IME-LONDON
/
LONDON-IOS
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1563 Commits
3 Branches
2 Tags
339 MiB
Tree: 044de7c3c3
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '044de7c3c3'
${ noResults }
LONDON-IOS/Pods/FirebaseAuth/Firebase/Auth/Source/User/FIRUser.m

1536 lines
62 KiB
Raw Normal View History

git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
pod update as latest version
5 years ago
git init
6 years ago
  1. /*
  2. * Copyright 2017 Google
  3. *
  4. * Licensed under the Apache License, Version 2.0 (the "License");
  5. * you may not use this file except in compliance with the License.
  6. * You may obtain a copy of the License at
  7. *
  8. * http://www.apache.org/licenses/LICENSE-2.0
  9. *
  10. * Unless required by applicable law or agreed to in writing, software
  11. * distributed under the License is distributed on an "AS IS" BASIS,
  12. * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  13. * See the License for the specific language governing permissions and
  14. * limitations under the License.
  15. */
  17. #import "FIRUser_Internal.h"
  19. #import <FirebaseCore/FIRLogger.h>
  21. #import "FIRAdditionalUserInfo_Internal.h"
  22. #import "FIRAuth.h"
  23. #import "FIRAuthCredential_Internal.h"
  24. #import "FIRAuthDataResult_Internal.h"
  25. #import "FIRAuthErrorUtils.h"
  26. #import "FIRAuthGlobalWorkQueue.h"
  27. #import "FIRAuthSerialTaskQueue.h"
  28. #import "FIRAuthOperationType.h"
  29. #import "FIRAuth_Internal.h"
  30. #import "FIRAuthBackend.h"
  31. #import "FIRAuthRequestConfiguration.h"
  32. #import "FIRAuthTokenResult_Internal.h"
  33. #import "FIRAuthWebUtils.h"
  34. #import "FIRDeleteAccountRequest.h"
  35. #import "FIRDeleteAccountResponse.h"
  36. #import "FIREmailAuthProvider.h"
  37. #import "FIREmailPasswordAuthCredential.h"
  38. #import "FIREmailLinkSignInRequest.h"
  39. #import "FIRGameCenterAuthCredential.h"
  40. #import "FIRGetAccountInfoRequest.h"
  41. #import "FIRGetAccountInfoResponse.h"
  42. #import "FIRGetOOBConfirmationCodeRequest.h"
  43. #import "FIRGetOOBConfirmationCodeResponse.h"
  44. #import "FIROAuthCredential_Internal.h"
  45. #import "FIRSecureTokenService.h"
  46. #import "FIRSetAccountInfoRequest.h"
  47. #import "FIRSetAccountInfoResponse.h"
  48. #import "FIRSignInWithGameCenterRequest.h"
  49. #import "FIRSignInWithGameCenterResponse.h"
  50. #import "FIRUserInfoImpl.h"
  51. #import "FIRUserMetadata_Internal.h"
  52. #import "FIRVerifyAssertionRequest.h"
  53. #import "FIRVerifyAssertionResponse.h"
  54. #import "FIRVerifyCustomTokenRequest.h"
  55. #import "FIRVerifyCustomTokenResponse.h"
  56. #import "FIRVerifyPasswordRequest.h"
  57. #import "FIRVerifyPasswordResponse.h"
  58. #import "FIRVerifyPhoneNumberRequest.h"
  59. #import "FIRVerifyPhoneNumberResponse.h"
  61. #if TARGET_OS_IOS
  62. #import "FIRPhoneAuthProvider.h"
  63. #import "FIRPhoneAuthCredential_Internal.h"
  64. #endif
  66. NS_ASSUME_NONNULL_BEGIN
  68. /** @var kUserIDCodingKey
  69. @brief The key used to encode the user ID for NSSecureCoding.
  70. */
  71. static NSString *const kUserIDCodingKey = @"userID";
  73. /** @var kHasEmailPasswordCredentialCodingKey
  74. @brief The key used to encode the hasEmailPasswordCredential property for NSSecureCoding.
  75. */
  76. static NSString *const kHasEmailPasswordCredentialCodingKey = @"hasEmailPassword";
  78. /** @var kAnonymousCodingKey
  79. @brief The key used to encode the anonymous property for NSSecureCoding.
  80. */
  81. static NSString *const kAnonymousCodingKey = @"anonymous";
  83. /** @var kEmailCodingKey
  84. @brief The key used to encode the email property for NSSecureCoding.
  85. */
  86. static NSString *const kEmailCodingKey = @"email";
  88. /** @var kPhoneNumberCodingKey
  89. @brief The key used to encode the phoneNumber property for NSSecureCoding.
  90. */
  91. static NSString *const kPhoneNumberCodingKey = @"phoneNumber";
  93. /** @var kEmailVerifiedCodingKey
  94. @brief The key used to encode the isEmailVerified property for NSSecureCoding.
  95. */
  96. static NSString *const kEmailVerifiedCodingKey = @"emailVerified";
  98. /** @var kDisplayNameCodingKey
  99. @brief The key used to encode the displayName property for NSSecureCoding.
  100. */
  101. static NSString *const kDisplayNameCodingKey = @"displayName";
  103. /** @var kPhotoURLCodingKey
  104. @brief The key used to encode the photoURL property for NSSecureCoding.
  105. */
  106. static NSString *const kPhotoURLCodingKey = @"photoURL";
  108. /** @var kProviderDataKey
  109. @brief The key used to encode the providerData instance variable for NSSecureCoding.
  110. */
  111. static NSString *const kProviderDataKey = @"providerData";
  113. /** @var kAPIKeyCodingKey
  114. @brief The key used to encode the APIKey instance variable for NSSecureCoding.
  115. */
  116. static NSString *const kAPIKeyCodingKey = @"APIKey";
  118. /** @var kTokenServiceCodingKey
  119. @brief The key used to encode the tokenService instance variable for NSSecureCoding.
  120. */
  121. static NSString *const kTokenServiceCodingKey = @"tokenService";
  123. /** @var kMetadataCodingKey
  124. @brief The key used to encode the metadata instance variable for NSSecureCoding.
  125. */
  126. static NSString *const kMetadataCodingKey = @"metadata";
  128. /** @var kMissingUsersErrorMessage
  129. @brief The error message when there is no users array in the getAccountInfo response.
  130. */
  131. static NSString *const kMissingUsersErrorMessage = @"users";
  133. /** @typedef CallbackWithError
  134. @brief The type for a callback block that only takes an error parameter.
  135. */
  136. typedef void (^CallbackWithError)(NSError *_Nullable);
  138. /** @typedef CallbackWithUserAndError
  139. @brief The type for a callback block that takes a user parameter and an error parameter.
  140. */
  141. typedef void (^CallbackWithUserAndError)(FIRUser *_Nullable, NSError *_Nullable);
  143. /** @typedef CallbackWithUserAndError
  144. @brief The type for a callback block that takes a user parameter and an error parameter.
  145. */
  146. typedef void (^CallbackWithAuthDataResultAndError)(FIRAuthDataResult *_Nullable,
  147. NSError *_Nullable);
  149. /** @var kMissingPasswordReason
  150. @brief The reason why the @c FIRAuthErrorCodeWeakPassword error is thrown.
  151. @remarks This error message will be localized in the future.
  152. */
  153. static NSString *const kMissingPasswordReason = @"Missing Password";
  155. /** @fn callInMainThreadWithError
  156. @brief Calls a callback in main thread with error.
  157. @param callback The callback to be called in main thread.
  158. @param error The error to pass to callback.
  159. */
  160. static void callInMainThreadWithError(_Nullable CallbackWithError callback,
  161. NSError *_Nullable error) {
  162. if (callback) {
  163. dispatch_async(dispatch_get_main_queue(), ^{
  164. callback(error);
  165. });
  166. }
  167. }
  169. /** @fn callInMainThreadWithUserAndError
  170. @brief Calls a callback in main thread with user and error.
  171. @param callback The callback to be called in main thread.
  172. @param user The user to pass to callback if there is no error.
  173. @param error The error to pass to callback.
