@firebase/auth 1.10.8-canary.2d720995d → 1.10.8-canary.f11b55294

package/dist/browser-cjs/{index-6ce158e3.js → index-8213225f.js}

@@ -3,6 +3,7 @@
 var app = require('@firebase/app');
 var util = require('@firebase/util');
 var logger = require('@firebase/logger');
+var tslib = require('tslib');
 var component = require('@firebase/component');
 
 /**
@@ -478,10 +479,7 @@ function _createError(authOrCode, ...rest) {
     return createErrorInternal(authOrCode, ...rest);
 }
 function _errorWithCustomMessage(auth, code, message) {
-    const errorMap = {
-        ...prodErrorMap(),
-        [code]: message
-    };
+    const errorMap = Object.assign(Object.assign({}, prodErrorMap()), { [code]: message });
     const factory = new util.ErrorFactory('auth', 'Firebase', errorMap);
     return factory.create(code, {
         appName: auth.name
@@ -562,13 +560,15 @@ function debugAssert(assertion, message) {
  * limitations under the License.
  */
 function _getCurrentUrl() {
-    return (typeof self !== 'undefined' && self.location?.href) || '';
+    var _a;
+    return (typeof self !== 'undefined' && ((_a = self.location) === null || _a === void 0 ? void 0 : _a.href)) || '';
 }
 function _isHttpOrHttps() {
     return _getCurrentScheme() === 'http:' || _getCurrentScheme() === 'https:';
 }
 function _getCurrentScheme() {
-    return (typeof self !== 'undefined' && self.location?.protocol) || null;
+    var _a;
+    return (typeof self !== 'undefined' && ((_a = self.location) === null || _a === void 0 ? void 0 : _a.protocol)) || null;
 }
 
 /**
@@ -882,10 +882,7 @@ const CookieAuthProxiedEndpoints = [
 const DEFAULT_API_TIMEOUT_MS = new Delay(30000, 60000);
 function _addTidIfNecessary(auth, request) {
     if (auth.tenantId && !request.tenantId) {
-        return {
-            ...request,
-            tenantId: auth.tenantId
-        };
+        return Object.assign(Object.assign({}, request), { tenantId: auth.tenantId });
     }
     return request;
 }
@@ -903,20 +900,14 @@ async function _performApiRequest(auth, method, path, request, customErrorMap =
                 };
             }
         }
-        const query = util.querystring({
-            key: auth.config.apiKey,
-            ...params
-        }).slice(1);
+        const query = util.querystring(Object.assign({ key: auth.config.apiKey }, params)).slice(1);
         const headers = await auth._getAdditionalHeaders();
         headers["Content-Type" /* HttpHeader.CONTENT_TYPE */] = 'application/json';
         if (auth.languageCode) {
             headers["X-Firebase-Locale" /* HttpHeader.X_FIREBASE_LOCALE */] = auth.languageCode;
         }
-        const fetchArgs = {
-            method,
-            headers,
-            ...body
-        };
+        const fetchArgs = Object.assign({ method,
+            headers }, body);
         /* Security-conscious server-side frameworks tend to have built in mitigations for referrer
            problems". See the Cloudflare GitHub issue #487: Error: The 'referrerPolicy' field on
            'RequestInitializerDict' is not implemented."
@@ -932,7 +923,7 @@ async function _performApiRequest(auth, method, path, request, customErrorMap =
 }
 async function _performFetchWithErrorHandling(auth, customErrorMap, fetchFn) {
     auth._canInitEmulator = false;
-    const errorMap = { ...SERVER_ERROR_MAP, ...customErrorMap };
+    const errorMap = Object.assign(Object.assign({}, SERVER_ERROR_MAP), customErrorMap);
     try {
         const networkTimeout = new NetworkTimeout(auth);
         const response = await Promise.race([
@@ -1273,7 +1264,7 @@ async function getIdTokenResult(user, forceRefresh = false) {
     const claims = _parseToken(token);
     _assert(claims && claims.exp && claims.auth_time && claims.iat, userInternal.auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
     const firebase = typeof claims.firebase === 'object' ? claims.firebase : undefined;
-    const signInProvider = firebase?.['sign_in_provider'];
+    const signInProvider = firebase === null || firebase === void 0 ? void 0 : firebase['sign_in_provider'];
     return {
         claims,
         token,
@@ -1281,7 +1272,7 @@ async function getIdTokenResult(user, forceRefresh = false) {
         issuedAtTime: utcTimestampToDateString(secondsStringToMilliseconds(claims.iat)),
         expirationTime: utcTimestampToDateString(secondsStringToMilliseconds(claims.exp)),
         signInProvider: signInProvider || null,
-        signInSecondFactor: firebase?.['sign_in_second_factor'] || null
+        signInSecondFactor: (firebase === null || firebase === void 0 ? void 0 : firebase['sign_in_second_factor']) || null
     };
 }
 function secondsStringToMilliseconds(seconds) {
@@ -1304,7 +1295,7 @@ function _parseToken(token) {
         return JSON.parse(decoded);
     }
     catch (e) {
-        _logError('Caught error parsing JWT payload as JSON', e?.toString());
+        _logError('Caught error parsing JWT payload as JSON', e === null || e === void 0 ? void 0 : e.toString());
         return null;
     }
 }
@@ -1400,6 +1391,7 @@ class ProactiveRefresh {
         }
     }
     getInterval(wasError) {
+        var _a;
         if (wasError) {
             const interval = this.errorBackoff;
             this.errorBackoff = Math.min(this.errorBackoff * 2, 960000 /* Duration.RETRY_BACKOFF_MAX */);
@@ -1408,7 +1400,7 @@ class ProactiveRefresh {
         else {
             // Reset the error backoff
             this.errorBackoff = 30000 /* Duration.RETRY_BACKOFF_MIN */;
-            const expTime = this.user.stsTokenManager.expirationTime ?? 0;
+            const expTime = (_a = this.user.stsTokenManager.expirationTime) !== null && _a !== void 0 ? _a : 0;
             const interval = expTime - Date.now() - 300000 /* Duration.OFFSET */;
             return Math.max(0, interval);
         }
@@ -1429,7 +1421,7 @@ class ProactiveRefresh {
         }
         catch (e) {
             // Only retry on network errors
-            if (e?.code ===
+            if ((e === null || e === void 0 ? void 0 : e.code) ===
                 `auth/${"network-request-failed" /* AuthErrorCode.NETWORK_REQUEST_FAILED */}`) {
                 this.schedule(/* wasError */ true);
             }
@@ -1495,13 +1487,14 @@ class UserMetadata {
  * limitations under the License.
