123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178 |
- /*
- * Copyright 2017 Google
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- */
-
- #import "FIRVerifyAssertionRequest.h"
-
- NS_ASSUME_NONNULL_BEGIN
-
- /** @var kVerifyAssertionEndpoint
- @brief The "verifyAssertion" endpoint.
- */
- static NSString *const kVerifyAssertionEndpoint = @"verifyAssertion";
-
- /** @var kProviderIDKey
- @brief The key for the "providerId" value in the request.
- */
- static NSString *const kProviderIDKey = @"providerId";
-
- /** @var kProviderIDTokenKey
- @brief The key for the "id_token" value in the request.
- */
- static NSString *const kProviderIDTokenKey = @"id_token";
-
- /** @var kProviderNonceKey
- @brief The key for the "nonce" value in the request.
- */
- static NSString *const kProviderNonceKey = @"nonce";
-
- /** @var kProviderAccessTokenKey
- @brief The key for the "access_token" value in the request.
- */
- static NSString *const kProviderAccessTokenKey = @"access_token";
-
- /** @var kProviderOAuthTokenSecretKey
- @brief The key for the "oauth_token_secret" value in the request.
- */
- static NSString *const kProviderOAuthTokenSecretKey = @"oauth_token_secret";
-
- /** @var kIdentifierKey
- @brief The key for the "identifier" value in the request.
- */
- static NSString *const kIdentifierKey = @"identifier";
-
- /** @var kRequestURIKey
- @brief The key for the "requestUri" value in the request.
- */
- static NSString *const kRequestURIKey = @"requestUri";
-
- /** @var kPostBodyKey
- @brief The key for the "postBody" value in the request.
- */
- static NSString *const kPostBodyKey = @"postBody";
-
- /** @var kPendingTokenKey
- @brief The key for the "pendingToken" value in the request.
- */
- static NSString *const kPendingTokenKey = @"pendingToken";
-
- /** @var kAutoCreateKey
- @brief The key for the "autoCreate" value in the request.
- */
- static NSString *const kAutoCreateKey = @"autoCreate";
-
- /** @var kIDTokenKey
- @brief The key for the "idToken" value in the request. This is actually the STS Access Token,
- despite it's confusing (backwards compatiable) parameter name.
- */
- static NSString *const kIDTokenKey = @"idToken";
-
- /** @var kReturnSecureTokenKey
- @brief The key for the "returnSecureToken" value in the request.
- */
- static NSString *const kReturnSecureTokenKey = @"returnSecureToken";
-
- /** @var kReturnIDPCredentialKey
- @brief The key for the "returnIdpCredential" value in the request.
- */
- static NSString *const kReturnIDPCredentialKey = @"returnIdpCredential";
-
- /** @var kSessionIDKey
- @brief The key for the "sessionID" value in the request.
- */
- static NSString *const kSessionIDKey = @"sessionId";
-
- @implementation FIRVerifyAssertionRequest
-
- - (nullable instancetype)initWithProviderID:(NSString *)providerID
- requestConfiguration:(FIRAuthRequestConfiguration *)requestConfiguration {
- self = [super initWithEndpoint:kVerifyAssertionEndpoint
- requestConfiguration:requestConfiguration];
- if (self) {
- _providerID = providerID;
- _returnSecureToken = YES;
- _autoCreate = YES;
- _returnIDPCredential = YES;
- }
- return self;
- }
-
- - (nullable id)unencodedHTTPRequestBodyWithError:(NSError *_Nullable *_Nullable)error {
- NSURLComponents *components = [[NSURLComponents alloc] init];
- NSMutableArray<NSURLQueryItem *> *queryItems = [@[[NSURLQueryItem queryItemWithName:kProviderIDKey
- value:_providerID]]
- mutableCopy];
-
- if (_providerIDToken) {
- [queryItems addObject:[NSURLQueryItem queryItemWithName:kProviderIDTokenKey
- value:_providerIDToken]];
- }
-
- if (_providerRawNonce) {
- [queryItems addObject:[NSURLQueryItem queryItemWithName:kProviderNonceKey
- value:_providerRawNonce]];
- }
-
- if (_providerAccessToken) {
- [queryItems addObject:[NSURLQueryItem queryItemWithName:kProviderAccessTokenKey
- value:_providerAccessToken]];
- }
-
- if (!_providerIDToken && !_providerAccessToken && !_pendingToken && !_requestURI) {
- [NSException raise:NSInvalidArgumentException
- format:@"One of IDToken, accessToken, pendingToken, or requestURI must be supplied."];
- }
-
- if (_providerOAuthTokenSecret) {
- [queryItems addObject:[NSURLQueryItem queryItemWithName:kProviderOAuthTokenSecretKey
- value:_providerOAuthTokenSecret]];
- }
-
- if (_inputEmail) {
- [queryItems addObject:[NSURLQueryItem queryItemWithName:kIdentifierKey
- value:_inputEmail]];
- }
- [components setQueryItems:queryItems];
- NSMutableDictionary *body = [@{
- kRequestURIKey : _requestURI ?: @"http://localhost", // Unused by server, but required
- kPostBodyKey : [components query]
- } mutableCopy];
-
- if (_pendingToken) {
- body[kPendingTokenKey] = _pendingToken;
- }
- if (_accessToken) {
- body[kIDTokenKey] = _accessToken;
- }
- if (_returnSecureToken) {
- body[kReturnSecureTokenKey] = @YES;
- }
-
- if (_returnIDPCredential) {
- body[kReturnIDPCredentialKey] = @YES;
- }
-
- if (_sessionID) {
- body[kSessionIDKey] = _sessionID;
- }
-
- body[kAutoCreateKey] = @(_autoCreate);
-
- return body;
- }
-
- @end
-
- NS_ASSUME_NONNULL_END
|