  174. */
  175. static void callInMainThreadWithUserAndError(_Nullable CallbackWithUserAndError callback,
  176. FIRUser *_Nonnull user,
  177. NSError *_Nullable error) {
  178. if (callback) {
  179. dispatch_async(dispatch_get_main_queue(), ^{
  180. callback(error ? nil : user, error);
  181. });
  182. }
  183. }
  185. /** @fn callInMainThreadWithUserAndError
  186. @brief Calls a callback in main thread with user and error.
  187. @param callback The callback to be called in main thread.
  188. @param result The result to pass to callback if there is no error.
  189. @param error The error to pass to callback.
  190. */
  191. static void callInMainThreadWithAuthDataResultAndError(
  192. _Nullable CallbackWithAuthDataResultAndError callback,
  193. FIRAuthDataResult *_Nullable result,
  194. NSError *_Nullable error) {
  195. if (callback) {
  196. dispatch_async(dispatch_get_main_queue(), ^{
  197. callback(result, error);
  198. });
  199. }
  200. }
  202. @interface FIRUserProfileChangeRequest ()
  204. /** @fn initWithUser:
  205. @brief Designated initializer.
  206. @param user The user for which we are updating profile information.
  207. */
  208. - (nullable instancetype)initWithUser:(FIRUser *)user NS_DESIGNATED_INITIALIZER;
  210. @end
  212. @interface FIRUser ()
  214. /** @property anonymous
  215. @brief Whether the current user is anonymous.
  216. */
  217. @property(nonatomic, readwrite) BOOL anonymous;
  219. @end
  221. @implementation FIRUser {
  222. /** @var _hasEmailPasswordCredential
  223. @brief Whether or not the user can be authenticated by using Firebase email and password.
  224. */
  225. BOOL _hasEmailPasswordCredential;
  227. /** @var _providerData
  228. @brief Provider specific user data.
  229. */
  230. NSDictionary<NSString *, FIRUserInfoImpl *> *_providerData;
  232. /** @var _taskQueue
  233. @brief Used to serialize the update profile calls.
  234. */
  235. FIRAuthSerialTaskQueue *_taskQueue;
  237. /** @var _tokenService
  238. @brief A secure token service associated with this user. For performing token exchanges and
  239. refreshing access tokens.
  240. */
  241. FIRSecureTokenService *_tokenService;
  242. }
  244. #pragma mark - Properties
  246. // Explicitly @synthesize because these properties are defined in FIRUserInfo protocol.
  247. @synthesize uid = _userID;
  248. @synthesize displayName = _displayName;
  249. @synthesize photoURL = _photoURL;
  250. @synthesize email = _email;
  251. @synthesize phoneNumber = _phoneNumber;
  253. #pragma mark -
  255. + (void)retrieveUserWithAuth:(FIRAuth *)auth
  256. accessToken:(nullable NSString *)accessToken
  257. accessTokenExpirationDate:(nullable NSDate *)accessTokenExpirationDate
  258. refreshToken:(nullable NSString *)refreshToken
  259. anonymous:(BOOL)anonymous
  260. callback:(FIRRetrieveUserCallback)callback {
  261. FIRSecureTokenService *tokenService =
  262. [[FIRSecureTokenService alloc] initWithRequestConfiguration:auth.requestConfiguration
  263. accessToken:accessToken
  264. accessTokenExpirationDate:accessTokenExpirationDate
  265. refreshToken:refreshToken];
  266. FIRUser *user = [[self alloc] initWithTokenService:tokenService];
  267. user.auth = auth;
  268. user.requestConfiguration = auth.requestConfiguration;
  269. [user internalGetTokenWithCallback:^(NSString *_Nullable accessToken, NSError *_Nullable error) {
  270. if (error) {
  271. callback(nil, error);
  272. return;
  273. }
  274. FIRGetAccountInfoRequest *getAccountInfoRequest =
  275. [[FIRGetAccountInfoRequest alloc] initWithAccessToken:accessToken
  276. requestConfiguration:auth.requestConfiguration];
  277. [FIRAuthBackend getAccountInfo:getAccountInfoRequest
  278. callback:^(FIRGetAccountInfoResponse *_Nullable response,
  279. NSError *_Nullable error) {
  280. if (error) {
  281. // No need to sign out user here for errors because the user hasn't been signed in yet.
  282. callback(nil, error);
  283. return;
  284. }
  285. user.anonymous = anonymous;
  286. [user updateWithGetAccountInfoResponse:response];
  287. callback(user, nil);
  288. }];
  289. }];
  290. }
  292. - (instancetype)initWithTokenService:(FIRSecureTokenService *)tokenService {
  293. self = [super init];
  294. if (self) {
  295. _providerData = @{ };
  296. _taskQueue = [[FIRAuthSerialTaskQueue alloc] init];
  297. _tokenService = tokenService;
  298. }
  299. return self;
  300. }
  302. #pragma mark - NSSecureCoding
  304. + (BOOL)supportsSecureCoding {
  305. return YES;
  306. }
  308. - (nullable instancetype)initWithCoder:(NSCoder *)aDecoder {
  309. NSString *userID = [aDecoder decodeObjectOfClass:[NSString class] forKey:kUserIDCodingKey];
  310. BOOL hasAnonymousKey = [aDecoder containsValueForKey:kAnonymousCodingKey];
  311. BOOL anonymous = [aDecoder decodeBoolForKey:kAnonymousCodingKey];
  312. BOOL hasEmailPasswordCredential =
  313. [aDecoder decodeBoolForKey:kHasEmailPasswordCredentialCodingKey];
  314. NSString *displayName =
  315. [aDecoder decodeObjectOfClass:[NSString class] forKey:kDisplayNameCodingKey];
  316. NSURL *photoURL =
  317. [aDecoder decodeObjectOfClass:[NSURL class] forKey:kPhotoURLCodingKey];
  318. NSString *email =
  319. [aDecoder decodeObjectOfClass:[NSString class] forKey:kEmailCodingKey];
  320. NSString *phoneNumber =
  321. [aDecoder decodeObjectOfClass:[NSString class] forKey:kPhoneNumberCodingKey];
  322. BOOL emailVerified = [aDecoder decodeBoolForKey:kEmailVerifiedCodingKey];
  323. NSSet *providerDataClasses = [NSSet setWithArray:@[
  324. [NSDictionary class],
  325. [NSString class],
  326. [FIRUserInfoImpl class]
  327. ]];
  328. NSDictionary<NSString *, FIRUserInfoImpl *> *providerData =
  329. [aDecoder decodeObjectOfClasses:providerDataClasses forKey:kProviderDataKey];
  330. FIRSecureTokenService *tokenService =
  331. [aDecoder decodeObjectOfClass:[FIRSecureTokenService class] forKey:kTokenServiceCodingKey];
  332. FIRUserMetadata *metadata =
  333. [aDecoder decodeObjectOfClass:[FIRUserMetadata class] forKey:kMetadataCodingKey];
  334. NSString *APIKey =
  335. [aDecoder decodeObjectOfClass:[NSString class] forKey:kAPIKeyCodingKey];
  336. if (!userID || !tokenService) {
  337. return nil;
  338. }
  339. self = [self initWithTokenService:tokenService];
  340. if (self) {
  341. _userID = userID;
  342. // Previous version of this code didn't save 'anonymous' bit directly but deduced it from
  343. // 'hasEmailPasswordCredential' and 'providerData' instead, so here backward compatibility is
  344. // provided to read old format data.