  */
 async function _reloadWithoutSaving(user) {
+    var _a;
     const auth = user.auth;
     const idToken = await user.getIdToken();
     const response = await _logoutIfInvalidated(user, getAccountInfo(auth, { idToken }));
-    _assert(response?.users.length, auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
+    _assert(response === null || response === void 0 ? void 0 : response.users.length, auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
     const coreAccount = response.users[0];
     user._notifyReloadListener(coreAccount);
-    const newProviderData = coreAccount.providerUserInfo?.length
+    const newProviderData = ((_a = coreAccount.providerUserInfo) === null || _a === void 0 ? void 0 : _a.length)
         ? extractProviderData(coreAccount.providerUserInfo)
         : [];
     const providerData = mergeProviderData(user.providerData, newProviderData);
@@ -1511,7 +1504,7 @@ async function _reloadWithoutSaving(user) {
     // On the other hand, if it was not anonymous before, it should never be
     // considered anonymous now.
     const oldIsAnonymous = user.isAnonymous;
-    const newIsAnonymous = !(user.email && coreAccount.passwordHash) && !providerData?.length;
+    const newIsAnonymous = !(user.email && coreAccount.passwordHash) && !(providerData === null || providerData === void 0 ? void 0 : providerData.length);
     const isAnonymous = !oldIsAnonymous ? false : newIsAnonymous;
     const updates = {
         uid: coreAccount.localId,
@@ -1548,7 +1541,8 @@ function mergeProviderData(original, newData) {
     return [...deduped, ...newData];
 }
 function extractProviderData(providers) {
-    return providers.map(({ providerId, ...provider }) => {
+    return providers.map((_a) => {
+        var { providerId } = _a, provider = tslib.__rest(_a, ["providerId"]);
         return {
             providerId,
             uid: provider.rawId || '',
@@ -1740,7 +1734,8 @@ function assertStringOrUndefined(assertion, appName) {
     _assert(typeof assertion === 'string' || typeof assertion === 'undefined', "internal-error" /* AuthErrorCode.INTERNAL_ERROR */, { appName });
 }
 class UserImpl {
-    constructor({ uid, auth, stsTokenManager, ...opt }) {
+    constructor(_a) {
+        var { uid, auth, stsTokenManager } = _a, opt = tslib.__rest(_a, ["uid", "auth", "stsTokenManager"]);
         // For the user object, provider is always Firebase.
         this.providerId = "firebase" /* ProviderId.FIREBASE */;
         this.proactiveRefresh = new ProactiveRefresh(this);
@@ -1788,16 +1783,12 @@ class UserImpl {
         this.phoneNumber = user.phoneNumber;
         this.isAnonymous = user.isAnonymous;
         this.tenantId = user.tenantId;
-        this.providerData = user.providerData.map(userInfo => ({ ...userInfo }));
+        this.providerData = user.providerData.map(userInfo => (Object.assign({}, userInfo)));
         this.metadata._copy(user.metadata);
         this.stsTokenManager._assign(user.stsTokenManager);
     }
     _clone(auth) {
-        const newUser = new UserImpl({
-            ...this,
-            auth,
-            stsTokenManager: this.stsTokenManager._clone()
-        });
+        const newUser = new UserImpl(Object.assign(Object.assign({}, this), { auth, stsTokenManager: this.stsTokenManager._clone() }));
         newUser.metadata._copy(this.metadata);
         return newUser;
     }
@@ -1852,40 +1843,26 @@ class UserImpl {
         return this.auth.signOut();
     }
     toJSON() {
-        return {
-            uid: this.uid,
-            email: this.email || undefined,
-            emailVerified: this.emailVerified,
-            displayName: this.displayName || undefined,
-            isAnonymous: this.isAnonymous,
-            photoURL: this.photoURL || undefined,
-            phoneNumber: this.phoneNumber || undefined,
-            tenantId: this.tenantId || undefined,
-            providerData: this.providerData.map(userInfo => ({ ...userInfo })),
-            stsTokenManager: this.stsTokenManager.toJSON(),
+        return Object.assign(Object.assign({ uid: this.uid, email: this.email || undefined, emailVerified: this.emailVerified, displayName: this.displayName || undefined, isAnonymous: this.isAnonymous, photoURL: this.photoURL || undefined, phoneNumber: this.phoneNumber || undefined, tenantId: this.tenantId || undefined, providerData: this.providerData.map(userInfo => (Object.assign({}, userInfo))), stsTokenManager: this.stsTokenManager.toJSON(), 
             // Redirect event ID must be maintained in case there is a pending
             // redirect event.
-            _redirectEventId: this._redirectEventId,
-            ...this.metadata.toJSON(),
+            _redirectEventId: this._redirectEventId }, this.metadata.toJSON()), { 
             // Required for compatibility with the legacy SDK (go/firebase-auth-sdk-persistence-parsing):
-            apiKey: this.auth.config.apiKey,
-            appName: this.auth.name
-            // Missing authDomain will be tolerated by the legacy SDK.
-            // stsTokenManager.apiKey isn't actually required (despite the legacy SDK persisting it).
-        };
+            apiKey: this.auth.config.apiKey, appName: this.auth.name });
     }
     get refreshToken() {
         return this.stsTokenManager.refreshToken || '';
     }
     static _fromJSON(auth, object) {
-        const displayName = object.displayName ?? undefined;
-        const email = object.email ?? undefined;
-        const phoneNumber = object.phoneNumber ?? undefined;
-        const photoURL = object.photoURL ?? undefined;
-        const tenantId = object.tenantId ?? undefined;
-        const _redirectEventId = object._redirectEventId ?? undefined;
-        const createdAt = object.createdAt ?? undefined;
-        const lastLoginAt = object.lastLoginAt ?? undefined;
+        var _a, _b, _c, _d, _e, _f, _g, _h;
+        const displayName = (_a = object.displayName) !== null && _a !== void 0 ? _a : undefined;
+        const email = (_b = object.email) !== null && _b !== void 0 ? _b : undefined;
+        const phoneNumber = (_c = object.phoneNumber) !== null && _c !== void 0 ? _c : undefined;
+        const photoURL = (_d = object.photoURL) !== null && _d !== void 0 ? _d : undefined;
+        const tenantId = (_e = object.tenantId) !== null && _e !== void 0 ? _e : undefined;
+        const _redirectEventId = (_f = object._redirectEventId) !== null && _f !== void 0 ? _f : undefined;
+        const createdAt = (_g = object.createdAt) !== null && _g !== void 0 ? _g : undefined;
+        const lastLoginAt = (_h = object.lastLoginAt) !== null && _h !== void 0 ? _h : undefined;
         const { uid, emailVerified, isAnonymous, providerData, stsTokenManager: plainObjectTokenManager } = object;
         _assert(uid && plainObjectTokenManager, auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
         const stsTokenManager = StsTokenManager.fromJSON(this.name, plainObjectTokenManager);
@@ -1915,7 +1892,7 @@ class UserImpl {
             lastLoginAt
         });
         if (providerData && Array.isArray(providerData)) {
-            user.providerData = providerData.map(userInfo => ({ ...userInfo }));
+            user.providerData = providerData.map(userInfo => (Object.assign({}, userInfo)));
         }
         if (_redirectEventId) {
             user._redirectEventId = _redirectEventId;
@@ -1952,7 +1929,7 @@ class UserImpl {
         const providerData = coreAccount.providerUserInfo !== undefined
             ? extractProviderData(coreAccount.providerUserInfo)
             : [];
-        const isAnonymous = !(coreAccount.email && coreAccount.passwordHash) && !providerData?.length;
+        const isAnonymous = !(coreAccount.email && coreAccount.passwordHash) && !(providerData === null || providerData === void 0 ? void 0 : providerData.length);
         const stsTokenManager = new StsTokenManager();
         stsTokenManager.updateFromIdToken(idToken);
         // Initialize the Firebase Auth user.
