Marle
/
iOS
Watch 1
Star 1
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
7 Commits
2 Branches
Tree: 5cb2db297c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5cb2db297c'
${ noResults }
iOS/Pods/FirebaseAuth/Firebase/Auth/Source/AuthProviders/Phone/FIRPhoneAuthProvider.m

FIRPhoneAuthProvider.m 19KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429 
  1. /*

  2.  * Copyright 2017 Google

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *      http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #import "FIRPhoneAuthProvider.h"

  18. 

  19. #import <FirebaseCore/FIRLogger.h>

  20. #import "FIRPhoneAuthCredential_Internal.h"

  21. #import <FirebaseCore/FIRApp.h>

  22. #import "FIRAuthAPNSToken.h"

  23. #import "FIRAuthAPNSTokenManager.h"

  24. #import "FIRAuthAppCredential.h"

  25. #import "FIRAuthAppCredentialManager.h"

  26. #import "FIRAuthGlobalWorkQueue.h"

  27. #import "FIRAuth_Internal.h"

  28. #import "FIRAuthURLPresenter.h"

  29. #import "FIRAuthNotificationManager.h"

  30. #import "FIRAuthErrorUtils.h"

  31. #import "FIRAuthBackend.h"

  32. #import "FIRAuthSettings.h"

  33. #import "FIRAuthWebUtils.h"

  34. #import "FirebaseAuthVersion.h"

  35. #import <FirebaseCore/FIROptions.h>

  36. #import "FIRGetProjectConfigRequest.h"

  37. #import "FIRGetProjectConfigResponse.h"

  38. #import "FIRSendVerificationCodeRequest.h"

  39. #import "FIRSendVerificationCodeResponse.h"

  40. #import "FIRVerifyClientRequest.h"

  41. #import "FIRVerifyClientResponse.h"

  42. 

  43. NS_ASSUME_NONNULL_BEGIN

  44. 

  45. /** @typedef FIRReCAPTCHAURLCallBack

  46.     @brief The callback invoked at the end of the flow to fetch a reCAPTCHA URL.

  47.     @param reCAPTCHAURL The reCAPTCHA URL.

  48.     @param error The error that occurred while fetching the reCAPTCHAURL, if any.

  49.  */

  50. typedef void (^FIRReCAPTCHAURLCallBack)(NSURL *_Nullable reCAPTCHAURL, NSError *_Nullable error);

  51. 

  52. /** @typedef FIRVerifyClientCallback

  53.     @brief The callback invoked at the end of a client verification flow.

  54.     @param appCredential credential that proves the identity of the app during a phone

  55.         authentication flow.

  56.     @param error The error that occurred while verifying the app, if any.

  57.  */

  58. typedef void (^FIRVerifyClientCallback)(FIRAuthAppCredential *_Nullable appCredential,

  59.                                         NSError *_Nullable error);

  60. 

  61. /** @typedef FIRFetchAuthDomainCallback

  62.     @brief The callback invoked at the end of the flow to fetch the Auth domain.

  63.     @param authDomain The Auth domain.

  64.     @param error The error that occurred while fetching the auth domain, if any.

  65.  */

  66. typedef void (^FIRFetchAuthDomainCallback)(NSString *_Nullable authDomain,

  67.                                            NSError *_Nullable error);

  68. /** @var kAuthDomainSuffix

  69.     @brief The suffix of the auth domain pertiaining to a given Firebase project.

  70.  */

  71. static NSString *const kAuthDomainSuffix = @"firebaseapp.com";

  72. 

  73. /** @var kauthTypeVerifyApp

  74.     @brief The auth type to be specified in the app verification request.

  75.  */

  76. static NSString *const kAuthTypeVerifyApp = @"verifyApp";

  77. 

  78. /** @var kReCAPTCHAURLStringFormat

  79.     @brief The format of the URL used to open the reCAPTCHA page during app verification.

  80.  */

  81. NSString *const kReCAPTCHAURLStringFormat = @"https://%@/__/auth/handler?";

  82. 

  83. @implementation FIRPhoneAuthProvider {

  84. 

  85.   /** @var _auth

  86.       @brief The auth instance used for verifying the phone number.

  87.    */

  88.   FIRAuth *_auth;

  89. 

  90.   /** @var _callbackScheme

  91.       @brief The callback URL scheme used for reCAPTCHA fallback.