  345. _anonymous = hasAnonymousKey ? anonymous : (!hasEmailPasswordCredential && !providerData.count);
  346. _hasEmailPasswordCredential = hasEmailPasswordCredential;
  347. _email = email;
  348. _emailVerified = emailVerified;
  349. _displayName = displayName;
  350. _photoURL = photoURL;
  351. _providerData = providerData;
  352. _phoneNumber = phoneNumber;
  353. _metadata = metadata ?: [[FIRUserMetadata alloc] initWithCreationDate:nil lastSignInDate:nil];
  354. _requestConfiguration = [[FIRAuthRequestConfiguration alloc] initWithAPIKey:APIKey];
  355. }
  356. return self;
  357. }
  359. - (void)encodeWithCoder:(NSCoder *)aCoder {
  360. [aCoder encodeObject:_userID forKey:kUserIDCodingKey];
  361. [aCoder encodeBool:self.anonymous forKey:kAnonymousCodingKey];
  362. [aCoder encodeBool:_hasEmailPasswordCredential forKey:kHasEmailPasswordCredentialCodingKey];
  363. [aCoder encodeObject:_providerData forKey:kProviderDataKey];
  364. [aCoder encodeObject:_email forKey:kEmailCodingKey];
  365. [aCoder encodeObject:_phoneNumber forKey:kPhoneNumberCodingKey];
  366. [aCoder encodeBool:_emailVerified forKey:kEmailVerifiedCodingKey];
  367. [aCoder encodeObject:_photoURL forKey:kPhotoURLCodingKey];
  368. [aCoder encodeObject:_displayName forKey:kDisplayNameCodingKey];
  369. [aCoder encodeObject:_metadata forKey:kMetadataCodingKey];
  370. [aCoder encodeObject:_auth.requestConfiguration.APIKey forKey:kAPIKeyCodingKey];
  371. [aCoder encodeObject:_tokenService forKey:kTokenServiceCodingKey];
  372. }
  374. #pragma mark -
  376. - (void)setAuth:(nullable FIRAuth *)auth {
  377. _auth = auth;
  378. _tokenService.requestConfiguration = auth.requestConfiguration;
  379. }
  381. - (NSString *)providerID {
  382. return @"Firebase";
  383. }
  385. - (NSArray<id<FIRUserInfo>> *)providerData {
  386. return _providerData.allValues;
  387. }
  389. /** @fn getAccountInfoRefreshingCache:
  390. @brief Gets the users's account data from the server, updating our local values.
  391. @param callback Invoked when the request to getAccountInfo has completed, or when an error has
  392. been detected. Invoked asynchronously on the auth global work queue in the future.
  393. */
  394. - (void)getAccountInfoRefreshingCache:(void(^)(FIRGetAccountInfoResponseUser *_Nullable user,
  395. NSError *_Nullable error))callback {
  396. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken, NSError *_Nullable error) {
  397. if (error) {
  398. callback(nil, error);
  399. return;
  400. }
  401. FIRGetAccountInfoRequest *getAccountInfoRequest =
  402. [[FIRGetAccountInfoRequest alloc] initWithAccessToken:accessToken
  403. requestConfiguration:self->_auth.requestConfiguration];
  404. [FIRAuthBackend getAccountInfo:getAccountInfoRequest
  405. callback:^(FIRGetAccountInfoResponse *_Nullable response,
  406. NSError *_Nullable error) {
  407. if (error) {
  408. [self signOutIfTokenIsInvalidWithError:error];
  409. callback(nil, error);
  410. return;
  411. }
  412. [self updateWithGetAccountInfoResponse:response];
  413. if (![self updateKeychain:&error]) {
  414. callback(nil, error);
  415. return;
  416. }
  417. callback(response.users.firstObject, nil);
  418. }];
  419. }];
  420. }
  422. - (void)updateWithGetAccountInfoResponse:(FIRGetAccountInfoResponse *)response {
  423. FIRGetAccountInfoResponseUser *user = response.users.firstObject;
  424. _userID = user.localID;
  425. _email = user.email;
  426. _emailVerified = user.emailVerified;
  427. _displayName = user.displayName;
  428. _photoURL = user.photoURL;
  429. _phoneNumber = user.phoneNumber;
  430. _hasEmailPasswordCredential = user.passwordHash.length > 0;
  431. _metadata =
  432. [[FIRUserMetadata alloc]initWithCreationDate:user.creationDate
  433. lastSignInDate:user.lastLoginDate];
  434. NSMutableDictionary<NSString *, FIRUserInfoImpl *> *providerData =
  435. [NSMutableDictionary dictionary];
  436. for (FIRGetAccountInfoResponseProviderUserInfo *providerUserInfo in user.providerUserInfo) {
  437. FIRUserInfoImpl *userInfo =
  438. [FIRUserInfoImpl userInfoWithGetAccountInfoResponseProviderUserInfo:providerUserInfo];
  439. if (userInfo) {
  440. providerData[providerUserInfo.providerID] = userInfo;
  441. }
  442. }
  443. _providerData = [providerData copy];
  444. }
  446. /** @fn executeUserUpdateWithChanges:callback:
  447. @brief Performs a setAccountInfo request by mutating the results of a getAccountInfo response,
  448. atomically in regards to other calls to this method.
  449. @param changeBlock A block responsible for mutating a template @c FIRSetAccountInfoRequest
  450. @param callback A block to invoke when the change is complete. Invoked asynchronously on the
  451. auth global work queue in the future.
  452. */
  453. - (void)executeUserUpdateWithChanges:(void(^)(FIRGetAccountInfoResponseUser *,
  454. FIRSetAccountInfoRequest *))changeBlock
  455. callback:(nonnull FIRUserProfileChangeCallback)callback {
  456. [_taskQueue enqueueTask:^(FIRAuthSerialTaskCompletionBlock _Nonnull complete) {
  457. [self getAccountInfoRefreshingCache:^(FIRGetAccountInfoResponseUser *_Nullable user,
  458. NSError *_Nullable error) {
  459. if (error) {
  460. complete();
  461. callback(error);
  462. return;
  463. }
  464. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  465. NSError *_Nullable error) {
  466. if (error) {
  467. complete();
  468. callback(error);
  469. return;
  470. }
  471. FIRAuthRequestConfiguration *configuration = self->_auth.requestConfiguration;
  472. // Mutate setAccountInfoRequest in block:
  473. FIRSetAccountInfoRequest *setAccountInfoRequest =
  474. [[FIRSetAccountInfoRequest alloc] initWithRequestConfiguration:configuration];
  475. setAccountInfoRequest.accessToken = accessToken;
  476. changeBlock(user, setAccountInfoRequest);
  477. // Execute request:
  478. [FIRAuthBackend setAccountInfo:setAccountInfoRequest
  479. callback:^(FIRSetAccountInfoResponse *_Nullable response,
  480. NSError *_Nullable error) {
  481. if (error) {
  482. [self signOutIfTokenIsInvalidWithError:error];
  483. complete();
  484. callback(error);
  485. return;
  486. }
  487. if (response.IDToken && response.refreshToken) {
  488. FIRSecureTokenService *tokenService = [[FIRSecureTokenService alloc]
  489. initWithRequestConfiguration:configuration
  490. accessToken:response.IDToken
  491. accessTokenExpirationDate:response.approximateExpirationDate
  492. refreshToken:response.refreshToken];
  493. [self setTokenService:tokenService callback:^(NSError *_Nullable error) {
  494. complete();
  495. callback(error);
  496. }];
  497. return;
  498. }
  499. complete();
  500. callback(nil);
  501. }];
  502. }];
  503. }];
  504. }];
  505. }
  507. /** @fn updateKeychain:
  508. @brief Updates the keychain for user token or info changes.
  509. @param error The error if NO is returned.
  510. @return Whether the operation is successful.
  511. */
  512. - (BOOL)updateKeychain:(NSError *_Nullable *_Nullable)error {
  513. return [_auth updateKeychainWithUser:self error:error];
  514. }
  516. /** @fn setTokenService:callback:
  517. @brief Sets a new token service for the @c FIRUser instance.
  518. @param tokenService The new token service object.
  519. @param callback The block to be called in the global auth working queue once finished.
  520. @remarks The method makes sure the token service has access and refresh token and the new tokens
  521. are saved in the keychain before calling back.
  522. */
  523. - (void)setTokenService:(FIRSecureTokenService *)tokenService
  524. callback:(nonnull CallbackWithError)callback {
  525. [tokenService fetchAccessTokenForcingRefresh:NO
  526. callback:^(NSString *_Nullable token,
  527. NSError *_Nullable error,
  528. BOOL tokenUpdated) {
  529. if (error) {
  530. callback(error);
  531. return;
  532. }
  533. self->_tokenService = tokenService;
  534. if (![self updateKeychain:&error]) {
  535. callback(error);
  536. return;
  537. }
  538. callback(nil);
  539. }];
  540. }
  542. #pragma mark -
  544. /** @fn updateEmail:password:callback:
  545. @brief Updates email address and/or password for the current user.
  546. @remarks May fail if there is already an email/password-based account for the same email
  547. address.
  548. @param email The email address for the user, if to be updated.
  549. @param password The new password for the user, if to be updated.
  550. @param callback The block called when the user profile change has finished. Invoked
  551. asynchronously on the auth global work queue in the future.
