 
 Example:
 ```java
-AuthRequest request = login("me@domain.com", "password123", "Username-Password-Authentication")
+AuthRequest request = auth.login("me@domain.com", "password123", "Username-Password-Authentication")
     .setAudience("https://api.me.auth0.com/users")
     .setScope("openid contacts");
 try {
@@ -198,7 +198,7 @@ Creates a new request to get a Token for the given Audience.
 
 Example:
 ```java
-AuthRequest request = requestToken("https://api.me.auth0.com/users")
+AuthRequest request = auth.requestToken("https://api.me.auth0.com/users")
     .setScope("openid contacts");
 try {
     TokenHolder holder = request.execute();
@@ -209,6 +209,24 @@ try {
 }
 ```
 
+### Revoke Refresh Token
+
+Creates a new request to revoke an existing Refresh Token.
+
+`Request<Void> revokeToken(String refreshToken)`
+
+Example:
+```java
+Request<Void> request = auth.revokeToken("nisd1h9dks1doWJOsaf");
+try {
+    request.execute();
+} catch (APIException exception) {
+    // api error
+} catch (Auth0Exception exception) {
+    // request error
+}
+```
+
 
 ## Management API
 

src/main/java/com/auth0/client/auth/AuthAPI.java

@@ -24,10 +24,12 @@ public class AuthAPI {
     private static final String KEY_AUDIENCE = "audience";
     private static final String KEY_EMAIL = "email";
     private static final String KEY_CONNECTION = "connection";
+    private static final String KEY_TOKEN = "token";
 
     private static final String PATH_OAUTH = "oauth";
     private static final String PATH_TOKEN = "token";
     private static final String PATH_DBCONNECTIONS = "dbconnections";
+    private static final String PATH_REVOKE = "revoke";
 
     private final OkHttpClient client;
     private final String clientId;
@@ -407,6 +409,39 @@ public AuthRequest requestToken(String audience) {
         return request;
     }
 
+    /**
+     * Creates a new request to revoke an existing Refresh Token.
+     * <pre>
+     * {@code
+     * AuthAPI auth = new AuthAPI("me.auth0.com", "B3c6RYhk1v9SbIJcRIOwu62gIUGsnze", "2679NfkaBn62e6w5E8zNEzjr-yWfkaBne");
+     * try {
+     *      auth.revokeToken("ej2E8zNEzjrcSD2edjaE")
+     *          .execute();
+     * } catch (Auth0Exception e) {
+     *      //Something happened
+     * }
+     * }
+     * </pre>
+     *
+     * @param refreshToken the refresh token to revoke.
+     * @return a Request to execute.
+     */
+    public Request<Void> revokeToken(String refreshToken) {
+        Asserts.assertNotNull(refreshToken, "refresh token");
+
+        String url = HttpUrl.parse(baseUrl)
+                .newBuilder()
+                .addPathSegment(PATH_OAUTH)
+                .addPathSegment(PATH_REVOKE)
+                .build()
+                .toString();
+        VoidRequest request = new VoidRequest(client, url, "POST");
+        request.addParameter(KEY_CLIENT_ID, clientId);
+        request.addParameter(KEY_CLIENT_SECRET, clientSecret);
+        request.addParameter(KEY_TOKEN, refreshToken);
+        return request;
+    }
+
     /**
      * Creates a new request to exchange the code obtained in the /authorize call using the 'Authorization Code' grant.
      * <pre>

src/test/java/com/auth0/client/MockServer.java

@@ -105,6 +105,12 @@ public void textResponse(String path, int statusCode) throws IOException {
         server.enqueue(response);
     }
 
+    public void emptyResponse(int statusCode) throws IOException {
+        MockResponse response = new MockResponse()
+                .setResponseCode(statusCode);
+        server.enqueue(response);
+    }
+
     public static Map<String, Object> bodyFromRequest(RecordedRequest request) throws IOException {
         ObjectMapper mapper = new ObjectMapper();
         MapType mapType = mapper.getTypeFactory().constructMapType(HashMap.class, String.class, Object.class);

src/test/java/com/auth0/client/auth/AuthAPITest.java

@@ -711,4 +711,35 @@ public void shouldCreateLogInWithClientCredentialsGrantRequest() throws Exceptio
         assertThat(response.getExpiresIn(), is(notNullValue()));
     }
 
+
+    //Revoke a Token
+
+
+    @Test
+    public void shouldThrowOnRevokeTokenWithNullToken() throws Exception {
+        exception.expect(IllegalArgumentException.class);
+        exception.expectMessage("'refresh token' cannot be null!");
+        api.revokeToken(null);
+    }
+
+    @Test
+    public void shouldCreateRevokeTokenRequest() throws Exception {
+        Request<Void> request = api.revokeToken("2679NfkaBn62e6w5E8zNEzjr");
+        assertThat(request, is(notNullValue()));
+
+        server.emptyResponse(200);
+        Void response = request.execute();
+        RecordedRequest recordedRequest = server.takeRequest();
+
+        assertThat(recordedRequest, hasMethodAndPath("POST", "/oauth/revoke"));
+        assertThat(recordedRequest, hasHeader("Content-Type", "application/json"));
+
+        Map<String, Object> body = bodyFromRequest(recordedRequest);
+        assertThat(body, hasEntry("client_id", (Object) CLIENT_ID));
+        assertThat(body, hasEntry("client_secret", (Object) CLIENT_SECRET));
+        assertThat(body, hasEntry("token", (Object) "2679NfkaBn62e6w5E8zNEzjr"));
+
+        assertThat(response, is(nullValue()));
+    }
+
 }