descope · Bars92 · Dec 22, 2024 · Dec 22, 2024
diff --git a/README.md b/README.md
@@ -622,29 +622,29 @@ await descopeClient.management.password.configureSettings('my-tenant-id', {
 You can create, update, delete or load SSO applications:
 
 ```typescript
-// Create OIDC sso application
+// Create OIDC SSO application
 await descopeClient.management.ssoApplication.createOidcApplication({
   name: 'My OIDC app name',
   loginPageUrl: 'http://dummy.com/login',
 });
 
-// Create SAML sso application
+// Create SAML SSO application
 await descopeClient.management.ssoApplication.createSamlApplication({
   name: 'My SAML app name',
   loginPageUrl: 'http://dummy.com/login',
   useMetadataInfo: true,
   metadataUrl: 'http://dummy.com/metadata',
 });
 
-// Update OIDC sso application.
+// Update OIDC SSO application.
 // Update will override all fields as is. Use carefully.
 await descopeClient.management.ssoApplication.updateOidcApplication({
   id: 'my-app-id',
   name: 'My OIDC app name',
   loginPageUrl: 'http://dummy.com/login',
 });
 
-// Update SAML sso application.
+// Update SAML SSO application.
 // Update will override all fields as is. Use carefully.
 await descopeClient.management.ssoApplication.updateSamlApplication({
   id: 'my-app-id',
@@ -657,13 +657,13 @@ await descopeClient.management.ssoApplication.updateSamlApplication({
   certificate: 'certificate',
 });
 
-// Tenant deletion cannot be undone. Use carefully.
+// SSO application deletion cannot be undone. Use carefully.
 await descopeClient.management.ssoApplication.delete('my-app-id');
 
-// Load sso application by id
+// Load SSO application by id
 const app = await descopeClient.management.ssoApplication.load('my-app-id');
 
-// Load all sso applications
+// Load all SSO applications
 const appsRes = await descopeClient.management.ssoApplication.loadAll();
 appsRes.data.forEach((app) => {
   // do something
@@ -1193,6 +1193,68 @@ const relations = await descopeClient.management.fga.check([
 ]);
 ```
 
+### Manage Third Party Aplications
+
+You can create, update, delete or load third party applications:
+
+```typescript
+// Create a third party application.
+const { id, cleartext: secret } =
+  await descopeClient.management.thirdPartyApplication.createApplication({
+    name: 'my new app',
+    description: 'my desc',
+    logo: 'data:image/png;..',
+    approvedCallbackUrls: ['dummy.com'],
+    permissionsScopes: [
+      {
+        name: 'read_support',
+        description: 'read for support',
+        values: ['Support'],
+      },
+    ],
+    attributesScopes: [
+      {
+        name: 'read_email',
+        description: 'read user email',
+        values: ['email'],
+      },
+    ],
+    loginPageUrl: 'http://dummy.com/login',
+  });
+
+// Update a third party application.
+// Update will override all fields as is. Use carefully.
+await descopeClient.management.thirdPartyApplication.updateApplication({
+  name: 'my updated app',
+  loginPageUrl: 'http://dummy.com/login',
+  approvedCallbackUrls: ['dummy.com', 'myawesomedomain.com'],
+});
+
+// third party application deletion cannot be undone. Use carefully.
+await descopeClient.management.thirdPartyApplication.deleteApplication('my-app-id');
+
+// Load third party application by id
+const app = await descopeClient.management.thirdPartyApplication.loadApplication('my-app-id');
+
+// Load all third party applications
+const appsRes = await descopeClient.management.thirdPartyApplication.loadAllApplications();
+appsRes.data.forEach((app) => {
+  // do something
+});
+
+// Search in all consents. search consents by the given app id and offset to the third page.
+const consentsRes = await descopeClient.management.thirdPartyApplication.searchConsents({
+  appId: 'my-app',
+  page: 2,
+});
+
+// Delete consents. delete all user consents.
+// third party application consents deletion cannot be undone. Use carefully.
+await descopeClient.management.thirdPartyApplication.deleteConsents({
+  userIds: ['user'],
+});
+```
+
 ### Utils for your end to end (e2e) tests and integration tests
 
 To ease your e2e tests, we exposed dedicated management methods,

diff --git a/lib/management/index.ts b/lib/management/index.ts
@@ -15,6 +15,7 @@ import WithAuthz from './authz';
 import withSSOApplication from './ssoapplication';
 import withPassword from './password';
 import WithFGA from './fga';
+import withThirdPartyApplication from './thirdpartyapplication';
 
 /** Constructs a higher level Management API that wraps the functions from code-js-sdk */
 const withManagement = (sdk: CoreSdk, managementKey?: string) => ({
@@ -23,6 +24,7 @@ const withManagement = (sdk: CoreSdk, managementKey?: string) => ({
   accessKey: withAccessKey(sdk, managementKey),
   tenant: withTenant(sdk, managementKey),
   ssoApplication: withSSOApplication(sdk, managementKey),
+  thirdPartyApplication: withThirdPartyApplication(sdk, managementKey),
   sso: withSSOSettings(sdk, managementKey),
   jwt: withJWT(sdk, managementKey),
   permission: withPermission(sdk, managementKey),

diff --git a/lib/management/paths.ts b/lib/management/paths.ts
@@ -76,6 +76,17 @@ export default {
     load: '/v1/mgmt/sso/idp/app/load',
     loadAll: '/v1/mgmt/sso/idp/apps/load',
   },
+  thirdPartyApplication: {
+    create: '/v1/mgmt/thirdparty/app/create',
+    update: '/v1/mgmt/thirdparty/app/update',
+    delete: '/v1/mgmt/thirdparty/app/delete',
+    load: '/v1/mgmt/thirdparty/app/load',
+    loadAll: '/v1/mgmt/thirdparty/apps/load',
+  },
+  thirdPartyApplicationConsents: {
+    delete: '/v1/mgmt/thirdparty/consents/delete',
+    search: '/v1/mgmt/thirdparty/consents/search',
+  },
   sso: {
     settings: '/v1/mgmt/sso/settings',
     metadata: '/v1/mgmt/sso/metadata',