From 7c38e1a4b1f63b8e92bee603be8ce2791da4b5e1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=B4natas=20Santos?= <jonatascastro12@gmail.com>
Date: Thu, 24 Aug 2023 11:42:33 -0300
Subject: [PATCH] Add `Users.verify_email()` method (#202)

---
 tests/test_users.py | 13 +++++++++++++
 workos/users.py     | 34 ++++++++++++++++++++++++++++++++++
 2 files changed, 47 insertions(+)

diff --git a/tests/test_users.py b/tests/test_users.py
index d5888ab3..53a7bc6a 100644
--- a/tests/test_users.py
+++ b/tests/test_users.py
@@ -346,3 +346,16 @@ def test_send_verification_email(
             "users/user_01H7ZGXFP5C6BBQY6Z7277ZCT0/send_verification_email"
         )
         assert response["id"] == "auth_challenge_01E4ZCR3C56J083X43JQXF3JK5"
+
+    def test_verify_email(self, capture_and_mock_request, mock_user):
+        magic_auth_challenge_id = "auth_challenge_123"
+        code = "code_123"
+
+        url, _ = capture_and_mock_request("post", mock_user, 200)
+
+        response = self.users.verify_email(
+            magic_auth_challenge_id=magic_auth_challenge_id, code=code
+        )
+
+        assert url[0].endswith("users/verify_email")
+        assert response["id"] == "user_01H7ZGXFP5C6BBQY6Z7277ZCT0"
diff --git a/workos/users.py b/workos/users.py
index ea7b3502..30698ff1 100644
--- a/workos/users.py
+++ b/workos/users.py
@@ -22,6 +22,7 @@
 USER_PASSWORD_RESET_CHALLENGE_PATH = "users/password_reset_challenge"
 USER_PASSWORD_RESET_PATH = "users/password_reset"
 USER_SEND_VERIFICATION_EMAIL_PATH = "users/{0}/send_verification_email"
+USER_VERIFY_EMAIL_PATH = "users/verify_email"
 
 RESPONSE_LIMIT = 10
 
@@ -435,3 +436,36 @@ def send_verification_email(
         )
 
         return WorkOSMagicAuthChallenge.construct_from_response(response).to_dict()
+
+    def verify_email(
+        self,
+        magic_auth_challenge_id,
+        code,
+    ):
+        """Verifies user email using one-time code that was sent to the user.
+
+        Kwargs:
+            magic_auth_challenge_id (str): The challenge ID returned from the send verification email endpoint.
+
+            code (str): The unique ID of the User whose email address will be verified.
+
+        Returns:
+            dict: User response from WorkOS.
+        """
+
+        headers = {}
+
+        payload = {
+            "magic_auth_challenge_id": magic_auth_challenge_id,
+            "code": code,
+        }
+
+        response = self.request_helper.request(
+            USER_VERIFY_EMAIL_PATH,
+            method=REQUEST_METHOD_POST,
+            headers=headers,
+            params=payload,
+            token=workos.api_key,
+        )
+
+        return WorkOSUser.construct_from_response(response).to_dict()