  552. @remarks May fail with a @c FIRAuthErrorCodeRequiresRecentLogin error code.
  553. Call @c reauthentateWithCredential:completion: beforehand to avoid this error case.
  554. */
  555. - (void)updateEmail:(nullable NSString *)email
  556. password:(nullable NSString *)password
  557. callback:(nonnull FIRUserProfileChangeCallback)callback {
  558. if (password && ![password length]) {
  559. callback([FIRAuthErrorUtils weakPasswordErrorWithServerResponseReason:kMissingPasswordReason]);
  560. return;
  561. }
  562. BOOL hadEmailPasswordCredential = _hasEmailPasswordCredential;
  563. [self executeUserUpdateWithChanges:^(FIRGetAccountInfoResponseUser *user,
  564. FIRSetAccountInfoRequest *request) {
  565. if (email) {
  566. request.email = email;
  567. }
  568. if (password) {
  569. request.password = password;
  570. }
  571. }
  572. callback:^(NSError *error) {
  573. if (error) {
  574. callback(error);
  575. return;
  576. }
  577. if (email) {
  578. self->_email = [email copy];
  579. }
  580. if (self->_email) {
  581. if (!hadEmailPasswordCredential) {
  582. // The list of providers need to be updated for the newly added email-password provider.
  583. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  584. NSError *_Nullable error) {
  585. if (error) {
  586. callback(error);
  587. return;
  588. }
  589. FIRAuthRequestConfiguration *requestConfiguration = self->_auth.requestConfiguration;
  590. FIRGetAccountInfoRequest *getAccountInfoRequest =
  591. [[FIRGetAccountInfoRequest alloc] initWithAccessToken:accessToken
  592. requestConfiguration:requestConfiguration];
  593. [FIRAuthBackend getAccountInfo:getAccountInfoRequest
  594. callback:^(FIRGetAccountInfoResponse *_Nullable response,
  595. NSError *_Nullable error) {
  596. if (error) {
  597. [self signOutIfTokenIsInvalidWithError:error];
  598. callback(error);
  599. return;
  600. }
  601. for (FIRGetAccountInfoResponseUser *userAccountInfo in response.users) {
  602. // Set the account to non-anonymous if there are any providers, even if
  603. // they're not email/password ones.
  604. if (userAccountInfo.providerUserInfo.count > 0) {
  605. self.anonymous = NO;
  606. }
  607. for (FIRGetAccountInfoResponseProviderUserInfo *providerUserInfo in
  608. userAccountInfo.providerUserInfo) {
  609. if ([providerUserInfo.providerID isEqualToString:FIREmailAuthProviderID]) {
  610. self->_hasEmailPasswordCredential = YES;
  611. break;
  612. }
  613. }
  614. }
  615. [self updateWithGetAccountInfoResponse:response];
  616. if (![self updateKeychain:&error]) {
  617. callback(error);
  618. return;
  619. }
  620. callback(nil);
  621. }];
  622. }];
  623. return;
  624. }
  625. }
  626. if (![self updateKeychain:&error]) {
  627. callback(error);
  628. return;
  629. }
  630. callback(nil);
  631. }];
  632. }
  634. - (void)updateEmail:(NSString *)email completion:(nullable FIRUserProfileChangeCallback)completion {
  635. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  636. [self updateEmail:email password:nil callback:^(NSError *_Nullable error) {
  637. callInMainThreadWithError(completion, error);
  638. }];
  639. });
  640. }
  642. - (void)updatePassword:(NSString *)password
  643. completion:(nullable FIRUserProfileChangeCallback)completion {
  644. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  645. [self updateEmail:nil password:password callback:^(NSError *_Nullable error){
  646. callInMainThreadWithError(completion, error);
  647. }];
  648. });
  649. }
  651. #if TARGET_OS_IOS
  652. /** @fn internalUpdateOrLinkPhoneNumberCredential:completion:
  653. @brief Updates the phone number for the user. On success, the cached user profile data is
  654. updated.
  656. @param phoneAuthCredential The new phone number credential corresponding to the phone number
  657. to be added to the Firebase account, if a phone number is already linked to the account this
  658. new phone number will replace it.
  659. @param isLinkOperation Boolean value indicating whether or not this is a link operation.
  660. @param completion Optionally; the block invoked when the user profile change has finished.
  661. Invoked asynchronously on the global work queue in the future.
  662. */
  663. - (void)internalUpdateOrLinkPhoneNumberCredential:(FIRPhoneAuthCredential *)phoneAuthCredential
  664. isLinkOperation:(BOOL)isLinkOperation
  665. completion:(FIRUserProfileChangeCallback)completion {
  666. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  667. NSError *_Nullable error) {
  668. if (error) {
  669. completion(error);
  670. return;
  671. }
  672. FIRAuthOperationType operation =
  673. isLinkOperation ? FIRAuthOperationTypeLink : FIRAuthOperationTypeUpdate;
  674. FIRVerifyPhoneNumberRequest *request = [[FIRVerifyPhoneNumberRequest alloc]
  675. initWithVerificationID:phoneAuthCredential.verificationID
  676. verificationCode:phoneAuthCredential.verificationCode
  677. operation:operation
  678. requestConfiguration:self->_auth.requestConfiguration];
  679. request.accessToken = accessToken;
  680. [FIRAuthBackend verifyPhoneNumber:request
  681. callback:^(FIRVerifyPhoneNumberResponse *_Nullable response,
  682. NSError *_Nullable error) {
  683. if (error) {
  684. [self signOutIfTokenIsInvalidWithError:error];
  685. completion(error);
  686. return;
  687. }
  688. // Get account info to update cached user info.
  689. [self getAccountInfoRefreshingCache:^(FIRGetAccountInfoResponseUser *_Nullable user,
  690. NSError *_Nullable error) {
  691. if (error) {
  692. [self signOutIfTokenIsInvalidWithError:error];
  693. completion(error);
  694. return;
  695. }
  696. self.anonymous = NO;
  697. if (![self updateKeychain:&error]) {
  698. completion(error);
  699. return;
  700. }
  701. completion(nil);
  702. }];
  703. }];
  704. }];
  705. }
  707. - (void)updatePhoneNumberCredential:(FIRPhoneAuthCredential *)phoneAuthCredential
  708. completion:(nullable FIRUserProfileChangeCallback)completion {
  709. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  710. [self internalUpdateOrLinkPhoneNumberCredential:phoneAuthCredential
  711. isLinkOperation:NO
  712. completion:^(NSError *_Nullable error) {
  713. callInMainThreadWithError(completion, error);
  714. }];
  715. });
  716. }
  717. #endif
  719. - (FIRUserProfileChangeRequest *)profileChangeRequest {
  720. __block FIRUserProfileChangeRequest *result;
  721. dispatch_sync(FIRAuthGlobalWorkQueue(), ^{
  722. result = [[FIRUserProfileChangeRequest alloc] initWithUser:self];
  723. });
  724. return result;
  725. }
  727. - (void)setDisplayName:(NSString *)displayName {
  728. _displayName = [displayName copy];
  729. }
  731. - (void)setPhotoURL:(NSURL *)photoURL {
  732. _photoURL = [photoURL copy];
  733. }
  735. - (NSString *)rawAccessToken {
  736. return _tokenService.rawAccessToken;
  737. }
  739. - (NSDate *)accessTokenExpirationDate {
  740. return _tokenService.accessTokenExpirationDate;
  741. }
  743. #pragma mark -
  745. - (void)reloadWithCompletion:(nullable FIRUserProfileChangeCallback)completion {
  746. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  747. [self getAccountInfoRefreshingCache:^(FIRGetAccountInfoResponseUser *_Nullable user,
  748. NSError *_Nullable error) {
  749. callInMainThreadWithError(completion, error);
  750. }];
  751. });
  752. }
  754. #pragma mark -
  756. #pragma clang diagnostic push
  757. #pragma clang diagnostic ignored "-Wdeprecated-declarations"
  758. - (void)reauthenticateWithCredential:(FIRAuthCredential *) credential
  759. completion:(nullable FIRAuthDataResultCallback) completion {
  760. [self reauthenticateAndRetrieveDataWithCredential:credential completion:completion];
  761. }
  762. #pragma clang diagnostic pop
  764. - (void)reauthenticateAndRetrieveDataWithCredential:(FIRAuthCredential *) credential
  765. completion:(nullable FIRAuthDataResultCallback) completion {
  766. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  767. [self->_auth internalSignInAndRetrieveDataWithCredential:credential
  768. isReauthentication:YES
  769. callback:^(FIRAuthDataResult *_Nullable
  770. authResult,
  771. NSError *_Nullable error) {
  772. if (error) {
  773. // If "user not found" error returned by backend, translate to user mismatch error which is
  774. // more accurate.