  92.    */

  93.   NSString *_callbackScheme;

  94. }

  95. 

  96. /** @fn initWithAuth:

  97.     @brief returns an instance of @c FIRPhoneAuthProvider associated with the provided auth

  98.           instance.

  99.     @return An Instance of @c FIRPhoneAuthProvider.

  100.    */

  101. - (nullable instancetype)initWithAuth:(FIRAuth *)auth {

  102.   self = [super init];

  103.   if (self) {

  104.     _auth = auth;

  105.     _callbackScheme = [[[_auth.app.options.clientID componentsSeparatedByString:@"."]

  106.         reverseObjectEnumerator].allObjects componentsJoinedByString:@"."];

  107.   }

  108.   return self;

  109. }

  110. 

  111. - (void)verifyPhoneNumber:(NSString *)phoneNumber

  112.                UIDelegate:(nullable id<FIRAuthUIDelegate>)UIDelegate

  113.                completion:(nullable FIRVerificationResultCallback)completion {

  114.   if (![FIRAuthWebUtils isCallbackSchemeRegisteredForCustomURLScheme:_callbackScheme]) {

  115.     [NSException raise:NSInternalInconsistencyException

  116.                 format:@"Please register custom URL scheme '%@' in the app's Info.plist file.",

  117.                        _callbackScheme];

  118.   }

  119.   dispatch_async(FIRAuthGlobalWorkQueue(), ^{

  120.     FIRVerificationResultCallback callBackOnMainThread = ^(NSString *_Nullable verificationID,

  121.                                                            NSError *_Nullable error) {

  122.       if (completion) {

  123.         dispatch_async(dispatch_get_main_queue(), ^{

  124.           completion(verificationID, error);

  125.         });

  126.       }

  127.     };

  128.     [self internalVerifyPhoneNumber:phoneNumber completion:^(NSString *_Nullable verificationID,

  129.                                                              NSError *_Nullable error) {

  130.       if (!error) {

  131.         callBackOnMainThread(verificationID, nil);

  132.         return;

  133.       }

  134.       NSError *underlyingError = error.userInfo[NSUnderlyingErrorKey];

  135.       BOOL isInvalidAppCredential = error.code == FIRAuthErrorCodeInternalError &&

  136.           underlyingError.code == FIRAuthErrorCodeInvalidAppCredential;

  137.       if (error.code != FIRAuthErrorCodeMissingAppToken && !isInvalidAppCredential) {

  138.         callBackOnMainThread(nil, error);

  139.         return;

  140.       }

  141.       NSString *eventID = [FIRAuthWebUtils randomStringWithLength:10];

  142.       [self reCAPTCHAURLWithEventID:eventID completion:^(NSURL *_Nullable reCAPTCHAURL,

  143.                                                          NSError *_Nullable error) {

  144.         if (error) {

  145.           callBackOnMainThread(nil, error);

  146.           return;

  147.         }

  148.         FIRAuthURLCallbackMatcher callbackMatcher = ^BOOL(NSURL *_Nullable callbackURL) {

  149.           return [FIRAuthWebUtils isExpectedCallbackURL:callbackURL

  150.                                                 eventID:eventID

  151.                                                authType:kAuthTypeVerifyApp

  152.                                          callbackScheme:self->_callbackScheme];

  153.         };

  154.         [self->_auth.authURLPresenter presentURL:reCAPTCHAURL

  155.                                       UIDelegate:UIDelegate

  156.                                  callbackMatcher:callbackMatcher

  157.                                       completion:^(NSURL *_Nullable callbackURL,

  158.                                                    NSError *_Nullable error) {

  159.           if (error) {

  160.             callBackOnMainThread(nil, error);

  161.             return;

  162.           }

  163.           NSError *reCAPTCHAError;

  164.           NSString *reCAPTCHAToken = [self reCAPTCHATokenForURL:callbackURL error:&reCAPTCHAError];

  165.           if (!reCAPTCHAToken) {

  166.             callBackOnMainThread(nil, reCAPTCHAError);

  167.             return;

  168.           }

  169.           FIRSendVerificationCodeRequest *request =

  170.             [[FIRSendVerificationCodeRequest alloc] initWithPhoneNumber:phoneNumber

  171.                                                           appCredential:nil

  172.                                                          reCAPTCHAToken:reCAPTCHAToken

  173.                                                    requestConfiguration:

  174.                                                       self->_auth.requestConfiguration];

  175.           [FIRAuthBackend sendVerificationCode:request

  176.                                       callback:^(FIRSendVerificationCodeResponse

  177.                                                  *_Nullable response, NSError *_Nullable error) {

  178.             if (error) {

  179.               callBackOnMainThread(nil, error);

  180.               return;

  181.             }

  182.             callBackOnMainThread(response.verificationID, nil);

  183.           }];

  184.         }];

  185.       }];

  186.     }];

  187.   });

  188. }

  189. 

