@firebase/app-check 0.4.2-pr5646.6d9dd3616 → 0.5.0

package/dist/index.cjs.js

@@ -61,6 +61,7 @@ function getDebugState() {
  */
 var BASE_ENDPOINT = 'https://content-firebaseappcheck.googleapis.com/v1beta';
 var EXCHANGE_RECAPTCHA_TOKEN_METHOD = 'exchangeRecaptchaToken';
+var EXCHANGE_RECAPTCHA_ENTERPRISE_TOKEN_METHOD = 'exchangeRecaptchaEnterpriseToken';
 var EXCHANGE_DEBUG_TOKEN_METHOD = 'exchangeDebugToken';
 var TOKEN_REFRESH_TIME = {
     /**
@@ -260,7 +261,12 @@ var ERROR_FACTORY = new util.ErrorFactory('appCheck', 'AppCheck', ERRORS);
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-function getRecaptcha() {
+function getRecaptcha(isEnterprise) {
+    var _a;
+    if (isEnterprise === void 0) { isEnterprise = false; }
+    if (isEnterprise) {
+        return (_a = self.grecaptcha) === null || _a === void 0 ? void 0 : _a.enterprise;
+    }
     return self.grecaptcha;
 }
 function ensureActivated(app) {
@@ -367,13 +373,21 @@ function exchangeToken(_a, platformLoggerProvider) {
         });
     });
 }
-function getExchangeRecaptchaTokenRequest(app, reCAPTCHAToken) {
+function getExchangeRecaptchaV3TokenRequest(app, reCAPTCHAToken) {
     var _a = app.options, projectId = _a.projectId, appId = _a.appId, apiKey = _a.apiKey;
     return {
         url: BASE_ENDPOINT + "/projects/" + projectId + "/apps/" + appId + ":" + EXCHANGE_RECAPTCHA_TOKEN_METHOD + "?key=" + apiKey,
         body: {
-            // eslint-disable-next-line
-            recaptcha_token: reCAPTCHAToken
+            'recaptcha_token': reCAPTCHAToken
+        }
+    };
+}
+function getExchangeRecaptchaEnterpriseTokenRequest(app, reCAPTCHAToken) {
+    var _a = app.options, projectId = _a.projectId, appId = _a.appId, apiKey = _a.apiKey;
+    return {
+        url: BASE_ENDPOINT + "/projects/" + projectId + "/apps/" + appId + ":" + EXCHANGE_RECAPTCHA_ENTERPRISE_TOKEN_METHOD + "?key=" + apiKey,
+        body: {
+            'recaptcha_enterprise_token': reCAPTCHAToken
         }
     };
 }
@@ -1000,7 +1014,7 @@ function internalFactory(appCheck) {
 }
 
 var name = "@firebase/app-check";
-var version = "0.4.2-pr5646.6d9dd3616";
+var version = "0.5.0";
 
