Marle
/
iOS
Watch 1
Star 1
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
7 Commits
2 Branches
Tree: 5cb2db297c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5cb2db297c'
${ noResults }
iOS/Pods/FirebaseAuth/Firebase/Auth/Source/AuthProviders/OAuth/FIROAuthProvider.m

FIROAuthProvider.m 14KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359 
  1. /*

  2.  * Copyright 2017 Google

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *      http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #include <CommonCrypto/CommonCrypto.h>

  18. #import "FIROAuthProvider.h"

  19. 

  20. #import "FIRApp.h"

  21. #import "FIRAuthBackend.h"

  22. #import "FIRAuth_Internal.h"

  23. #import "FIRAuthErrorUtils.h"

  24. #import "FIRAuthGlobalWorkQueue.h"

  25. #import "FIRAuthRequestConfiguration.h"

  26. #import "FIRAuthWebUtils.h"

  27. #import "FIROAuthCredential_Internal.h"

  28. #import "FIROAuthCredential.h"

  29. #import "FIROptions.h"

  30. 

  31. #if TARGET_OS_IOS

  32. #import "FIRAuthURLPresenter.h"

  33. #endif

  34. 

  35. NS_ASSUME_NONNULL_BEGIN

  36. 

  37. /** @typedef FIRHeadfulLiteURLCallBack

  38.     @brief The callback invoked at the end of the flow to fetch a headful-lite URL.

  39.     @param headfulLiteURL The headful lite URL.

  40.     @param error The error that occured while fetching the headful-lite, if any.

  41.  */

  42. typedef void (^FIRHeadfulLiteURLCallBack)(NSURL *_Nullable headfulLiteURL,

  43.                NSError *_Nullable error);

  44. 

  45. /** @var kHeadfulLiteURLStringFormat

  46.     @brief The format of the URL used to open the headful lite page during sign-in.

  47.  */

  48. NSString *const kHeadfulLiteURLStringFormat = @"https://%@/__/auth/handler?%@";

  49. 

  50. /** @var kauthTypeSignInWithRedirect

  51.     @brief The auth type to be specified in the sign-in request with redirect request and response.

  52.  */

  53. static NSString *const kAuthTypeSignInWithRedirect = @"signInWithRedirect";

  54. 

  55. @implementation FIROAuthProvider {

  56.   /** @var _auth

  57.       @brief The auth instance used for launching the URL presenter.

  58.    */

  59.   FIRAuth *_auth;

  60. 

  61.   /** @var _callbackScheme

  62.       @brief The callback URL scheme used for headful-lite sign-in.

  63.    */

  64.   NSString *_callbackScheme;

  65. }

  66. 

  67. + (FIROAuthCredential *)credentialWithProviderID:(NSString *)providerID

  68.                                         IDToken:(NSString *)IDToken

  69.                                     accessToken:(nullable NSString *)accessToken

  70.                                    pendingToken:(nullable NSString *)pendingToken {

  71.   return [[FIROAuthCredential alloc] initWithProviderID:providerID

  72.                                                 IDToken:IDToken

  73.                                             accessToken:accessToken

  74.                                            pendingToken:pendingToken];

  75. }

  76. 

  77. + (FIROAuthCredential *)credentialWithProviderID:(NSString *)providerID

  78.                                         IDToken:(NSString *)IDToken

  79.                                     accessToken:(nullable NSString *)accessToken {

  80.   return [[FIROAuthCredential alloc] initWithProviderID:providerID

  81.                                                 IDToken:IDToken

  82.                                             accessToken:accessToken

  83.                                            pendingToken:nil];

  84. }

  85. 

  86. + (FIROAuthCredential *)credentialWithProviderID:(NSString *)providerID

  87.                                      accessToken:(NSString *)accessToken {

  88.   return [[FIROAuthCredential alloc] initWithProviderID:providerID

  89.                                                 IDToken:nil

  90.                                             accessToken:accessToken

  91.                                            pendingToken:nil];

  92. }

  93. 

  94. + (instancetype)providerWithProviderID:(NSString *)providerID {

  95.   return [[self alloc]initWithProviderID:providerID auth:[FIRAuth auth]];

  96. }

  97. 

  98. + (instancetype)providerWithProviderID:(NSString *)providerID auth:(FIRAuth *)auth {

  99.   return [[self alloc] initWithProviderID:providerID auth:auth];

  100. }

  101. 