@@ -1974,7 +1951,7 @@ class UserImpl {
             providerData,
             metadata: new UserMetadata(coreAccount.createdAt, coreAccount.lastLoginAt),
             isAnonymous: !(coreAccount.email && coreAccount.passwordHash) &&
-                !providerData?.length
+                !(providerData === null || providerData === void 0 ? void 0 : providerData.length)
         };
         Object.assign(user, updates);
         return user;
@@ -2173,7 +2150,7 @@ class PersistenceUserManager {
                     break;
                 }
             }
-            catch { }
+            catch (_a) { }
         }
         // If we find the user in a persistence that does support migration, use
         // that migration path (of only persistences that support migration)
@@ -2196,7 +2173,7 @@ class PersistenceUserManager {
                 try {
                     await persistence._remove(key);
                 }
-                catch { }
+                catch (_a) { }
             }
         }));
         return new PersistenceUserManager(selectedPersistence, auth, userKey);
@@ -2266,7 +2243,7 @@ function _getBrowserName(userAgent) {
         // Most modern browsers have name/version at end of user agent string.
         const re = /([a-zA-Z\d\.]+)\/[a-zA-Z\d\.]*$/;
         const matches = userAgent.match(re);
-        if (matches?.length === 2) {
+        if ((matches === null || matches === void 0 ? void 0 : matches.length) === 2) {
             return matches[1];
         }
     }
@@ -2306,7 +2283,8 @@ function _isIOS7Or8(ua = util.getUA()) {
         /(iPad|iPhone|iPod).*OS 8_\d/i.test(ua));
 }
 function _isIOSStandalone(ua = util.getUA()) {
-    return _isIOS(ua) && !!window.navigator?.standalone;
+    var _a;
+    return _isIOS(ua) && !!((_a = window.navigator) === null || _a === void 0 ? void 0 : _a.standalone);
 }
 function _isIE10() {
     return util.isIE() && document.documentMode === 10;
@@ -2437,7 +2415,7 @@ class AuthMiddlewareQueue {
                 }
             }
             throw this.auth._errorFactory.create("login-blocked" /* AuthErrorCode.LOGIN_BLOCKED */, {
-                originalMessage: e?.message
+                originalMessage: e === null || e === void 0 ? void 0 : e.message
             });
         }
     }
@@ -2495,12 +2473,13 @@ const MINIMUM_MIN_PASSWORD_LENGTH = 6;
  */
 class PasswordPolicyImpl {
     constructor(response) {
+        var _a, _b, _c, _d;
         // Only include custom strength options defined in the response.
         const responseOptions = response.customStrengthOptions;
         this.customStrengthOptions = {};
         // TODO: Remove once the backend is updated to include the minimum min password length instead of undefined when there is no minimum length set.
         this.customStrengthOptions.minPasswordLength =
-            responseOptions.minPasswordLength ?? MINIMUM_MIN_PASSWORD_LENGTH;
+            (_a = responseOptions.minPasswordLength) !== null && _a !== void 0 ? _a : MINIMUM_MIN_PASSWORD_LENGTH;
         if (responseOptions.maxPasswordLength) {
             this.customStrengthOptions.maxPasswordLength =
                 responseOptions.maxPasswordLength;
@@ -2527,11 +2506,12 @@ class PasswordPolicyImpl {
         }
         // Use an empty string if no non-alphanumeric characters are specified in the response.
         this.allowedNonAlphanumericCharacters =
-            response.allowedNonAlphanumericCharacters?.join('') ?? '';
-        this.forceUpgradeOnSignin = response.forceUpgradeOnSignin ?? false;
+            (_c = (_b = response.allowedNonAlphanumericCharacters) === null || _b === void 0 ? void 0 : _b.join('')) !== null && _c !== void 0 ? _c : '';
+        this.forceUpgradeOnSignin = (_d = response.forceUpgradeOnSignin) !== null && _d !== void 0 ? _d : false;
         this.schemaVersion = response.schemaVersion;
     }
     validatePassword(password) {
+        var _a, _b, _c, _d, _e, _f;
         const status = {
             isValid: true,
             passwordPolicy: this
@@ -2540,12 +2520,12 @@ class PasswordPolicyImpl {
         this.validatePasswordLengthOptions(password, status);
         this.validatePasswordCharacterOptions(password, status);
         // Combine the status into single isValid property.
-        status.isValid && (status.isValid = status.meetsMinPasswordLength ?? true);
-        status.isValid && (status.isValid = status.meetsMaxPasswordLength ?? true);
-        status.isValid && (status.isValid = status.containsLowercaseLetter ?? true);
-        status.isValid && (status.isValid = status.containsUppercaseLetter ?? true);
-        status.isValid && (status.isValid = status.containsNumericCharacter ?? true);
-        status.isValid && (status.isValid = status.containsNonAlphanumericCharacter ?? true);
+        status.isValid && (status.isValid = (_a = status.meetsMinPasswordLength) !== null && _a !== void 0 ? _a : true);
+        status.isValid && (status.isValid = (_b = status.meetsMaxPasswordLength) !== null && _b !== void 0 ? _b : true);
+        status.isValid && (status.isValid = (_c = status.containsLowercaseLetter) !== null && _c !== void 0 ? _c : true);
+        status.isValid && (status.isValid = (_d = status.containsUppercaseLetter) !== null && _d !== void 0 ? _d : true);
+        status.isValid && (status.isValid = (_e = status.containsNumericCharacter) !== null && _e !== void 0 ? _e : true);
+        status.isValid && (status.isValid = (_f = status.containsNonAlphanumericCharacter) !== null && _f !== void 0 ? _f : true);
         return status;
     }
     /**
@@ -2682,17 +2662,18 @@ class AuthImpl {
         // Have to check for app deletion throughout initialization (after each
         // promise resolution)
         this._initializationPromise = this.queue(async () => {
+            var _a, _b, _c;
             if (this._deleted) {
                 return;
             }
             this.persistenceManager = await PersistenceUserManager.create(this, persistenceHierarchy);
-            this._resolvePersistenceManagerAvailable?.();
+            (_a = this._resolvePersistenceManagerAvailable) === null || _a === void 0 ? void 0 : _a.call(this);
             if (this._deleted) {
                 return;
             }
             // Initialize the resolver early if necessary (only applicable to web:
             // this will cause the iframe to load immediately in certain cases)
-            if (this._popupRedirectResolver?._shouldInitProactively) {
+            if ((_b = this._popupRedirectResolver) === null || _b === void 0 ? void 0 : _b._shouldInitProactively) {
                 // If this fails, don't halt auth loading
                 try {
                     await this._popupRedirectResolver._initialize(this);
@@ -2702,7 +2683,7 @@ class AuthImpl {
                 }
             }
             await this.initializeCurrentUser(popupRedirectResolver);
-            this.lastNotifiedUid = this.currentUser?.uid || null;
+            this.lastNotifiedUid = ((_c = this.currentUser) === null || _c === void 0 ? void 0 : _c.uid) || null;
             if (this._deleted) {
                 return;
             }
@@ -2747,6 +2728,7 @@ class AuthImpl {
         }
     }
     async initializeCurrentUser(popupRedirectResolver) {
+        var _a;
         if (app._isFirebaseServerApp(this.app)) {
             const idToken = this.app.settings.authIdToken;
             if (idToken) {
@@ -2766,15 +2748,15 @@ class AuthImpl {
         let needsTocheckMiddleware = false;
         if (popupRedirectResolver && this.config.authDomain) {
             await this.getOrInitRedirectPersistenceManager();
-            const redirectUserEventId = this.redirectUser?._redirectEventId;
-            const storedUserEventId = futureCurrentUser?._redirectEventId;
+            const redirectUserEventId = (_a = this.redirectUser) === null || _a === void 0 ? void 0 : _a._redirectEventId;
+            const storedUserEventId = futureCurrentUser === null || futureCurrentUser === void 0 ? void 0 : futureCurrentUser._redirectEventId;
             const result = await this.tryRedirectSignIn(popupRedirectResolver);
             // If the stored user (i.e. the old "currentUser") has a redirectId that
             // matches the redirect user, then we want to initially sign in with the
             // new user object from result.