  775. if (error.code == FIRAuthErrorCodeUserNotFound) {
  776. error = [FIRAuthErrorUtils userMismatchError];
  777. }
  778. callInMainThreadWithAuthDataResultAndError(completion, authResult, error);
  779. return;
  780. }
  781. if (![authResult.user.uid isEqual:[self->_auth getUserID]]) {
  782. callInMainThreadWithAuthDataResultAndError(completion, authResult,
  783. [FIRAuthErrorUtils userMismatchError]);
  784. return;
  785. }
  786. // Successful reauthenticate
  787. [self setTokenService:authResult.user->_tokenService callback:^(NSError *_Nullable error) {
  788. callInMainThreadWithAuthDataResultAndError(completion, authResult, error);
  789. }];
  790. }];
  791. });
  792. }
  794. - (nullable NSString *)refreshToken {
  795. __block NSString *result;
  796. dispatch_sync(FIRAuthGlobalWorkQueue(), ^{
  797. result = self->_tokenService.refreshToken;
  798. });
  799. return result;
  800. }
  802. - (void)getIDTokenWithCompletion:(nullable FIRAuthTokenCallback)completion {
  803. // |getIDTokenForcingRefresh:completion:| is also a public API so there is no need to dispatch to
  804. // global work queue here.
  805. [self getIDTokenForcingRefresh:NO completion:completion];
  806. }
  808. - (void)getIDTokenForcingRefresh:(BOOL)forceRefresh
  809. completion:(nullable FIRAuthTokenCallback)completion {
  810. [self getIDTokenResultForcingRefresh:forceRefresh
  811. completion:^(FIRAuthTokenResult *_Nullable tokenResult,
  812. NSError *_Nullable error) {
  814. if (completion) {
  815. dispatch_async(dispatch_get_main_queue(), ^{
  816. completion(tokenResult.token, error);
  817. });
  818. }
  819. }];
  820. }
  822. - (void)getIDTokenResultWithCompletion:(nullable FIRAuthTokenResultCallback)completion {
  823. [self getIDTokenResultForcingRefresh:NO
  824. completion:^(FIRAuthTokenResult *_Nullable tokenResult,
  825. NSError *_Nullable error) {
  826. if (completion) {
  827. dispatch_async(dispatch_get_main_queue(), ^{
  828. completion(tokenResult, error);
  829. });
  830. }
  831. }];
  832. }
  834. - (void)getIDTokenResultForcingRefresh:(BOOL)forceRefresh
  835. completion:(nullable FIRAuthTokenResultCallback)completion {
  836. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  837. [self internalGetTokenForcingRefresh:forceRefresh
  838. callback:^(NSString *_Nullable token, NSError *_Nullable error) {
  839. FIRAuthTokenResult *tokenResult;
  840. if (token) {
  841. tokenResult = [self parseIDToken:token error:&error];
  842. }
  843. if (completion) {
  844. dispatch_async(dispatch_get_main_queue(), ^{
  845. completion(tokenResult, error);
  846. });
  847. }
  848. }];
  849. });
  850. }
  852. /** @fn parseIDToken:error:
  853. @brief Parses the provided IDToken and returns an instance of FIRAuthTokenResult containing
  854. claims obtained from the IDToken.
  856. @param token The raw text of the Firebase IDToken encoded in base64.
  857. @param error An out parameter which would contain any error that occurs during parsing.
  858. @return An instance of FIRAuthTokenResult containing claims obtained from the IDToken.
  860. @remarks IDToken returned from the backend in some cases is of a length that is not a multiple
  861. of 4. In these cases this function pads the token with as many "=" characters as needed and
  862. then attempts to parse the token. If the token cannot be parsed an error is returned via the
  863. "error" out parameter.
  864. */
  865. - (nullable FIRAuthTokenResult *)parseIDToken:(NSString *)token error:(NSError **)error {
  866. // Though this is an internal method, errors returned here are surfaced in user-visible
  867. // callbacks.
  868. if (error) {
  869. *error = nil;
  870. }
  871. NSArray *tokenStringArray = [token componentsSeparatedByString:@"."];
  873. // The JWT should have three parts, though we only use the second in this method.
  874. if (tokenStringArray.count != 3) {
  875. if (error) {
  876. *error = [FIRAuthErrorUtils malformedJWTErrorWithToken:token underlyingError:nil];
  877. }
  878. return nil;
  879. }
  881. // The token payload is always the second index of the array.
  882. NSString *idToken = tokenStringArray[1];
  884. // Convert the base64URL encoded string to a base64 encoded string.
  885. // Replace "_" with "/"
  886. NSMutableString *tokenPayload =
  887. [[idToken stringByReplacingOccurrencesOfString:@"_" withString:@"/"] mutableCopy];
  889. // Replace "-" with "+"
  890. [tokenPayload replaceOccurrencesOfString:@"-"
  891. withString:@"+"
  892. options:kNilOptions
  893. range:NSMakeRange(0, tokenPayload.length)];
  895. // Pad the token payload with "=" signs if the payload's length is not a multiple of 4.
  896. while ((tokenPayload.length % 4) != 0) {
  897. [tokenPayload appendFormat:@"="];
  898. }
  899. NSData *decodedTokenPayloadData =
  900. [[NSData alloc] initWithBase64EncodedString:tokenPayload
  901. options:NSDataBase64DecodingIgnoreUnknownCharacters];
  902. if (!decodedTokenPayloadData) {
  903. if (error) {
  904. *error = [FIRAuthErrorUtils malformedJWTErrorWithToken:token underlyingError:nil];
  905. }
  906. return nil;
  907. }
  908. NSError *jsonError = nil;
  909. NSJSONReadingOptions options = NSJSONReadingMutableContainers|NSJSONReadingAllowFragments;
  910. NSDictionary *tokenPayloadDictionary =
  911. [NSJSONSerialization JSONObjectWithData:decodedTokenPayloadData
  912. options:options
  913. error:&jsonError];
  914. if (jsonError != nil) {
  915. if (error) {
  916. *error = [FIRAuthErrorUtils malformedJWTErrorWithToken:token underlyingError:jsonError];
  917. }
  918. return nil;
  919. }
  921. if (!tokenPayloadDictionary) {
  922. if (error) {
  923. *error = [FIRAuthErrorUtils malformedJWTErrorWithToken:token underlyingError:nil];
  924. }
  925. return nil;
  926. }
  928. // These are dates since 00:00:00 January 1 1970, as described by the Terminology section in
  929. // the JWT spec. https://tools.ietf.org/html/rfc7519
  930. NSDate *expDate =
  931. [NSDate dateWithTimeIntervalSince1970:[tokenPayloadDictionary[@"exp"] doubleValue]];
  932. NSDate *authDate =
  933. [NSDate dateWithTimeIntervalSince1970:[tokenPayloadDictionary[@"auth_time"] doubleValue]];
  934. NSDate *issuedDate =
  935. [NSDate dateWithTimeIntervalSince1970:[tokenPayloadDictionary[@"iat"] doubleValue]];
  936. FIRAuthTokenResult *result =
  937. [[FIRAuthTokenResult alloc] initWithToken:token
  938. expirationDate:expDate
  939. authDate:authDate
  940. issuedAtDate:issuedDate
  941. signInProvider:tokenPayloadDictionary[@"sign_in_provider"]
  942. claims:tokenPayloadDictionary];
  943. return result;
  944. }
  946. /** @fn internalGetTokenForcingRefresh:callback:
  947. @brief Retrieves the Firebase authentication token, possibly refreshing it if it has expired.
  948. @param callback The block to invoke when the token is available. Invoked asynchronously on the
  949. global work thread in the future.