  190. - (FIRPhoneAuthCredential *)credentialWithVerificationID:(NSString *)verificationID

  191.                                         verificationCode:(NSString *)verificationCode {

  192.   return [[FIRPhoneAuthCredential alloc] initWithProviderID:FIRPhoneAuthProviderID

  193.                                              verificationID:verificationID

  194.                                            verificationCode:verificationCode];

  195. }

  196. 

  197. + (instancetype)provider {

  198.   return [[self alloc]initWithAuth:[FIRAuth auth]];

  199. }

  200. 

  201. + (instancetype)providerWithAuth:(FIRAuth *)auth {

  202.   return [[self alloc]initWithAuth:auth];

  203. }

  204. 

  205. #pragma mark - Internal Methods

  206. 

  207. /** @fn reCAPTCHATokenForURL:error:

  208.     @brief Parses the reCAPTCHA URL and returns the reCAPTCHA token.

  209.     @param URL The url to be parsed for a reCAPTCHA token.

  210.     @param error The error that occurred if any.

  211.     @return The reCAPTCHA token if successful.

  212.  */

  213. - (NSString *)reCAPTCHATokenForURL:(NSURL *)URL error:(NSError **)error {

  214.   NSURLComponents *actualURLComponents = [NSURLComponents componentsWithURL:URL resolvingAgainstBaseURL:NO];

  215.   NSArray<NSURLQueryItem *> *queryItems = [actualURLComponents queryItems];

  216.   NSString *deepLinkURL = [FIRAuthWebUtils queryItemValue:@"deep_link_id" from:queryItems];

  217.   NSData *errorData;

  218.   if (deepLinkURL) {

  219.     actualURLComponents = [NSURLComponents componentsWithString:deepLinkURL];

  220.     queryItems = [actualURLComponents queryItems];

  221.     NSString *recaptchaToken = [FIRAuthWebUtils queryItemValue:@"recaptchaToken" from:queryItems];

  222.     if (recaptchaToken) {

  223.       return recaptchaToken;

  224.     }

  225.     NSString *firebaseError = [FIRAuthWebUtils queryItemValue:@"firebaseError" from:queryItems];

  226.     errorData = [firebaseError dataUsingEncoding:NSUTF8StringEncoding];

  227.   } else {

  228.     errorData = nil;

  229.   }

  230.   NSError *jsonError;

  231.   NSDictionary *errorDict = [NSJSONSerialization JSONObjectWithData:errorData

  232.                                                             options:0

  233.                                                               error:&jsonError];

  234.   if (jsonError) {

  235.     *error = [FIRAuthErrorUtils JSONSerializationErrorWithUnderlyingError:jsonError];

  236.     return nil;

  237.   }

  238.   *error = [FIRAuthErrorUtils URLResponseErrorWithCode:errorDict[@"code"]

  239.                                                message:errorDict[@"message"]];

  240.   if (!*error) {

  241.     NSString *reason;

  242.     if(errorDict[@"code"] && errorDict[@"message"]) {

  243.       reason = [NSString stringWithFormat:@"[%@] - %@",errorDict[@"code"], errorDict[@"message"]];

  244.     } else {

  245.       reason = [NSString stringWithFormat:@"An unknown error occurred with the following "

  246.           "response: %@", deepLinkURL];

  247.     }

  248.     *error = [FIRAuthErrorUtils appVerificationUserInteractionFailureWithReason:reason];

  249.   }

  250.   return nil;

  251. }

  252. 

  253. /** @fn internalVerifyPhoneNumber:completion:

  254.     @brief Starts the phone number authentication flow by sending a verifcation code to the

  255.         specified phone number.

  256.     @param phoneNumber The phone number to be verified.

  257.     @param completion The callback to be invoked when the verification flow is finished.

  258.  */

  259. 