             // TODO(samgho): More thoroughly test all of this
             if ((!redirectUserEventId || redirectUserEventId === storedUserEventId) &&
-                result?.user) {
+                (result === null || result === void 0 ? void 0 : result.user)) {
                 futureCurrentUser = result.user;
                 needsTocheckMiddleware = true;
             }
@@ -2849,7 +2831,7 @@ class AuthImpl {
             await _reloadWithoutSaving(user);
         }
         catch (e) {
-            if (e?.code !==
+            if ((e === null || e === void 0 ? void 0 : e.code) !==
                 `auth/${"network-request-failed" /* AuthErrorCode.NETWORK_REQUEST_FAILED */}`) {
                 // Something's wrong with the user's token. Log them out and remove
                 // them from storage
@@ -3006,11 +2988,12 @@ class AuthImpl {
         }
     }
     toJSON() {
+        var _a;
         return {
             apiKey: this.config.apiKey,
             authDomain: this.config.authDomain,
             appName: this.name,
-            currentUser: this._currentUser?.toJSON()
+            currentUser: (_a = this._currentUser) === null || _a === void 0 ? void 0 : _a.toJSON()
         };
     }
     async _setRedirectUser(user, popupRedirectResolver) {
@@ -3031,15 +3014,16 @@ class AuthImpl {
         return this.redirectPersistenceManager;
     }
     async _redirectUserForId(id) {
+        var _a, _b;
         // Make sure we've cleared any pending persistence actions if we're not in
         // the initializer
         if (this._isInitialized) {
             await this.queue(async () => { });
         }
-        if (this._currentUser?._redirectEventId === id) {
+        if (((_a = this._currentUser) === null || _a === void 0 ? void 0 : _a._redirectEventId) === id) {
             return this._currentUser;
         }
-        if (this.redirectUser?._redirectEventId === id) {
+        if (((_b = this.redirectUser) === null || _b === void 0 ? void 0 : _b._redirectEventId) === id) {
             return this.redirectUser;
         }
         return null;
@@ -3075,11 +3059,12 @@ class AuthImpl {
         return this.currentUser;
     }
     notifyAuthListeners() {
+        var _a, _b;
         if (!this._isInitialized) {
             return;
         }
         this.idTokenSubscription.next(this.currentUser);
-        const currentUid = this.currentUser?.uid ?? null;
+        const currentUid = (_b = (_a = this.currentUser) === null || _a === void 0 ? void 0 : _a.uid) !== null && _b !== void 0 ? _b : null;
         if (this.lastNotifiedUid !== currentUid) {
             this.lastNotifiedUid = currentUid;
             this.authStateSubscription.next(this.currentUser);
@@ -3164,6 +3149,7 @@ class AuthImpl {
         return this.frameworks;
     }
     async _getAdditionalHeaders() {
+        var _a;
         // Additional headers on every request
         const headers = {
             ["X-Client-Version" /* HttpHeader.X_CLIENT_VERSION */]: this.clientVersion
@@ -3172,11 +3158,10 @@ class AuthImpl {
             headers["X-Firebase-gmpid" /* HttpHeader.X_FIREBASE_GMPID */] = this.app.options.appId;
         }
         // If the heartbeat service exists, add the heartbeat string
-        const heartbeatsHeader = await this.heartbeatServiceProvider
+        const heartbeatsHeader = await ((_a = this.heartbeatServiceProvider
             .getImmediate({
             optional: true
-        })
-            ?.getHeartbeatsHeader();
+        })) === null || _a === void 0 ? void 0 : _a.getHeartbeatsHeader());
         if (heartbeatsHeader) {
             headers["X-Firebase-Client" /* HttpHeader.X_FIREBASE_CLIENT */] = heartbeatsHeader;
         }
@@ -3188,20 +3173,20 @@ class AuthImpl {
         return headers;
     }
     async _getAppCheckToken() {
+        var _a;
         if (app._isFirebaseServerApp(this.app) && this.app.settings.appCheckToken) {
             return this.app.settings.appCheckToken;
         }
-        const appCheckTokenResult = await this.appCheckServiceProvider
-            .getImmediate({ optional: true })
-            ?.getToken();
-        if (appCheckTokenResult?.error) {
+        const appCheckTokenResult = await ((_a = this.appCheckServiceProvider
+            .getImmediate({ optional: true })) === null || _a === void 0 ? void 0 : _a.getToken());
+        if (appCheckTokenResult === null || appCheckTokenResult === void 0 ? void 0 : appCheckTokenResult.error) {
             // Context: appCheck.getToken() will never throw even if an error happened.
             // In the error case, a dummy token will be returned along with an error field describing
             // the error. In general, we shouldn't care about the error condition and just use
             // the token (actual or dummy) to send requests.