 /**
  * @license
@@ -1019,38 +1033,72 @@ var version = "0.4.2-pr5646.6d9dd3616";
  * limitations under the License.
  */
 var RECAPTCHA_URL = 'https://www.google.com/recaptcha/api.js';
-function initialize(app, siteKey) {
+var RECAPTCHA_ENTERPRISE_URL = 'https://www.google.com/recaptcha/enterprise.js';
+function initializeV3(app, siteKey) {
     var state = getState(app);
     var initialized = new util.Deferred();
     setState(app, tslib.__assign(tslib.__assign({}, state), { reCAPTCHAState: { initialized: initialized } }));
-    var divId = "fire_app_check_" + app.name;
-    var invisibleDiv = document.createElement('div');
-    invisibleDiv.id = divId;
-    invisibleDiv.style.display = 'none';
-    document.body.appendChild(invisibleDiv);
-    var grecaptcha = getRecaptcha();
+    var divId = makeDiv(app);
+    var grecaptcha = getRecaptcha(false);
     if (!grecaptcha) {
-        loadReCAPTCHAScript(function () {
-            var grecaptcha = getRecaptcha();
+        loadReCAPTCHAV3Script(function () {
+            var grecaptcha = getRecaptcha(false);
             if (!grecaptcha) {
                 // it shouldn't happen.
                 throw new Error('no recaptcha');
             }
-            grecaptcha.ready(function () {
-                // Invisible widgets allow us to set a different siteKey for each widget, so we use them to support multiple apps
-                renderInvisibleWidget(app, siteKey, grecaptcha, divId);
-                initialized.resolve(grecaptcha);
-            });
+            queueWidgetRender(app, siteKey, grecaptcha, divId, initialized);
         });
     }
     else {
-        grecaptcha.ready(function () {
-            renderInvisibleWidget(app, siteKey, grecaptcha, divId);
-            initialized.resolve(grecaptcha);
+        queueWidgetRender(app, siteKey, grecaptcha, divId, initialized);
+    }
+    return initialized.promise;
+}
+function initializeEnterprise(app, siteKey) {
+    var state = getState(app);
+    var initialized = new util.Deferred();
+    setState(app, tslib.__assign(tslib.__assign({}, state), { reCAPTCHAState: { initialized: initialized } }));
+    var divId = makeDiv(app);
+    var grecaptcha = getRecaptcha(true);
+    if (!grecaptcha) {
+        loadReCAPTCHAEnterpriseScript(function () {
+            var grecaptcha = getRecaptcha(true);
+            if (!grecaptcha) {
+                // it shouldn't happen.
+                throw new Error('no recaptcha');
+            }
+            queueWidgetRender(app, siteKey, grecaptcha, divId, initialized);
         });
     }
+    else {
+        queueWidgetRender(app, siteKey, grecaptcha, divId, initialized);
+    }
     return initialized.promise;
 }
+/**
+ * Add listener to render the widget and resolve the promise when
+ * the grecaptcha.ready() event fires.
+ */
+function queueWidgetRender(app, siteKey, grecaptcha, container, initialized) {
+    grecaptcha.ready(function () {
+        // Invisible widgets allow us to set a different siteKey for each widget,
+        // so we use them to support multiple apps
+        renderInvisibleWidget(app, siteKey, grecaptcha, container);
+        initialized.resolve(grecaptcha);
+    });
+}
+/**
+ * Add invisible div to page.
+ */
+function makeDiv(app) {
+    var divId = "fire_app_check_" + app.name;
+    var invisibleDiv = document.createElement('div');
+    invisibleDiv.id = divId;
+    invisibleDiv.style.display = 'none';
+    document.body.appendChild(invisibleDiv);
+    return divId;
+}
 function getToken$1(app) {
     return tslib.__awaiter(this, void 0, void 0, function () {
         var reCAPTCHAState, recaptcha;
@@ -1091,9 +1139,15 @@ function renderInvisibleWidget(app, siteKey, grecaptcha, container) {
     setState(app, tslib.__assign(tslib.__assign({}, state), { reCAPTCHAState: tslib.__assign(tslib.__assign({}, state.reCAPTCHAState), { // state.reCAPTCHAState is set in the initialize()
             widgetId: widgetId }) }));
 }
-function loadReCAPTCHAScript(onload) {
+function loadReCAPTCHAV3Script(onload) {
     var script = document.createElement('script');
-    script.src = "" + RECAPTCHA_URL;
+    script.src = RECAPTCHA_URL;
+    script.onload = onload;
+    document.head.appendChild(script);
+}
+function loadReCAPTCHAEnterpriseScript(onload) {
+    var script = document.createElement('script');
+    script.src = RECAPTCHA_ENTERPRISE_URL;
     script.onload = onload;
     document.head.appendChild(script);
 }
@@ -1137,22 +1191,13 @@ var ReCaptchaV3Provider = /** @class */ (function () {
             var attestedClaimsToken;
             return tslib.__generator(this, function (_a) {
                 switch (_a.label) {
-                    case 0:
-                        if (!this._app || !this._platformLoggerProvider) {
-                            // This should only occur if user has not called initializeAppCheck().
-                            // We don't have an appName to provide if so.
-                            // This should already be caught in the top level `getToken()` function.
-                            throw ERROR_FACTORY.create("use-before-activation" /* USE_BEFORE_ACTIVATION */, {
-                                appName: ''
-                            });
-                        }