  102. #if TARGET_OS_IOS

  103. - (void)getCredentialWithUIDelegate:(nullable id<FIRAuthUIDelegate>)UIDelegate

  104.                          completion:(nullable FIRAuthCredentialCallback)completion {

  105.   if (![FIRAuthWebUtils isCallbackSchemeRegisteredForCustomURLScheme:self->_callbackScheme]) {

  106.     [NSException raise:NSInternalInconsistencyException

  107.                 format:@"Please register custom URL scheme '%@' in the app's Info.plist file.",

  108.                        self->_callbackScheme];

  109.   }

  110.   __weak __typeof__(self) weakSelf = self;

  111.   __weak FIRAuth *weakAuth = _auth;

  112.   __weak NSString *weakProviderID = _providerID;

  113.   dispatch_async(FIRAuthGlobalWorkQueue(), ^{

  114.     FIRAuthCredentialCallback callbackOnMainThread = ^(FIRAuthCredential *_Nullable credential,

  115.                                                        NSError *_Nullable error) {

  116.       if (completion) {

  117.         dispatch_async(dispatch_get_main_queue(), ^{

  118.           completion(credential, error);

  119.         });

  120.       }

  121.     };

  122.     NSString *eventID = [FIRAuthWebUtils randomStringWithLength:10];

  123.     NSString *sessionID = [FIRAuthWebUtils randomStringWithLength:10];

  124.     __strong __typeof__(self) strongSelf = weakSelf;

  125.     [strongSelf getHeadFulLiteURLWithEventID:eventID

  126.                              sessionID:sessionID

  127.                             completion:^(NSURL *_Nullable headfulLiteURL,

  128.                                          NSError *_Nullable error) {

  129.       if (error) {

  130.         callbackOnMainThread(nil, error);

  131.         return;

  132.       }

  133.       FIRAuthURLCallbackMatcher callbackMatcher = ^BOOL(NSURL *_Nullable callbackURL) {

  134.         return [FIRAuthWebUtils isExpectedCallbackURL:callbackURL

  135.                                               eventID:eventID

  136.                                              authType:kAuthTypeSignInWithRedirect

  137.                                        callbackScheme:strongSelf->_callbackScheme];

  138.       };

  139.       __strong FIRAuth *strongAuth = weakAuth;

  140.       [strongAuth.authURLPresenter presentURL:headfulLiteURL

  141.                                    UIDelegate:UIDelegate

  142.                               callbackMatcher:callbackMatcher

  143.                                    completion:^(NSURL *_Nullable callbackURL,

  144.                                                 NSError *_Nullable error) {

  145.         if (error) {

  146.           callbackOnMainThread(nil, error);

  147.           return;

  148.         }

  149.         NSString *OAuthResponseURLString =

  150.             [strongSelf OAuthResponseForURL:callbackURL error:&error];

  151.         if (error) {

  152.           callbackOnMainThread(nil, error);

  153.           return;

  154.         }

  155.         __strong NSString *strongProviderID = weakProviderID;

  156.         FIROAuthCredential *credential =

  157.             [[FIROAuthCredential alloc] initWithProviderID:strongProviderID

  158.                                                  sessionID:sessionID

  159.                                     OAuthResponseURLString:OAuthResponseURLString];

  160.         callbackOnMainThread(credential, nil);

  161.       }];

  162.     }];

  163.   });

  164. }

  165. #endif  // TARGET_OS_IOS

  166. 

  167. #pragma mark - Internal Methods

  168. 

  169. /** @fn initWithProviderID:auth:

  170.     @brief returns an instance of @c FIROAuthProvider assocaited with the provided auth instance.

  171.     @param auth The Auth instance to be associated with the OAuthProvider instance.

  172.     @return An Instance of @c FIROAuthProvider.

  173.   */

  174. - (nullable instancetype)initWithProviderID:(NSString *)providerID auth:(FIRAuth *)auth {

  175.   self = [super init];

  176.   if (self) {

  177.     _auth = auth;

  178.     _providerID = providerID;

  179.     _callbackScheme = [[[_auth.app.options.clientID componentsSeparatedByString:@"."]

  180.         reverseObjectEnumerator].allObjects componentsJoinedByString:@"."];

  181.   }

  182.   return self;

  183. }

  184. 

  185. /** @fn OAuthResponseForURL:error:

  186.     @brief Parses the redirected URL and returns a string representation of the OAuth response URL.

  187.     @param URL The url to be parsed for an OAuth response URL.