             _logWarn(`Error while retrieving App Check token: ${appCheckTokenResult.error}`);
         }
-        return appCheckTokenResult?.token;
+        return appCheckTokenResult === null || appCheckTokenResult === void 0 ? void 0 : appCheckTokenResult.token;
     }
 }
 /**
@@ -3301,17 +3286,20 @@ class MockReCaptcha {
         return id;
     }
     reset(optWidgetId) {
+        var _a;
         const id = optWidgetId || _WIDGET_ID_START;
-        void this._widgets.get(id)?.delete();
+        void ((_a = this._widgets.get(id)) === null || _a === void 0 ? void 0 : _a.delete());
         this._widgets.delete(id);
     }
     getResponse(optWidgetId) {
+        var _a;
         const id = optWidgetId || _WIDGET_ID_START;
-        return this._widgets.get(id)?.getResponse() || '';
+        return ((_a = this._widgets.get(id)) === null || _a === void 0 ? void 0 : _a.getResponse()) || '';
     }
     async execute(optWidgetId) {
+        var _a;
         const id = optWidgetId || _WIDGET_ID_START;
-        void this._widgets.get(id)?.execute();
+        void ((_a = this._widgets.get(id)) === null || _a === void 0 ? void 0 : _a.execute());
         return '';
     }
 }
@@ -3551,7 +3539,7 @@ async function injectRecaptchaFields(auth, request, action, isCaptchaResp = fals
             captchaResponse = await verifier.verify(action, true);
         }
     }
-    const newRequest = { ...request };
+    const newRequest = Object.assign({}, request);
     if (action === "mfaSmsEnrollment" /* RecaptchaActionName.MFA_SMS_ENROLLMENT */ ||
         action === "mfaSmsSignIn" /* RecaptchaActionName.MFA_SMS_SIGNIN */) {
         if ('phoneEnrollmentInfo' in newRequest) {
@@ -3593,10 +3581,10 @@ async function injectRecaptchaFields(auth, request, action, isCaptchaResp = fals
     return newRequest;
 }
 async function handleRecaptchaFlow(authInstance, request, actionName, actionMethod, recaptchaAuthProvider) {
+    var _a, _b;
     if (recaptchaAuthProvider === "EMAIL_PASSWORD_PROVIDER" /* RecaptchaAuthProvider.EMAIL_PASSWORD_PROVIDER */) {
-        if (authInstance
-            ._getRecaptchaConfig()
-            ?.isProviderEnabled("EMAIL_PASSWORD_PROVIDER" /* RecaptchaAuthProvider.EMAIL_PASSWORD_PROVIDER */)) {
+        if ((_a = authInstance
+            ._getRecaptchaConfig()) === null || _a === void 0 ? void 0 : _a.isProviderEnabled("EMAIL_PASSWORD_PROVIDER" /* RecaptchaAuthProvider.EMAIL_PASSWORD_PROVIDER */)) {
             const requestWithRecaptcha = await injectRecaptchaFields(authInstance, request, actionName, actionName === "getOobCode" /* RecaptchaActionName.GET_OOB_CODE */);
             return actionMethod(authInstance, requestWithRecaptcha);
         }
@@ -3614,14 +3602,13 @@ async function handleRecaptchaFlow(authInstance, request, actionName, actionMeth
         }
     }
     else if (recaptchaAuthProvider === "PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */) {
-        if (authInstance
-            ._getRecaptchaConfig()
-            ?.isProviderEnabled("PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */)) {
+        if ((_b = authInstance
+            ._getRecaptchaConfig()) === null || _b === void 0 ? void 0 : _b.isProviderEnabled("PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */)) {
             const requestWithRecaptcha = await injectRecaptchaFields(authInstance, request, actionName);
             return actionMethod(authInstance, requestWithRecaptcha).catch(async (error) => {
-                if (authInstance
-                    ._getRecaptchaConfig()
-                    ?.getProviderEnforcementState("PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */) === "AUDIT" /* EnforcementState.AUDIT */) {
+                var _a;
+                if (((_a = authInstance
+                    ._getRecaptchaConfig()) === null || _a === void 0 ? void 0 : _a.getProviderEnforcementState("PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */)) === "AUDIT" /* EnforcementState.AUDIT */) {
                     // AUDIT mode
                     if (error.code === `auth/${"missing-recaptcha-token" /* AuthErrorCode.MISSING_RECAPTCHA_TOKEN */}` ||
                         error.code === `auth/${"invalid-app-credential" /* AuthErrorCode.INVALID_APP_CREDENTIAL */}`) {
@@ -3718,7 +3705,7 @@ function initializeAuth(app$1, deps) {
     if (provider.isInitialized()) {
         const auth = provider.getImmediate();
         const initialOptions = provider.getOptions();
-        if (util.deepEqual(initialOptions, deps ?? {})) {
+        if (util.deepEqual(initialOptions, deps !== null && deps !== void 0 ? deps : {})) {
             return auth;
         }
         else {
@@ -3729,15 +3716,15 @@ function initializeAuth(app$1, deps) {
     return auth;
 }
 function _initializeAuthInstance(auth, deps) {
-    const persistence = deps?.persistence || [];
+    const persistence = (deps === null || deps === void 0 ? void 0 : deps.persistence) || [];
     const hierarchy = (Array.isArray(persistence) ? persistence : [persistence]).map(_getInstance);
-    if (deps?.errorMap) {
+    if (deps === null || deps === void 0 ? void 0 : deps.errorMap) {
         auth._updateErrorMap(deps.errorMap);
     }
     // This promise is intended to float; auth initialization happens in the
     // background, meanwhile the auth object may be used by the app.