  260. - (void)internalVerifyPhoneNumber:(NSString *)phoneNumber

  261.                        completion:(nullable FIRVerificationResultCallback)completion {

  262.   if (!phoneNumber.length) {

  263.     completion(nil, [FIRAuthErrorUtils missingPhoneNumberErrorWithMessage:nil]);

  264.     return;

  265.   }

  266.   [_auth.notificationManager checkNotificationForwardingWithCallback:

  267.       ^(BOOL isNotificationBeingForwarded) {

  268.     if (!isNotificationBeingForwarded) {

  269.       completion(nil, [FIRAuthErrorUtils notificationNotForwardedError]);

  270.       return;

  271.     }

  272.     FIRVerificationResultCallback callback = ^(NSString *_Nullable verificationID,

  273.                                                NSError *_Nullable error) {

  274.       if (completion) {

  275.         completion(verificationID, error);

  276.       }

  277.     };

  278.     [self verifyClientAndSendVerificationCodeToPhoneNumber:phoneNumber

  279.                                retryOnInvalidAppCredential:YES

  280.                                                   callback:callback];

  281.   }];

  282. }

  283. 

  284. /** @fn verifyClientAndSendVerificationCodeToPhoneNumber:retryOnInvalidAppCredential:callback:

  285.     @brief Starts the flow to verify the client via silent push notification.

  286.     @param retryOnInvalidAppCredential Whether of not the flow should be retried if an

  287.         FIRAuthErrorCodeInvalidAppCredential error is returned from the backend.

  288.     @param phoneNumber The phone number to be verified.

  289.     @param callback The callback to be invoked on the global work queue when the flow is

  290.         finished.

  291.  */

  292. - (void)verifyClientAndSendVerificationCodeToPhoneNumber:(NSString *)phoneNumber

  293.                              retryOnInvalidAppCredential:(BOOL)retryOnInvalidAppCredential

  294.                                                 callback:(FIRVerificationResultCallback)callback {

  295.   if (_auth.settings.isAppVerificationDisabledForTesting) {

  296.     FIRSendVerificationCodeRequest *request =

  297.         [[FIRSendVerificationCodeRequest alloc] initWithPhoneNumber:phoneNumber

  298.                                                      appCredential:nil

  299.                                                     reCAPTCHAToken:nil

  300.                                               requestConfiguration:

  301.                                                   _auth.requestConfiguration];

  302.     [FIRAuthBackend sendVerificationCode:request

  303.                                 callback:^(FIRSendVerificationCodeResponse *_Nullable response,

  304.                                            NSError *_Nullable error) {

  305.       callback(response.verificationID, error);

  306.     }];

  307.     return;

  308.   }

  309.   [self verifyClientWithCompletion:^(FIRAuthAppCredential *_Nullable appCredential,

  310.                                      NSError *_Nullable error) {

  311.     if (error) {

  312.       callback(nil, error);

  313.       return;

  314.     }

  315.     FIRSendVerificationCodeRequest *request =

  316.         [[FIRSendVerificationCodeRequest alloc] initWithPhoneNumber:phoneNumber

  317.                                                      appCredential:appCredential

  318.                                                     reCAPTCHAToken:nil

  319.                                               requestConfiguration:

  320.                                                   self->_auth.requestConfiguration];

  321.     [FIRAuthBackend sendVerificationCode:request

  322.                                 callback:^(FIRSendVerificationCodeResponse *_Nullable response,

  323.                                            NSError *_Nullable error) {

  324.       if (error) {

  325.         if (error.code == FIRAuthErrorCodeInvalidAppCredential) {

  326.           if (retryOnInvalidAppCredential) {

  327.             [self->_auth.appCredentialManager clearCredential];

  328.             [self verifyClientAndSendVerificationCodeToPhoneNumber:phoneNumber

  329.                                        retryOnInvalidAppCredential:NO

  330.                                                           callback:callback];

  331.             return;

  332.           }

  333.           callback(nil, [FIRAuthErrorUtils unexpectedResponseWithDeserializedResponse:nil

  334.                                                                       underlyingError:error]);

  335.           return;

  336.         }

  337.         callback(nil, error);

  338.         return;

  339.       }

  340.       callback(response.verificationID, nil);

  341.     }];

  342.   }];

  343. }

  344. 

  345. /** @fn verifyClientWithCompletion:completion:

  346.     @brief Continues the flow to verify the client via silent push notification.

  347.     @param completion The callback to be invoked when the client verification flow is finished.