  950. */
  951. - (void)internalGetTokenWithCallback:(nonnull FIRAuthTokenCallback)callback {
  952. [self internalGetTokenForcingRefresh:NO callback:callback];
  953. }
  955. - (void)internalGetTokenForcingRefresh:(BOOL)forceRefresh
  956. callback:(nonnull FIRAuthTokenCallback)callback {
  957. [_tokenService fetchAccessTokenForcingRefresh:forceRefresh
  958. callback:^(NSString *_Nullable token,
  959. NSError *_Nullable error,
  960. BOOL tokenUpdated) {
  961. if (error) {
  962. [self signOutIfTokenIsInvalidWithError:error];
  963. callback(nil, error);
  964. return;
  965. }
  966. if (tokenUpdated) {
  967. if (![self updateKeychain:&error]) {
  968. callback(nil, error);
  969. return;
  970. }
  971. }
  972. callback(token, nil);
  973. }];
  974. }
  976. - (void)internalVerifyBeforeUpdateEmailWithNewEmail:(NSString *)newEmail
  977. actionCodeSettings:(nullable FIRActionCodeSettings *)actionCodeSettings
  978. completion:(FIRVerifyBeforeUpdateEmailCallback)completion {
  979. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  980. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  981. NSError *_Nullable error) {
  982. if (error) {
  983. callInMainThreadWithError(completion, error);
  984. return;
  985. }
  986. FIRAuthRequestConfiguration *configuration = self->_auth.requestConfiguration;
  987. FIRActionCodeSettings *settings = actionCodeSettings;
  988. FIRGetOOBConfirmationCodeRequest *request =
  989. [FIRGetOOBConfirmationCodeRequest verifyBeforeUpdateEmailWithAccessToken:accessToken
  990. newEmail:newEmail
  991. actionCodeSettings:settings
  992. requestConfiguration:configuration];
  993. [FIRAuthBackend getOOBConfirmationCode:request
  994. callback:^(FIRGetOOBConfirmationCodeResponse *_Nullable
  995. response,
  996. NSError *_Nullable error) {
  997. callInMainThreadWithError(completion, error);
  998. }];
  999. }];
  1000. });
  1001. }
  1003. #pragma clang diagnostic push
  1004. #pragma clang diagnostic ignored "-Wdeprecated-declarations"
  1005. - (void)linkWithCredential:(FIRAuthCredential *)credential
  1006. completion:(nullable FIRAuthDataResultCallback)completion {
  1007. [self linkAndRetrieveDataWithCredential:credential completion:completion];
  1008. }
  1009. #pragma clang diagnostic pop
  1011. - (void)linkAndRetrieveDataWithCredential:(FIRAuthCredential *)credential
  1012. completion:(nullable FIRAuthDataResultCallback)completion {
  1013. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  1014. if (self->_providerData[credential.provider]) {
  1015. callInMainThreadWithAuthDataResultAndError(completion,
  1016. nil,
  1017. [FIRAuthErrorUtils providerAlreadyLinkedError]);
  1018. return;
  1019. }
  1020. FIRAuthDataResult *result =
  1021. [[FIRAuthDataResult alloc] initWithUser:self additionalUserInfo:nil];
  1022. if ([credential isKindOfClass:[FIREmailPasswordAuthCredential class]]) {
  1023. if (self->_hasEmailPasswordCredential) {
  1024. callInMainThreadWithAuthDataResultAndError(completion,
  1025. nil,
  1026. [FIRAuthErrorUtils providerAlreadyLinkedError]);
  1027. return;
  1028. }
  1029. FIREmailPasswordAuthCredential *emailPasswordCredential =
  1030. (FIREmailPasswordAuthCredential *)credential;
  1031. if (emailPasswordCredential.password) {
  1032. [self updateEmail:emailPasswordCredential.email
  1033. password:emailPasswordCredential.password
  1034. callback:^(NSError *error) {
  1035. if (error) {
  1036. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1037. } else {
  1038. callInMainThreadWithAuthDataResultAndError(completion, result, nil);
  1039. }
  1040. }];
  1041. } else {
  1042. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1043. NSError *_Nullable error) {
  1044. NSDictionary<NSString *, NSString *> *queryItems = [FIRAuthWebUtils parseURL:emailPasswordCredential.link];
  1045. if (![queryItems count]) {
  1046. NSURLComponents *urlComponents = [NSURLComponents componentsWithString:emailPasswordCredential.link];
  1047. queryItems = [FIRAuthWebUtils parseURL:urlComponents.query];
  1048. }
  1049. NSString *actionCode = queryItems[@"oobCode"];
  1050. FIRAuthRequestConfiguration *requestConfiguration = self.auth.requestConfiguration;
  1051. FIREmailLinkSignInRequest *request =
  1052. [[FIREmailLinkSignInRequest alloc] initWithEmail:emailPasswordCredential.email
  1053. oobCode:actionCode
  1054. requestConfiguration:requestConfiguration];
  1055. request.IDToken = accessToken;
  1056. [FIRAuthBackend emailLinkSignin:request
  1057. callback:^(FIREmailLinkSignInResponse *_Nullable response,
  1058. NSError *_Nullable error) {
  1059. if (error){
  1060. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1061. } else {
  1062. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1063. NSError *_Nullable error) {
  1064. if (error) {
  1065. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1066. return;
  1067. }
  1069. FIRGetAccountInfoRequest *getAccountInfoRequest =
  1070. [[FIRGetAccountInfoRequest alloc] initWithAccessToken:accessToken
  1071. requestConfiguration:requestConfiguration];
  1072. [FIRAuthBackend getAccountInfo:getAccountInfoRequest
  1073. callback:^(FIRGetAccountInfoResponse *_Nullable response,
  1074. NSError *_Nullable error) {
  1075. if (error) {
  1076. [self signOutIfTokenIsInvalidWithError:error];
  1077. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1078. return;
  1079. }
  1080. self.anonymous = NO;
  1081. [self updateWithGetAccountInfoResponse:response];
  1082. if (![self updateKeychain:&error]) {
  1083. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1084. return;
  1085. }
  1086. callInMainThreadWithAuthDataResultAndError(completion, result, nil);
  1087. }];
  1088. }];
  1089. }
  1090. }];
  1091. }];
  1092. }
  1093. return;
  1094. }
  1096. if ([credential isKindOfClass:[FIRGameCenterAuthCredential class]]) {
  1097. FIRGameCenterAuthCredential *gameCenterCredential = (FIRGameCenterAuthCredential *)credential;
  1098. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1099. NSError *_Nullable error) {
  1100. FIRAuthRequestConfiguration *requestConfiguration = self.auth.requestConfiguration;
  1101. FIRSignInWithGameCenterRequest *gameCenterRequest =
  1102. [[FIRSignInWithGameCenterRequest alloc] initWithPlayerID:gameCenterCredential.playerID
  1103. publicKeyURL:gameCenterCredential.publicKeyURL
  1104. signature:gameCenterCredential.signature
  1105. salt:gameCenterCredential.salt
  1106. timestamp:gameCenterCredential.timestamp
  1107. displayName:gameCenterCredential.displayName
  1108. requestConfiguration:requestConfiguration];
  1109. gameCenterRequest.accessToken = accessToken;
  1111. [FIRAuthBackend signInWithGameCenter:gameCenterRequest
  1112. callback:^(FIRSignInWithGameCenterResponse *_Nullable response,
  1113. NSError *_Nullable error) {
  1114. if (error){
  1115. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1116. } else {
  1117. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1118. NSError *_Nullable error) {
  1119. if (error) {
  1120. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1121. return;
  1122. }
  1124. FIRGetAccountInfoRequest *getAccountInfoRequest =
  1125. [[FIRGetAccountInfoRequest alloc] initWithAccessToken:accessToken
  1126. requestConfiguration:requestConfiguration];
  1127. [FIRAuthBackend getAccountInfo:getAccountInfoRequest
  1128. callback:^(FIRGetAccountInfoResponse *_Nullable response,
  1129. NSError *_Nullable error) {
  1130. if (error) {
  1131. [self signOutIfTokenIsInvalidWithError:error];
  1132. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1133. return;
  1134. }
  1135. self.anonymous = NO;
  1136. [self updateWithGetAccountInfoResponse:response];