     // eslint-disable-next-line @typescript-eslint/no-floating-promises
-    auth._initializeWithPersistence(hierarchy, deps?.popupRedirectResolver);
+    auth._initializeWithPersistence(hierarchy, deps === null || deps === void 0 ? void 0 : deps.popupRedirectResolver);
 }
 
 /**
@@ -3765,7 +3752,7 @@ function _initializeAuthInstance(auth, deps) {
 function connectAuthEmulator(auth, url, options) {
     const authInternal = _castAuth(auth);
     _assert(/^https?:\/\//.test(url), authInternal, "invalid-emulator-scheme" /* AuthErrorCode.INVALID_EMULATOR_SCHEME */);
-    const disableWarnings = !!options?.disableWarnings;
+    const disableWarnings = !!(options === null || options === void 0 ? void 0 : options.disableWarnings);
     const protocol = extractProtocol(url);
     const { host, port } = extractHostAndPort(url);
     const portStr = port === null ? '' : `:${port}`;
@@ -4091,7 +4078,7 @@ class EmailAuthCredential extends AuthCredential {
      */
     static fromJSON(json) {
         const obj = typeof json === 'string' ? JSON.parse(json) : json;
-        if (obj?.email && obj?.password) {
+        if ((obj === null || obj === void 0 ? void 0 : obj.email) && (obj === null || obj === void 0 ? void 0 : obj.password)) {
             if (obj.signInMethod === "password" /* SignInMethod.EMAIL_PASSWORD */) {
                 return this._fromEmailAndPassword(obj.email, obj.password);
             }
@@ -4251,7 +4238,7 @@ class OAuthCredential extends AuthCredential {
      */
     static fromJSON(json) {
         const obj = typeof json === 'string' ? JSON.parse(json) : json;
-        const { providerId, signInMethod, ...rest } = obj;
+        const { providerId, signInMethod } = obj, rest = tslib.__rest(obj, ["providerId", "signInMethod"]);
         if (!providerId || !signInMethod) {
             return null;
         }
@@ -4342,10 +4329,7 @@ const VERIFY_PHONE_NUMBER_FOR_EXISTING_ERROR_MAP_ = {
     ["USER_NOT_FOUND" /* ServerError.USER_NOT_FOUND */]: "user-not-found" /* AuthErrorCode.USER_DELETED */
 };
 async function verifyPhoneNumberForExisting(auth, request) {
-    const apiRequest = {
-        ...request,
-        operation: 'REAUTH'
-    };
+    const apiRequest = Object.assign(Object.assign({}, request), { operation: 'REAUTH' });
     return _performSignInRequest(auth, "POST" /* HttpMethod.POST */, "/v1/accounts:signInWithPhoneNumber" /* Endpoint.SIGN_IN_WITH_PHONE_NUMBER */, _addTidIfNecessary(auth, apiRequest), VERIFY_PHONE_NUMBER_FOR_EXISTING_ERROR_MAP_);
 }
 
@@ -4389,10 +4373,7 @@ class PhoneAuthCredential extends AuthCredential {
     }
     /** @internal */
     _linkToIdToken(auth, idToken) {
-        return linkWithPhoneNumber$1(auth, {
-            idToken,
-            ...this._makeVerificationRequest()
-        });
+        return linkWithPhoneNumber$1(auth, Object.assign({ idToken }, this._makeVerificationRequest()));
     }
     /** @internal */
     _getReauthenticationResolver(auth) {
@@ -4520,18 +4501,19 @@ class ActionCodeURL {
      * @internal
      */
     constructor(actionLink) {
+        var _a, _b, _c, _d, _e, _f;
         const searchParams = util.querystringDecode(util.extractQuerystring(actionLink));
-        const apiKey = searchParams["apiKey" /* QueryField.API_KEY */] ?? null;
-        const code = searchParams["oobCode" /* QueryField.CODE */] ?? null;
-        const operation = parseMode(searchParams["mode" /* QueryField.MODE */] ?? null);
+        const apiKey = (_a = searchParams["apiKey" /* QueryField.API_KEY */]) !== null && _a !== void 0 ? _a : null;
+        const code = (_b = searchParams["oobCode" /* QueryField.CODE */]) !== null && _b !== void 0 ? _b : null;
+        const operation = parseMode((_c = searchParams["mode" /* QueryField.MODE */]) !== null && _c !== void 0 ? _c : null);
         // Validate API key, code and mode.
         _assert(apiKey && code && operation, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
         this.apiKey = apiKey;
         this.operation = operation;
         this.code = code;
-        this.continueUrl = searchParams["continueUrl" /* QueryField.CONTINUE_URL */] ?? null;
-        this.languageCode = searchParams["lang" /* QueryField.LANGUAGE_CODE */] ?? null;
-        this.tenantId = searchParams["tenantId" /* QueryField.TENANT_ID */] ?? null;
+        this.continueUrl = (_d = searchParams["continueUrl" /* QueryField.CONTINUE_URL */]) !== null && _d !== void 0 ? _d : null;
+        this.languageCode = (_e = searchParams["lang" /* QueryField.LANGUAGE_CODE */]) !== null && _e !== void 0 ? _e : null;
+        this.tenantId = (_f = searchParams["tenantId" /* QueryField.TENANT_ID */]) !== null && _f !== void 0 ? _f : null;
     }
     /**
      * Parses the email action link string and returns an {@link ActionCodeURL} if the link is valid,
@@ -4547,7 +4529,7 @@ class ActionCodeURL {
         try {
             return new ActionCodeURL(actionLink);
         }
-        catch {
+        catch (_a) {
             return null;
         }
     }
@@ -4837,17 +4819,13 @@ class OAuthProvider extends BaseOAuthProvider {
      * or the ID token string.
      */
     credential(params) {
-        return this._credential({ ...params, nonce: params.rawNonce });
+        return this._credential(Object.assign(Object.assign({}, params), { nonce: params.rawNonce }));
     }
     /** An internal credential method that accepts more permissive options */
     _credential(params) {
         _assert(params.idToken || params.accessToken, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
         // For OAuthCredential, sign in method is same as providerId.
-        return OAuthCredential._fromParams({
-            ...params,
-            providerId: this.providerId,
-            signInMethod: this.providerId
-        });
+        return OAuthCredential._fromParams(Object.assign(Object.assign({}, params), { providerId: this.providerId, signInMethod: this.providerId }));
     }
     /**
      * Used to extract the underlying {@link OAuthCredential} from a {@link UserCredential}.
@@ -4999,7 +4977,7 @@ class FacebookAuthProvider extends BaseOAuthProvider {
         try {
             return FacebookAuthProvider.credential(tokenResponse.oauthAccessToken);
         }
-        catch {
+        catch (_a) {
             return null;
         }
     }
@@ -5121,7 +5099,7 @@ class GoogleAuthProvider extends BaseOAuthProvider {
         try {
             return GoogleAuthProvider.credential(oauthIdToken, oauthAccessToken);
         }
-        catch {
+        catch (_a) {
             return null;
         }
     }
@@ -5232,7 +5210,7 @@ class GithubAuthProvider extends BaseOAuthProvider {
         try {
             return GithubAuthProvider.credential(tokenResponse.oauthAccessToken);
         }
-        catch {
+        catch (_a) {
             return null;
         }
     }
@@ -5516,7 +5494,7 @@ class TwitterAuthProvider extends BaseOAuthProvider {
         try {
             return TwitterAuthProvider.credential(oauthAccessToken, oauthTokenSecret);
         }
-        catch {
+        catch (_a) {
             return null;
         }
     }
@@ -5632,12 +5610,13 @@ function providerIdForResponse(response) {
  * @public
  */
 async function signInAnonymously(auth) {
+    var _a;
     if (app._isFirebaseServerApp(auth.app)) {
         return Promise.reject(_serverAppCurrentUserOperationNotSupportedError(auth));
     }
     const authInternal = _castAuth(auth);
     await authInternal._initializationPromise;
-    if (authInternal.currentUser?.isAnonymous) {
+    if ((_a = authInternal.currentUser) === null || _a === void 0 ? void 0 : _a.isAnonymous) {
         // If an anonymous user is already signed in, no need to sign them in again.
         return new UserCredentialImpl({
             user: authInternal.currentUser,
@@ -5671,6 +5650,7 @@ async function signInAnonymously(auth) {
  */
 class MultiFactorError extends util.FirebaseError {
     constructor(auth, error, operationType, user) {
+        var _a;
         super(error.code, error.message);
         this.operationType = operationType;
         this.user = user;
@@ -5678,7 +5658,7 @@ class MultiFactorError extends util.FirebaseError {
         Object.setPrototypeOf(this, MultiFactorError.prototype);
         this.customData = {
             appName: auth.name,
-            tenantId: auth.tenantId ?? undefined,
+            tenantId: (_a = auth.tenantId) !== null && _a !== void 0 ? _a : undefined,
             _serverResponse: error.customData._serverResponse,
             operationType
         };
@@ -5809,7 +5789,7 @@ async function _reauthenticate(user, credential, bypassAuthState = false) {
     }
     catch (e) {
         // Convert user deleted error into user mismatch
-        if (e?.code === `auth/${"user-not-found" /* AuthErrorCode.USER_DELETED */}`) {
+        if ((e === null || e === void 0 ? void 0 : e.code) === `auth/${"user-not-found" /* AuthErrorCode.USER_DELETED */}`) {
             _fail(auth, "user-mismatch" /* AuthErrorCode.USER_MISMATCH */);
         }
         throw e;
@@ -6034,7 +6014,8 @@ class TotpMultiFactorInfoImpl extends MultiFactorInfoImpl {
  * limitations under the License.