  188.     @param error The error that occurred if any.

  189.     @return The OAuth response if successful.

  190.  */

  191. - (nullable NSString *)OAuthResponseForURL:(NSURL *)URL error:(NSError *_Nullable *_Nullable)error {

  192.   NSDictionary<NSString *, NSString *> *URLQueryItems =

  193.       [FIRAuthWebUtils dictionaryWithHttpArgumentsString:URL.query];

  194.   NSURL *deepLinkURL = [NSURL URLWithString:URLQueryItems[@"deep_link_id"]];

  195.   URLQueryItems =

  196.       [FIRAuthWebUtils dictionaryWithHttpArgumentsString:deepLinkURL.query];

  197.   NSString *queryItemLink = URLQueryItems[@"link"];

  198.   if (queryItemLink) {

  199.     return queryItemLink;

  200.   }

  201.   if (!error) {

  202.     return nil;

  203.   }

  204.   NSData *errorData = [URLQueryItems[@"firebaseError"] dataUsingEncoding:NSUTF8StringEncoding];

  205.   NSError *jsonError;

  206.   NSDictionary *errorDict = [NSJSONSerialization JSONObjectWithData:errorData

  207.                                                             options:0

  208.                                                               error:&jsonError];

  209.   if (jsonError) {

  210.     *error = [FIRAuthErrorUtils JSONSerializationErrorWithUnderlyingError:jsonError];

  211.     return nil;

  212.   }

  213.   *error = [FIRAuthErrorUtils URLResponseErrorWithCode:errorDict[@"code"]

  214.                                                message:errorDict[@"message"]];

  215.   if (!*error) {

  216.     NSString *reason;

  217.     if(errorDict[@"code"] && errorDict[@"message"]) {

  218.       reason = [NSString stringWithFormat:@"[%@] - %@",errorDict[@"code"], errorDict[@"message"]];

  219.     }

  220.     *error = [FIRAuthErrorUtils webSignInUserInteractionFailureWithReason:reason];

  221.   }

  222.   return nil;

  223. }

  224. 

  225. /** @fn getHeadFulLiteURLWithEventID:completion:

  226.     @brief Constructs a URL used for opening a headful-lite flow using a given event

  227.         ID and session ID.

  228.     @param eventID The event ID used for this purpose.

  229.     @param sessionID The session ID used when completing the headful lite flow.

  230.     @param completion The callback invoked after the URL has been constructed or an error

  231.         has been encountered.

  232.  */

  233. - (void)getHeadFulLiteURLWithEventID:(NSString *)eventID

  234.                            sessionID:(NSString *)sessionID

  235.                           completion:(FIRHeadfulLiteURLCallBack)completion {

  236.    __weak __typeof__(self) weakSelf = self;

  237.   [FIRAuthWebUtils fetchAuthDomainWithRequestConfiguration:_auth.requestConfiguration

  238.                                                 completion:^(NSString *_Nullable authDomain,

  239.                                                              NSError *_Nullable error) {

  240.     if (error) {

  241.       if (completion) {

  242.         completion(nil, error);

  243.       }

  244.       return;

  245.     }

  246.      __strong __typeof__(self) strongSelf = weakSelf;

  247.     NSString *bundleID = [NSBundle mainBundle].bundleIdentifier;

  248.     NSString *clienID = strongSelf->_auth.app.options.clientID;

  249.     NSString *apiKey = strongSelf->_auth.requestConfiguration.APIKey;

  250.     NSMutableDictionary *urlArguments = [@{

  251.       @"apiKey" : apiKey,

  252.       @"authType" : @"signInWithRedirect",

  253.       @"ibi" : bundleID ?: @"",

  254.       @"clientId" : clienID,

  255.       @"sessionId" : [strongSelf hashforString:sessionID],

  256.       @"v" : [FIRAuthBackend authUserAgent],

  257.       @"eventId" : eventID,

  258.       @"providerId" : strongSelf->_providerID,

  259.     } mutableCopy];

  260.     if (strongSelf.scopes.count) {

  261.       urlArguments[@"scopes"] = [strongSelf.scopes componentsJoinedByString:@","];

  262.     }

  263.     if (strongSelf.customParameters.count) {

  264.       NSString *customParameters = [strongSelf customParametersStringWithError:&error];

  265.       if (error) {

  266.         completion(nil, error);

  267.         return;

