From c5a7b20e33962eacf3ffafb1ac5278b93f0acf51 Mon Sep 17 00:00:00 2001
From: Evan Sims <evan.sims@auth0.com>
Date: Fri, 6 Nov 2020 16:24:26 -0500
Subject: [PATCH 1/2] Allow specifying TTL on password change tickets

---
 src/API/Management/Tickets.php | 19 ++++++++++++++-----
 1 file changed, 14 insertions(+), 5 deletions(-)

diff --git a/src/API/Management/Tickets.php b/src/API/Management/Tickets.php
index 8b2753f0..8c1d5831 100644
--- a/src/API/Management/Tickets.php
+++ b/src/API/Management/Tickets.php
@@ -60,10 +60,11 @@ public function createPasswordChangeTicket(
         $user_id,
         $new_password = null,
         $result_url = null,
-        $connection_id = null
+        $connection_id = null,
+        $ttl = null
     )
     {
-        return $this->createPasswordChangeTicketRaw($user_id, null, $new_password, $result_url, $connection_id);
+        return $this->createPasswordChangeTicketRaw($user_id, null, $new_password, $result_url, $connection_id, $ttl);
     }
 
     /**
@@ -72,16 +73,18 @@ public function createPasswordChangeTicket(
      * @param  null|string $new_password
      * @param  null|string $result_url
      * @param  null|string $connection_id
+     * @param  null|integer $ttl
      * @return mixed
      */
     public function createPasswordChangeTicketByEmail(
         $email,
         $new_password = null,
         $result_url = null,
-        $connection_id = null
+        $connection_id = null,
+        $ttl = null
     )
     {
-        return $this->createPasswordChangeTicketRaw(null, $email, $new_password, $result_url, $connection_id);
+        return $this->createPasswordChangeTicketRaw(null, $email, $new_password, $result_url, $connection_id, $ttl);
     }
 
     /**
@@ -91,6 +94,7 @@ public function createPasswordChangeTicketByEmail(
      * @param  null|string $new_password
      * @param  null|string $result_url
      * @param  null|string $connection_id
+     * @param  null|integer $ttl
      * @return mixed
      */
     public function createPasswordChangeTicketRaw(
@@ -98,7 +102,8 @@ public function createPasswordChangeTicketRaw(
         $email = null,
         $new_password = null,
         $result_url = null,
-        $connection_id = null
+        $connection_id = null,
+        $ttl = null
     )
     {
         $body = [];
@@ -123,6 +128,10 @@ public function createPasswordChangeTicketRaw(
             $body['connection_id'] = $connection_id;
         }
 
+        if ($ttl) {
+            $body['ttl_sec'] = $ttl;
+        }
+
         return $this->apiClient->method('post')
             ->addPath('tickets', 'password-change')
             ->withBody(json_encode($body))

From dba9a67ccd5433bc76b33f24aa64ca61c60eb7a9 Mon Sep 17 00:00:00 2001
From: Evan Sims <evan.sims@auth0.com>
Date: Fri, 6 Nov 2020 16:24:36 -0500
Subject: [PATCH 2/2] Add password change ticket to unit tests.

---
 tests/unit/API/Management/TicketsTest.php | 30 ++++++++++++++++++++++-
 1 file changed, 29 insertions(+), 1 deletion(-)

diff --git a/tests/unit/API/Management/TicketsTest.php b/tests/unit/API/Management/TicketsTest.php
index 126caac3..d1b26491 100644
--- a/tests/unit/API/Management/TicketsTest.php
+++ b/tests/unit/API/Management/TicketsTest.php
@@ -67,6 +67,34 @@ public function testThatSendVerificationEmailTicketRequestIsFormedProperly()
         $this->assertEquals( 'application/json', $headers['Content-Type'][0] );
     }
 
+    public function testThatPasswordChangeTicketRequestIsFormedProperly()
+    {
+        $api = new MockManagementApi( [ new Response( 200, self::$headers ) ] );
+
+        $api->call()->tickets()->createPasswordChangeTicket( '__test_user_id__', '__test_password__', '__test_result_url__', '__test_connection_id__', 8675309 );
+
+        $this->assertEquals( 'POST', $api->getHistoryMethod() );
+        $this->assertEquals( 'https://api.test.local/api/v2/tickets/password-change', $api->getHistoryUrl() );
+        $this->assertEmpty( $api->getHistoryQuery() );
+
+        $body = $api->getHistoryBody();
+        $this->assertArrayHasKey( 'user_id', $body );
+        $this->assertEquals( '__test_user_id__', $body['user_id'] );
+        $this->assertArrayHasKey( 'new_password', $body );
+        $this->assertEquals( '__test_password__', $body['new_password'] );
+        $this->assertArrayHasKey( 'result_url', $body );
+        $this->assertEquals( '__test_result_url__', $body['result_url'] );
+        $this->assertArrayHasKey( 'connection_id', $body );
+        $this->assertEquals( '__test_connection_id__', $body['connection_id'] );
+        $this->assertArrayHasKey( 'ttl_sec', $body );
+        $this->assertEquals( 8675309, $body['ttl_sec'] );
+
+        $headers = $api->getHistoryHeaders();
+        $this->assertEquals( 'Bearer __api_token__', $headers['Authorization'][0] );
+        $this->assertEquals( self::$expectedTelemetry, $headers['Auth0-Client'][0] );
+        $this->assertEquals( 'application/json', $headers['Content-Type'][0] );
+    }
+
     public function testIdentityParamRequiresUserId()
     {
         $api = new MockManagementApi( [ new Response( 200, self::$headers ) ] );
@@ -140,4 +168,4 @@ public function testIdentityParamRequiresProviderAsString()
 
         $this->assertStringContainsString( 'Missing required "provider" field of the "identity" object.', $exception_message );
     }
-}
\ No newline at end of file
+}