  */
 function _setActionCodeSettingsOnRequest(auth, request, actionCodeSettings) {
-    _assert(actionCodeSettings.url?.length > 0, auth, "invalid-continue-uri" /* AuthErrorCode.INVALID_CONTINUE_URI */);
+    var _a;
+    _assert(((_a = actionCodeSettings.url) === null || _a === void 0 ? void 0 : _a.length) > 0, auth, "invalid-continue-uri" /* AuthErrorCode.INVALID_CONTINUE_URI */);
     _assert(typeof actionCodeSettings.dynamicLinkDomain === 'undefined' ||
         actionCodeSettings.dynamicLinkDomain.length > 0, auth, "invalid-dynamic-link-domain" /* AuthErrorCode.INVALID_DYNAMIC_LINK_DOMAIN */);
     _assert(typeof actionCodeSettings.linkDomain === 'undefined' ||
@@ -6395,7 +6376,7 @@ async function sendSignInLinkToEmail(auth, email, actionCodeSettings) {
  */
 function isSignInWithEmailLink(auth, emailLink) {
     const actionCodeUrl = ActionCodeURL.parseLink(emailLink);
-    return actionCodeUrl?.operation === "EMAIL_SIGNIN" /* ActionCodeOperation.EMAIL_SIGNIN */;
+    return (actionCodeUrl === null || actionCodeUrl === void 0 ? void 0 : actionCodeUrl.operation) === "EMAIL_SIGNIN" /* ActionCodeOperation.EMAIL_SIGNIN */;
 }
 /**
  * Asynchronously signs in using an email and sign-in email link.
@@ -6768,6 +6749,7 @@ async function updateEmailOrPassword(user, email, password) {
  *
  */
 function _fromIdTokenResponse(idTokenResponse) {
+    var _a, _b;
     if (!idTokenResponse) {
         return null;
     }
@@ -6777,8 +6759,8 @@ function _fromIdTokenResponse(idTokenResponse) {
         : {};
     const isNewUser = idTokenResponse.isNewUser ||
         idTokenResponse.kind === "identitytoolkit#SignupNewUserResponse" /* IdTokenResponseKind.SignupNewUser */;
-    if (!providerId && idTokenResponse?.idToken) {
-        const signInProvider = _parseToken(idTokenResponse.idToken)?.firebase?.['sign_in_provider'];
+    if (!providerId && (idTokenResponse === null || idTokenResponse === void 0 ? void 0 : idTokenResponse.idToken)) {
+        const signInProvider = (_b = (_a = _parseToken(idTokenResponse.idToken)) === null || _a === void 0 ? void 0 : _a.firebase) === null || _b === void 0 ? void 0 : _b['sign_in_provider'];
         if (signInProvider) {
             const filteredProviderId = signInProvider !== "anonymous" /* ProviderId.ANONYMOUS */ &&
                 signInProvider !== "custom" /* ProviderId.CUSTOM */
@@ -6827,7 +6809,7 @@ class FacebookAdditionalUserInfo extends GenericAdditionalUserInfo {
 }
 class GithubAdditionalUserInfo extends FederatedAdditionalUserInfoWithUsername {
     constructor(isNewUser, profile) {
-        super(isNewUser, "github.com" /* ProviderId.GITHUB */, profile, typeof profile?.login === 'string' ? profile?.login : null);
+        super(isNewUser, "github.com" /* ProviderId.GITHUB */, profile, typeof (profile === null || profile === void 0 ? void 0 : profile.login) === 'string' ? profile === null || profile === void 0 ? void 0 : profile.login : null);
     }
 }
 class GoogleAdditionalUserInfo extends GenericAdditionalUserInfo {
@@ -7127,11 +7109,12 @@ class MultiFactorSessionImpl {
         };
     }
     static fromJSON(obj) {
-        if (obj?.multiFactorSession) {
-            if (obj.multiFactorSession?.pendingCredential) {
+        var _a, _b;
+        if (obj === null || obj === void 0 ? void 0 : obj.multiFactorSession) {
+            if ((_a = obj.multiFactorSession) === null || _a === void 0 ? void 0 : _a.pendingCredential) {
                 return MultiFactorSessionImpl._fromMfaPendingCredential(obj.multiFactorSession.pendingCredential);
             }
-            else if (obj.multiFactorSession?.idToken) {
+            else if ((_b = obj.multiFactorSession) === null || _b === void 0 ? void 0 : _b.idToken) {
                 return MultiFactorSessionImpl._fromIdtoken(obj.multiFactorSession.idToken);
             }
         }
@@ -7174,11 +7157,7 @@ class MultiFactorResolverImpl {
             delete serverResponse.mfaInfo;
             delete serverResponse.mfaPendingCredential;
             // Use in the new token & refresh token in the old response
-            const idTokenResponse = {
-                ...serverResponse,
-                idToken: mfaResponse.idToken,
-                refreshToken: mfaResponse.refreshToken
-            };
+            const idTokenResponse = Object.assign(Object.assign({}, serverResponse), { idToken: mfaResponse.idToken, refreshToken: mfaResponse.refreshToken });
             // TODO: we should collapse this switch statement into UserCredentialImpl._forOperation and have it support the SIGN_IN case
             switch (error.operationType) {
                 case "signIn" /* OperationType.SIGN_IN */:
@@ -7209,10 +7188,11 @@ class MultiFactorResolverImpl {
  * @public
  */
 function getMultiFactorResolver(auth, error) {
+    var _a;
     const authModular = util.getModularInstance(auth);
     const errorInternal = error;
     _assert(error.customData.operationType, authModular, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
-    _assert(errorInternal.customData._serverResponse?.mfaPendingCredential, authModular, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+    _assert((_a = errorInternal.customData._serverResponse) === null || _a === void 0 ? void 0 : _a.mfaPendingCredential, authModular, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
     return MultiFactorResolverImpl._fromError(authModular, errorInternal);
 }
 
@@ -7352,7 +7332,7 @@ class BrowserPersistenceClass {
             this.storage.removeItem(STORAGE_AVAILABLE_KEY);
             return Promise.resolve(true);
         }
-        catch {
+        catch (_a) {
             return Promise.resolve(false);
         }
     }
@@ -7574,9 +7554,10 @@ const browserLocalPersistence = BrowserLocalPersistence;
 const POLLING_INTERVAL_MS = 1000;
 // Pull a cookie value from document.cookie
 function getDocumentCookie(name) {
+    var _a, _b;
     const escapedName = name.replace(/[\\^$.*+?()[\]{}|]/g, '\\$&');
     const matcher = RegExp(`${escapedName}=([^;]+)`);
-    return document.cookie.match(matcher)?.[1] ?? null;
+    return (_b = (_a = document.cookie.match(matcher)) === null || _a === void 0 ? void 0 : _a[1]) !== null && _b !== void 0 ? _b : null;
 }
 // Produce a sanitized cookie name from the persistence key
 function getCookieName(key) {
@@ -7604,13 +7585,14 @@ class CookiePersistence {
     // prerequisites have been met, namely that we're in a secureContext, navigator and document are
     // available and cookies are enabled. Not all UAs support these method, so fallback accordingly.