  1137. if (![self updateKeychain:&error]) {
  1138. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1139. return;
  1140. }
  1141. callInMainThreadWithAuthDataResultAndError(completion, result, nil);
  1142. }];
  1143. }];
  1144. }
  1145. }];
  1146. }];
  1147. return;
  1148. }
  1150. #if TARGET_OS_IOS
  1151. if ([credential isKindOfClass:[FIRPhoneAuthCredential class]]) {
  1152. FIRPhoneAuthCredential *phoneAuthCredential = (FIRPhoneAuthCredential *)credential;
  1153. [self internalUpdateOrLinkPhoneNumberCredential:phoneAuthCredential
  1154. isLinkOperation:YES
  1155. completion:^(NSError *_Nullable error) {
  1156. if (error){
  1157. callInMainThreadWithAuthDataResultAndError(completion, nil, error);
  1158. } else {
  1159. callInMainThreadWithAuthDataResultAndError(completion, result, nil);
  1160. }
  1161. }];
  1162. return;
  1163. }
  1164. #endif
  1166. [self->_taskQueue enqueueTask:^(FIRAuthSerialTaskCompletionBlock _Nonnull complete) {
  1167. CallbackWithAuthDataResultAndError completeWithError =
  1168. ^(FIRAuthDataResult *result, NSError *error) {
  1169. complete();
  1170. callInMainThreadWithAuthDataResultAndError(completion, result, error);
  1171. };
  1172. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1173. NSError *_Nullable error) {
  1174. if (error) {
  1175. completeWithError(nil, error);
  1176. return;
  1177. }
  1178. FIRAuthRequestConfiguration *requestConfiguration = self->_auth.requestConfiguration;
  1179. FIRVerifyAssertionRequest *request =
  1180. [[FIRVerifyAssertionRequest alloc] initWithProviderID:credential.provider
  1181. requestConfiguration:requestConfiguration];
  1182. [credential prepareVerifyAssertionRequest:request];
  1183. request.accessToken = accessToken;
  1184. [FIRAuthBackend verifyAssertion:request
  1185. callback:^(FIRVerifyAssertionResponse *response, NSError *error) {
  1186. if (error) {
  1187. [self signOutIfTokenIsInvalidWithError:error];
  1188. completeWithError(nil, error);
  1189. return;
  1190. }
  1191. FIRAdditionalUserInfo *additionalUserInfo =
  1192. [FIRAdditionalUserInfo userInfoWithVerifyAssertionResponse:response];
  1193. FIROAuthCredential *updatedOAuthCredential =
  1194. [[FIROAuthCredential alloc] initWithVerifyAssertionResponse:response];
  1195. FIRAuthDataResult *result =
  1196. [[FIRAuthDataResult alloc] initWithUser:self
  1197. additionalUserInfo:additionalUserInfo
  1198. credential:updatedOAuthCredential];
  1199. // Update the new token and refresh user info again.
  1200. self->_tokenService = [[FIRSecureTokenService alloc]
  1201. initWithRequestConfiguration:requestConfiguration
  1202. accessToken:response.IDToken
  1203. accessTokenExpirationDate:response.approximateExpirationDate
  1204. refreshToken:response.refreshToken];
  1205. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1206. NSError *_Nullable error) {
  1207. if (error) {
  1208. completeWithError(nil, error);
  1209. return;
  1210. }
  1211. FIRGetAccountInfoRequest *getAccountInfoRequest =
  1212. [[FIRGetAccountInfoRequest alloc] initWithAccessToken:accessToken
  1213. requestConfiguration:requestConfiguration];
  1214. [FIRAuthBackend getAccountInfo:getAccountInfoRequest
  1215. callback:^(FIRGetAccountInfoResponse *_Nullable response,
  1216. NSError *_Nullable error) {
  1217. if (error) {
  1218. [self signOutIfTokenIsInvalidWithError:error];
  1219. completeWithError(nil, error);
  1220. return;
  1221. }
  1222. self.anonymous = NO;
  1223. [self updateWithGetAccountInfoResponse:response];
  1224. if (![self updateKeychain:&error]) {
  1225. completeWithError(nil, error);
  1226. return;
  1227. }
  1228. completeWithError(result, nil);
  1229. }];
  1230. }];
  1231. }];
  1232. }];
  1233. }];
  1234. });
  1235. }
  1237. - (void)unlinkFromProvider:(NSString *)provider
  1238. completion:(nullable FIRAuthResultCallback)completion {
  1239. [_taskQueue enqueueTask:^(FIRAuthSerialTaskCompletionBlock _Nonnull complete) {
  1240. CallbackWithError completeAndCallbackWithError = ^(NSError *error) {
  1241. complete();
  1242. callInMainThreadWithUserAndError(completion, self, error);
  1243. };
  1244. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1245. NSError *_Nullable error) {
  1246. if (error) {
  1247. completeAndCallbackWithError(error);
  1248. return;
  1249. }
  1250. FIRAuthRequestConfiguration *requestConfiguration = self->_auth.requestConfiguration;
  1251. FIRSetAccountInfoRequest *setAccountInfoRequest =
  1252. [[FIRSetAccountInfoRequest alloc] initWithRequestConfiguration:requestConfiguration];
  1253. setAccountInfoRequest.accessToken = accessToken;
  1255. if ([provider isEqualToString:FIREmailAuthProviderID]) {
  1256. if (!self->_hasEmailPasswordCredential) {
  1257. completeAndCallbackWithError([FIRAuthErrorUtils noSuchProviderError]);
  1258. return;
  1259. }
  1260. setAccountInfoRequest.deleteAttributes = @[ FIRSetAccountInfoUserAttributePassword ];
  1261. } else {
  1262. if (!self->_providerData[provider]) {
  1263. completeAndCallbackWithError([FIRAuthErrorUtils noSuchProviderError]);
  1264. return;
  1265. }
  1266. setAccountInfoRequest.deleteProviders = @[ provider ];
  1267. }
  1269. [FIRAuthBackend setAccountInfo:setAccountInfoRequest
  1270. callback:^(FIRSetAccountInfoResponse *_Nullable response,
  1271. NSError *_Nullable error) {
  1272. if (error) {
  1273. [self signOutIfTokenIsInvalidWithError:error];
  1274. completeAndCallbackWithError(error);
  1275. return;
  1276. }
  1278. // We can't just use the provider info objects in FIRSetAccountInfoResponse because they
  1279. // don't have localID and email fields. Remove the specific provider manually.
  1280. NSMutableDictionary *mutableProviderData = [self->_providerData mutableCopy];
  1281. [mutableProviderData removeObjectForKey:provider];
  1282. self->_providerData = [mutableProviderData copy];
  1284. if ([provider isEqualToString:FIREmailAuthProviderID]) {
  1285. self->_hasEmailPasswordCredential = NO;
  1286. }
  1287. #if TARGET_OS_IOS
  1288. // After successfully unlinking a phone auth provider, remove the phone number from the
  1289. // cached user info.
  1290. if ([provider isEqualToString:FIRPhoneAuthProviderID]) {
  1291. self->_phoneNumber = nil;
  1292. }
  1293. #endif
  1295. if (response.IDToken && response.refreshToken) {
  1296. FIRSecureTokenService *tokenService = [[FIRSecureTokenService alloc]
  1297. initWithRequestConfiguration:requestConfiguration
  1298. accessToken:response.IDToken
  1299. accessTokenExpirationDate:response.approximateExpirationDate
  1300. refreshToken:response.refreshToken];
  1301. [self setTokenService:tokenService callback:^(NSError *_Nullable error) {
  1302. completeAndCallbackWithError(error);
  1303. }];
  1304. return;
  1305. }
  1306. if (![self updateKeychain:&error]) {
  1307. completeAndCallbackWithError(error);
  1308. return;
  1309. }
  1310. completeAndCallbackWithError(nil);
  1311. }];
  1312. }];
  1313. }];
  1314. }
  1316. - (void)sendEmailVerificationWithCompletion:(nullable FIRSendEmailVerificationCallback)completion {
  1317. [self sendEmailVerificationWithNullableActionCodeSettings:nil completion:completion];
  1318. }
  1320. - (void)sendEmailVerificationWithActionCodeSettings:(FIRActionCodeSettings *)actionCodeSettings
  1321. completion:(nullable FIRSendEmailVerificationCallback)
  1322. completion {
  1323. [self sendEmailVerificationWithNullableActionCodeSettings:actionCodeSettings
  1324. completion:completion];
  1325. }
  1327. /** @fn sendEmailVerificationWithNullableActionCodeSettings:completion:
  1328. @brief Initiates email verification for the user.