  268.       }

  269.       if (customParameters) {

  270.         urlArguments[@"customParameters"] = customParameters;

  271.       }

  272.     }

  273.     if (strongSelf->_auth.requestConfiguration.languageCode) {

  274.       urlArguments[@"hl"] = strongSelf->_auth.requestConfiguration.languageCode;

  275.     }

  276.     NSString *argumentsString = [strongSelf httpArgumentsStringForArgsDictionary:urlArguments];

  277.     NSString *URLString =

  278.         [NSString stringWithFormat:kHeadfulLiteURLStringFormat, authDomain, argumentsString];

  279.     if (completion) {

  280.       NSCharacterSet *set = [NSCharacterSet URLFragmentAllowedCharacterSet];

  281.       completion([NSURL URLWithString:

  282.           [URLString stringByAddingPercentEncodingWithAllowedCharacters:set]], nil);

  283.     }

  284.   }];

  285. }

  286. 

  287. /** @fn customParametersString

  288.     @brief Returns a JSON string representation of the custom parameters dictionary corresponding

  289.         to the OAuthProvider.

  290.     @return The JSON string representation of the custom parameters dictionary corresponding

  291.         to the OAuthProvider.

  292.  */

  293. - (nullable NSString *)customParametersStringWithError:(NSError *_Nullable *_Nullable)error {

  294.   if (!_customParameters.count) {

  295.     return nil;

  296.   }

  297. 

  298.   if (!error) {

  299.     return nil;

  300.   }

  301.   NSError *jsonError;

  302.   NSData *customParametersJSONData =

  303.       [NSJSONSerialization dataWithJSONObject:_customParameters

  304.                                       options:0

  305.                                         error:&jsonError];

  306.   if (jsonError) {

  307.     *error = [FIRAuthErrorUtils JSONSerializationErrorWithUnderlyingError:jsonError];

  308.     return nil;

  309.   }

  310. 

  311.   NSString *customParamsRawJSON =

  312.       [[NSString alloc] initWithData:customParametersJSONData encoding:NSUTF8StringEncoding];

  313.   return customParamsRawJSON;

  314. }

  315. 

  316. /** @fn hashforString:

  317.     @brief Returns the SHA256 hash representaion of a given string object.

  318.     @param string The string for which a SHA256 hash is desired.

  319.     @return An hexadecimal string representation of the SHA256 hash.

  320.  */

  321. - (NSString *)hashforString:(NSString *)string {

  322.   NSData *sessionIDData = [string dataUsingEncoding:NSUTF8StringEncoding];

  323.   NSMutableData *hashOutputData = [NSMutableData dataWithLength:CC_SHA256_DIGEST_LENGTH];

  324.   if (CC_SHA256(sessionIDData.bytes,

  325.       (CC_LONG)[sessionIDData length],

  326.       hashOutputData.mutableBytes)) {

  327.   }

  328.   return [self hexStringFromData:hashOutputData];;

  329. }

  330. 

  331. /** @fn hexStringFromData:

  332.     @brief Returns the hexadecimal string representation of an NSData object.

  333.     @param data The NSData object for which a hexadecical string is desired.

  334.     @return The hexadecimal string representation of the supplied NSData object.

  335.  */

  336. - (NSString *)hexStringFromData:(NSData *)data {

  337.   const unsigned char *dataBuffer = (const unsigned char *)[data bytes];

  338.   NSMutableString *string = [[NSMutableString alloc] init];

  339.   for (unsigned int i = 0; i < data.length; i++){

  340.     [string appendFormat:@"%02lx", (unsigned long)dataBuffer[i]];

  341.   }

  342.   return [string copy];

  343. }

  344. 

  345. - (NSString *)httpArgumentsStringForArgsDictionary:(NSDictionary *)argsDictionary {

  346.   NSMutableArray* arguments = [NSMutableArray arrayWithCapacity:argsDictionary.count];

  347.   NSString* key;

  348.   for (key in argsDictionary) {

  349.     NSString *description = [argsDictionary[key] description];

  350.     [arguments addObject:[NSString stringWithFormat:@"%@=%@",

  351.                           [FIRAuthWebUtils stringByUnescapingFromURLArgument:key],

  352.                           [FIRAuthWebUtils stringByUnescapingFromURLArgument:description]]] ;

  353.   }

  354.   return [arguments componentsJoinedByString:@"&"];

  355. }

  356. 

  357. @end

  358. 

  359. NS_ASSUME_NONNULL_END