  348.  */

  349. - (void)verifyClientWithCompletion:(FIRVerifyClientCallback)completion {

  350.   if (_auth.appCredentialManager.credential) {

  351.     completion(_auth.appCredentialManager.credential, nil);

  352.     return;

  353.   }

  354.   [_auth.tokenManager getTokenWithCallback:^(FIRAuthAPNSToken *_Nullable token,

  355.                                              NSError *_Nullable error) {

  356.     if (!token) {

  357.       completion(nil, [FIRAuthErrorUtils missingAppTokenErrorWithUnderlyingError:error]);

  358.       return;

  359.     }

  360.     FIRVerifyClientRequest *request =

  361.         [[FIRVerifyClientRequest alloc] initWithAppToken:token.string

  362.                                                isSandbox:token.type == FIRAuthAPNSTokenTypeSandbox

  363.                                     requestConfiguration:self->_auth.requestConfiguration];

  364.     [FIRAuthBackend verifyClient:request callback:^(FIRVerifyClientResponse *_Nullable response,

  365.                                                     NSError *_Nullable error) {

  366.       if (error) {

  367.         completion(nil, error);

  368.         return;

  369.       }

  370.       NSTimeInterval timeout = [response.suggestedTimeOutDate timeIntervalSinceNow];

  371.       [self->_auth.appCredentialManager

  372.           didStartVerificationWithReceipt:response.receipt

  373.                                   timeout:timeout

  374.                                  callback:^(FIRAuthAppCredential *credential) {

  375.         if (!credential.secret) {

  376.           FIRLogWarning(kFIRLoggerAuth, @"I-AUT000014",

  377.                         @"Failed to receive remote notification to verify app identity within "

  378.                         @"%.0f second(s)", timeout);

  379.         }

  380.         completion(credential, nil);

  381.       }];

  382.     }];

  383.   }];

  384. }

  385. 

  386. /** @fn reCAPTCHAURLWithEventID:completion:

  387.     @brief Constructs a URL used for opening a reCAPTCHA app verification flow using a given event

  388.         ID.

  389.     @param eventID The event ID used for this purpose.

  390.     @param completion The callback invoked after the URL has been constructed or an error

  391.         has been encountered.

  392.  */

  393. - (void)reCAPTCHAURLWithEventID:(NSString *)eventID completion:(FIRReCAPTCHAURLCallBack)completion {

  394.   [FIRAuthWebUtils fetchAuthDomainWithRequestConfiguration:_auth.requestConfiguration

  395.                                                 completion:^(NSString *_Nullable authDomain,

  396.                                                              NSError *_Nullable error) {

  397.     if (error) {

  398.       if (completion) {

  399.         completion(nil, error);

  400.         return;

  401.       }

  402.     }

  403.     NSString *bundleID = [NSBundle mainBundle].bundleIdentifier;

  404.     NSString *clientID = self->_auth.app.options.clientID;

  405.     NSString *apiKey = self->_auth.requestConfiguration.APIKey;

  406.     NSMutableArray<NSURLQueryItem *> *queryItems = [@[

  407.       [NSURLQueryItem queryItemWithName:@"apiKey" value:apiKey],

  408.       [NSURLQueryItem queryItemWithName:@"authType" value:kAuthTypeVerifyApp],

  409.       [NSURLQueryItem queryItemWithName:@"ibi" value:bundleID ?: @""],

  410.       [NSURLQueryItem queryItemWithName:@"clientId" value:clientID],

  411.       [NSURLQueryItem queryItemWithName:@"v" value:[FIRAuthBackend authUserAgent]],

  412.       [NSURLQueryItem queryItemWithName:@"eventId" value:eventID]

  413.       ] mutableCopy

  414.     ];

  415. 

  416.     if (self->_auth.requestConfiguration.languageCode) {

  417.       [queryItems addObject:[NSURLQueryItem queryItemWithName:@"hl"value:

  418.                              self->_auth.requestConfiguration.languageCode]];

  419.     }

  420.     NSURLComponents *components = [[NSURLComponents alloc] initWithString:

  421.       [NSString stringWithFormat:kReCAPTCHAURLStringFormat, authDomain]];

  422.     [components setQueryItems:queryItems];

  423.     completion([components URL], nil);

  424.   }];

  425. }

  426. 

  427. @end

  428. 

  429. NS_ASSUME_NONNULL_END