  1330. @param actionCodeSettings Optionally, a @c FIRActionCodeSettings object containing settings
  1331. related to the handling action codes.
  1332. */
  1333. - (void)sendEmailVerificationWithNullableActionCodeSettings:(nullable FIRActionCodeSettings *)
  1334. actionCodeSettings
  1335. completion:
  1336. (nullable FIRSendEmailVerificationCallback)
  1337. completion {
  1338. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  1339. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1340. NSError *_Nullable error) {
  1341. if (error) {
  1342. callInMainThreadWithError(completion, error);
  1343. return;
  1344. }
  1345. FIRAuthRequestConfiguration *configuration = self->_auth.requestConfiguration;
  1346. FIRGetOOBConfirmationCodeRequest *request =
  1347. [FIRGetOOBConfirmationCodeRequest verifyEmailRequestWithAccessToken:accessToken
  1348. actionCodeSettings:actionCodeSettings
  1349. requestConfiguration:configuration];
  1350. [FIRAuthBackend getOOBConfirmationCode:request
  1351. callback:^(FIRGetOOBConfirmationCodeResponse *_Nullable
  1352. response,
  1353. NSError *_Nullable error) {
  1354. [self signOutIfTokenIsInvalidWithError:error];
  1355. callInMainThreadWithError(completion, error);
  1356. }];
  1357. }];
  1358. });
  1359. }
  1361. - (void)deleteWithCompletion:(nullable FIRUserProfileChangeCallback)completion {
  1362. dispatch_async(FIRAuthGlobalWorkQueue(), ^{
  1363. [self internalGetTokenWithCallback:^(NSString *_Nullable accessToken,
  1364. NSError *_Nullable error) {
  1365. if (error) {
  1366. callInMainThreadWithError(completion, error);
  1367. return;
  1368. }
  1369. FIRDeleteAccountRequest *deleteUserRequest =
  1370. [[FIRDeleteAccountRequest alloc] initWitLocalID:self->_userID
  1371. accessToken:accessToken
  1372. requestConfiguration:self->_auth.requestConfiguration];
  1373. [FIRAuthBackend deleteAccount:deleteUserRequest callback:^(NSError *_Nullable error) {
  1374. if (error) {
  1375. callInMainThreadWithError(completion, error);
  1376. return;
  1377. }
  1378. if (![self->_auth signOutByForceWithUserID:self->_userID error:&error]) {
  1379. callInMainThreadWithError(completion, error);
  1380. return;
  1381. }
  1382. callInMainThreadWithError(completion, error);
  1383. }];
  1384. }];
  1385. });
  1386. }
  1388. /** @fn signOutIfTokenIsInvalidWithError:
  1389. @brief Signs out this user if the user or the token is invalid.
  1390. @param error The error from the server.
  1391. */
  1392. - (void)signOutIfTokenIsInvalidWithError:(nullable NSError *)error {
  1393. NSInteger errorCode = error.code;
  1394. if (errorCode == FIRAuthErrorCodeUserNotFound ||
  1395. errorCode == FIRAuthErrorCodeUserDisabled ||
  1396. errorCode == FIRAuthErrorCodeInvalidUserToken ||
  1397. errorCode == FIRAuthErrorCodeUserTokenExpired) {
  1398. FIRLogNotice(kFIRLoggerAuth, @"I-AUT000016",
  1399. @"Invalid user token detected, user is automatically signed out.");
  1400. [_auth signOutByForceWithUserID:_userID error:NULL];
  1401. }
  1402. }
  1404. @end
  1406. @implementation FIRUserProfileChangeRequest {
  1407. /** @var _user
  1408. @brief The user associated with the change request.
  1409. */
  1410. FIRUser *_user;
  1412. /** @var _displayName
  1413. @brief The display name value to set if @c _displayNameSet is YES.
  1414. */
  1415. NSString *_displayName;
  1417. /** @var _displayNameSet
  1418. @brief Indicates the display name should be part of the change request.
  1419. */
  1420. BOOL _displayNameSet;
  1422. /** @var _photoURL
  1423. @brief The photo URL value to set if @c _displayNameSet is YES.
  1424. */
  1425. NSURL *_photoURL;
  1427. /** @var _photoURLSet
  1428. @brief Indicates the photo URL should be part of the change request.
  1429. */
  1430. BOOL _photoURLSet;
  1432. /** @var _consumed
  1433. @brief Indicates the @c commitChangesWithCallback: method has already been invoked.
  1434. */
  1435. BOOL _consumed;
  1436. }
  1438. - (nullable instancetype)initWithUser:(FIRUser *)user {
  1439. self = [super init];
  1440. if (self) {
  1441. _user = user;
  1442. }
  1443. return self;
  1444. }
  1446. - (nullable NSString *)displayName {
  1447. return _displayName;
  1448. }
  1450. - (void)setDisplayName:(nullable NSString *)displayName {
  1451. dispatch_sync(FIRAuthGlobalWorkQueue(), ^{
  1452. if (self->_consumed) {
  1453. [NSException raise:NSInternalInconsistencyException
  1454. format:@"%@",
  1455. @"Invalid call to setDisplayName: after commitChangesWithCallback:."];
  1456. return;
  1457. }
  1458. self->_displayNameSet = YES;
  1459. self->_displayName = [displayName copy];
  1460. });
  1461. }
  1463. - (nullable NSURL *)photoURL {
  1464. return _photoURL;
  1465. }
  1467. - (void)setPhotoURL:(nullable NSURL *)photoURL {
  1468. dispatch_sync(FIRAuthGlobalWorkQueue(), ^{
  1469. if (self->_consumed) {
  1470. [NSException raise:NSInternalInconsistencyException
  1471. format:@"%@",
  1472. @"Invalid call to setPhotoURL: after commitChangesWithCallback:."];
  1473. return;
  1474. }
  1475. self->_photoURLSet = YES;
  1476. self->_photoURL = [photoURL copy];
  1477. });
  1478. }
  1480. /** @fn hasUpdates
  1481. @brief Indicates at least one field has a value which needs to be committed.
  1482. */
  1483. - (BOOL)hasUpdates {
  1484. return _displayNameSet || _photoURLSet;
  1485. }
  1487. - (void)commitChangesWithCompletion:(nullable FIRUserProfileChangeCallback)completion {
  1488. dispatch_sync(FIRAuthGlobalWorkQueue(), ^{
  1489. if (self->_consumed) {
  1490. [NSException raise:NSInternalInconsistencyException
  1491. format:@"%@",
  1492. @"commitChangesWithCallback: should only be called once."];
  1493. return;
  1494. }
  1495. self->_consumed = YES;
  1496. // Return fast if there is nothing to update:
  1497. if (![self hasUpdates]) {
  1498. callInMainThreadWithError(completion, nil);
  1499. return;
  1500. }
  1501. NSString *displayName = [self->_displayName copy];
  1502. BOOL displayNameWasSet = self->_displayNameSet;
  1503. NSURL *photoURL = [self->_photoURL copy];
  1504. BOOL photoURLWasSet = self->_photoURLSet;
  1505. [self->_user executeUserUpdateWithChanges:^(FIRGetAccountInfoResponseUser *user,
  1506. FIRSetAccountInfoRequest *request) {
  1507. if (photoURLWasSet) {
  1508. request.photoURL = photoURL;
  1509. }
  1510. if (displayNameWasSet) {
  1511. request.displayName = displayName;
  1512. }
  1513. }
  1514. callback:^(NSError *_Nullable error) {
  1515. if (error) {
  1516. callInMainThreadWithError(completion, error);
  1517. return;
  1518. }
  1519. if (displayNameWasSet) {
  1520. [self->_user setDisplayName:displayName];
  1521. }
  1522. if (photoURLWasSet) {
  1523. [self->_user setPhotoURL:photoURL];
  1524. }
  1525. if (![self->_user updateKeychain:&error]) {
  1526. callInMainThreadWithError(completion, error);
  1527. return;
  1528. }
  1529. callInMainThreadWithError(completion, nil);
  1530. }];
  1531. });
  1532. }
  1534. @end
  1536. NS_ASSUME_NONNULL_END