-                        return [4 /*yield*/, getToken$1(this._app).catch(function (_e) {
-                                // reCaptcha.execute() throws null which is not very descriptive.
-                                throw ERROR_FACTORY.create("recaptcha-error" /* RECAPTCHA_ERROR */);
-                            })];
+                    case 0: return [4 /*yield*/, getToken$1(this._app).catch(function (_e) {
+                            // reCaptcha.execute() throws null which is not very descriptive.
+                            throw ERROR_FACTORY.create("recaptcha-error" /* RECAPTCHA_ERROR */);
+                        })];
                     case 1:
                         attestedClaimsToken = _a.sent();
-                        return [2 /*return*/, exchangeToken(getExchangeRecaptchaTokenRequest(this._app, attestedClaimsToken), this._platformLoggerProvider)];
+                        return [2 /*return*/, exchangeToken(getExchangeRecaptchaV3TokenRequest(this._app, attestedClaimsToken), this._platformLoggerProvider)];
                 }
             });
         });
@@ -1163,7 +1208,7 @@ var ReCaptchaV3Provider = /** @class */ (function () {
     ReCaptchaV3Provider.prototype.initialize = function (app$1) {
         this._app = app$1;
         this._platformLoggerProvider = app._getProvider(app$1, 'platform-logger');
-        initialize(app$1, this._siteKey).catch(function () {
+        initializeV3(app$1, this._siteKey).catch(function () {
             /* we don't care about the initialization result */
         });
     };
@@ -1180,6 +1225,63 @@ var ReCaptchaV3Provider = /** @class */ (function () {
     };
     return ReCaptchaV3Provider;
 }());
+/**
+ * App Check provider that can obtain a reCAPTCHA Enterprise token and exchange it
+ * for an App Check token.
+ *
+ * @public
+ */
+var ReCaptchaEnterpriseProvider = /** @class */ (function () {
+    /**
+     * Create a ReCaptchaEnterpriseProvider instance.
+     * @param siteKey - reCAPTCHA Enterprise score-based site key.
+     */
+    function ReCaptchaEnterpriseProvider(_siteKey) {
+        this._siteKey = _siteKey;
+    }
+    /**
+     * Returns an App Check token.
+     * @internal
+     */
+    ReCaptchaEnterpriseProvider.prototype.getToken = function () {
+        return tslib.__awaiter(this, void 0, void 0, function () {
+            var attestedClaimsToken;
+            return tslib.__generator(this, function (_a) {
+                switch (_a.label) {
+                    case 0: return [4 /*yield*/, getToken$1(this._app).catch(function (_e) {
+                            // reCaptcha.execute() throws null which is not very descriptive.
+                            throw ERROR_FACTORY.create("recaptcha-error" /* RECAPTCHA_ERROR */);
+                        })];
+                    case 1:
+                        attestedClaimsToken = _a.sent();
+                        return [2 /*return*/, exchangeToken(getExchangeRecaptchaEnterpriseTokenRequest(this._app, attestedClaimsToken), this._platformLoggerProvider)];
+                }
+            });
+        });
+    };
+    /**
+     * @internal
+     */
+    ReCaptchaEnterpriseProvider.prototype.initialize = function (app$1) {
+        this._app = app$1;
+        this._platformLoggerProvider = app._getProvider(app$1, 'platform-logger');
+        initializeEnterprise(app$1, this._siteKey).catch(function () {
+            /* we don't care about the initialization result */
+        });
+    };
+    /**
+     * @internal
+     */
+    ReCaptchaEnterpriseProvider.prototype.isEqual = function (otherProvider) {
+        if (otherProvider instanceof ReCaptchaEnterpriseProvider) {
+            return this._siteKey === otherProvider._siteKey;
+        }
+        else {
+            return false;
+        }
+    };
+    return ReCaptchaEnterpriseProvider;
+}());
 /**
  * Custom provider class.
  * @public
@@ -1196,16 +1298,7 @@ var CustomProvider = /** @class */ (function () {
             var customToken, issuedAtTimeSeconds, issuedAtTimeMillis;
             return tslib.__generator(this, function (_a) {
                 switch (_a.label) {
-                    case 0:
-                        if (!this._app) {
-                            // This should only occur if user has not called initializeAppCheck().
-                            // We don't have an appName to provide if so.
-                            // This should already be caught in the top level `getToken()` function.
-                            throw ERROR_FACTORY.create("use-before-activation" /* USE_BEFORE_ACTIVATION */, {
-                                appName: ''
-                            });
-                        }
-                        return [4 /*yield*/, this._customProviderOptions.getToken()];
+                    case 0: return [4 /*yield*/, this._customProviderOptions.getToken()];
                     case 1:
                         customToken = _a.sent();
                         issuedAtTimeSeconds = util.issuedAtTime(customToken.token);
@@ -1441,6 +1534,7 @@ function registerAppCheck() {
 registerAppCheck();
 
 exports.CustomProvider = CustomProvider;
+exports.ReCaptchaEnterpriseProvider = ReCaptchaEnterpriseProvider;
 exports.ReCaptchaV3Provider = ReCaptchaV3Provider;
 exports.getToken = getToken;
 exports.initializeAppCheck = initializeAppCheck;