Add support for deleting all user's authenticators (#451)

jimmyjames · web-flow · commit efcc1e56c962 · 2022-09-15T21:35:43.000-05:00
diff --git a/src/main/java/com/auth0/client/mgmt/UsersEntity.java b/src/main/java/com/auth0/client/mgmt/UsersEntity.java
@@ -243,6 +243,23 @@ public Request<LogEventsPage> getLogEvents(String userId, LogEventFilter filter)
         return request;
     }
 
+    /**
+     * Delete all an user's authenticators.
+     * A token with scope delete:guardian_enrollments is needed.
+     *
+     * See <a href="https://auth0.com/docs/api/management/v2#!/Users/delete_authenticators">API docs</a>
+     *
+     * @param userId   the user id
+     * @return a Request to execute.
+     */
+    public Request<Void> deleteAllAuthenticators(String userId) {
+        Asserts.assertNotNull(userId, "user id");
+
+        return voidRequest("DELETE", builder -> {
+            builder.withPathSegments(String.format("api/v2/users/%s/authenticators", userId));
+        });
+    }
+    
     /**
      * Delete an existing User's Multifactor Provider.
      * A token with scope update:users is needed.
diff --git a/src/test/java/com/auth0/client/mgmt/UsersEntityTest.java b/src/test/java/com/auth0/client/mgmt/UsersEntityTest.java
@@ -509,6 +509,27 @@ public void shouldReturnEmptyUserLogEvents() throws Exception {
         assertThat(response.getItems(), is(emptyCollectionOf(LogEvent.class)));
     }
 
+    @Test
+    public void shouldThrowOnDeleteUserAuthenticatorsWithNullId() {
+        exception.expect(IllegalArgumentException.class);
+        exception.expectMessage("'user id' cannot be null!");
+        api.users().deleteAllAuthenticators(null);
+    }
+
+    @Test
+    public void shouldDeleteUserAuthenticators() throws Exception {
+        Request<Void> request = api.users().deleteAllAuthenticators("auth0|23");
+        assertThat(request, is(notNullValue()));
+
+        server.emptyResponse(204);
+        request.execute();
+        RecordedRequest recordedRequest = server.takeRequest();
+
+        assertThat(recordedRequest, hasMethodAndPath("DELETE", "/api/v2/users/auth0%7C23/authenticators"));
+        assertThat(recordedRequest, hasHeader("Content-Type", "application/json"));
+        assertThat(recordedRequest, hasHeader("Authorization", "Bearer apiToken"));
+    }
+
     @Test
     public void shouldThrowOnDeleteUserMultifactorProviderWithNullId() {
         exception.expect(IllegalArgumentException.class);