     async _isAvailable() {
+        var _a;
         if (typeof isSecureContext === 'boolean' && !isSecureContext) {
             return false;
         }
         if (typeof navigator === 'undefined' || typeof document === 'undefined') {
             return false;
         }
-        return navigator.cookieEnabled ?? true;
+        return (_a = navigator.cookieEnabled) !== null && _a !== void 0 ? _a : true;
     }
     // Set should be a noop as we expect middleware to handle this
     async _set(_key, _value) {
@@ -7624,7 +7606,7 @@ class CookiePersistence {
         const name = getCookieName(key);
         if (window.cookieStore) {
             const cookie = await window.cookieStore.get(name);
-            return cookie?.value;
+            return cookie === null || cookie === void 0 ? void 0 : cookie.value;
         }
         return getDocumentCookie(name);
     }
@@ -7835,7 +7817,7 @@ class Receiver {
         const messageEvent = event;
         const { eventId, eventType, data } = messageEvent.data;
         const handlers = this.handlersMap[eventType];
-        if (!handlers?.size) {
+        if (!(handlers === null || handlers === void 0 ? void 0 : handlers.size)) {
             return;
         }
         messageEvent.ports[0].postMessage({
@@ -8071,19 +8053,20 @@ function _isWorker() {
         typeof _window()['importScripts'] === 'function');
 }
 async function _getActiveServiceWorker() {
-    if (!navigator?.serviceWorker) {
+    if (!(navigator === null || navigator === void 0 ? void 0 : navigator.serviceWorker)) {
         return null;
     }
     try {
         const registration = await navigator.serviceWorker.ready;
         return registration.active;
     }
-    catch {
+    catch (_a) {
         return null;
     }
 }
 function _getServiceWorkerController() {
-    return navigator?.serviceWorker?.controller || null;
+    var _a;
+    return ((_a = navigator === null || navigator === void 0 ? void 0 : navigator.serviceWorker) === null || _a === void 0 ? void 0 : _a.controller) || null;
 }
 function _getWorkerGlobalScope() {
     return _isWorker() ? self : null;
@@ -8266,6 +8249,7 @@ class IndexedDBLocalPersistence {
      * may not resolve.
      */
     async initializeSender() {
+        var _a, _b;
         // Check to see if there's an active service worker.
         this.activeServiceWorker = await _getActiveServiceWorker();
         if (!this.activeServiceWorker) {
@@ -8277,8 +8261,8 @@ class IndexedDBLocalPersistence {
         if (!results) {
             return;
         }
-        if (results[0]?.fulfilled &&
-            results[0]?.value.includes("keyChanged" /* _EventType.KEY_CHANGED */)) {
+        if (((_a = results[0]) === null || _a === void 0 ? void 0 : _a.fulfilled) &&
+            ((_b = results[0]) === null || _b === void 0 ? void 0 : _b.value.includes("keyChanged" /* _EventType.KEY_CHANGED */))) {
             this.serviceWorkerReceiverAvailable = true;
         }
     }
@@ -8304,7 +8288,7 @@ class IndexedDBLocalPersistence {
                 ? 800 /* _TimeoutDuration.LONG_ACK */
                 : 50 /* _TimeoutDuration.ACK */);
         }
-        catch {
+        catch (_a) {
             // This is a best effort approach. Ignore errors.
         }
     }
@@ -8318,7 +8302,7 @@ class IndexedDBLocalPersistence {
             await _deleteObject(db, STORAGE_AVAILABLE_KEY);
             return true;
         }
-        catch { }
+        catch (_a) { }
         return false;
     }
     async _withPendingWrite(write) {
@@ -8484,6 +8468,7 @@ const NETWORK_TIMEOUT_DELAY = new Delay(30000, 60000);
  */
 class ReCaptchaLoaderImpl {
     constructor() {
+        var _a;
         this.hostLanguage = '';
         this.counter = 0;
         /**
@@ -8491,7 +8476,7 @@ class ReCaptchaLoaderImpl {
          * version of the ReCAPTCHA script was loaded by someone else (e.g. App Check) but
          * `window.grecaptcha.render()` will not. Another load will add it.
          */
-        this.librarySeparatelyLoaded = !!_window().grecaptcha?.render;
+        this.librarySeparatelyLoaded = !!((_a = _window().grecaptcha) === null || _a === void 0 ? void 0 : _a.render);
     }
     load(auth, hl = '') {
         _assert(isHostLanguageValid(hl), auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
@@ -8536,6 +8521,7 @@ class ReCaptchaLoaderImpl {
         this.counter--;
     }
     shouldResolveImmediately(hl) {
+        var _a;
         // We can resolve immediately if:
         //   • grecaptcha is already defined AND (
         //     1. the requested language codes are the same OR
@@ -8543,7 +8529,7 @@ class ReCaptchaLoaderImpl {
         //     3. the library was already loaded by the app
         // In cases (2) and (3), we _can't_ reload as it would break the recaptchas
         // that are already in the page
-        return (!!_window().grecaptcha?.render &&
+        return (!!((_a = _window().grecaptcha) === null || _a === void 0 ? void 0 : _a.render) &&
             (hl === this.hostLanguage ||
                 this.counter > 0 ||
                 this.librarySeparatelyLoaded));
@@ -8608,9 +8594,7 @@ class RecaptchaVerifier {
      * configure this upon rendering. For an invisible reCAPTCHA, a size key must have the value
      * 'invisible'.
      */
-    constructor(authExtern, containerOrId, parameters = {
-        ...DEFAULT_PARAMS
-    }) {
+    constructor(authExtern, containerOrId, parameters = Object.assign({}, DEFAULT_PARAMS)) {
         this.parameters = parameters;
         /**
          * The application verifier type.
@@ -8894,6 +8878,7 @@ async function reauthenticateWithPhoneNumber(user, phoneNumber, appVerifier) {
  *
  */
 async function _verifyPhoneNumber(auth, options, verifier) {
+    var _a;
     if (!auth._getRecaptchaConfig()) {
         try {
             await _initializeRecaptchaConfig(auth);
@@ -8930,7 +8915,7 @@ async function _verifyPhoneNumber(auth, options, verifier) {
                 const startEnrollPhoneMfaActionCallback = async (authInstance, request) => {
                     // If reCAPTCHA Enterprise token is FAKE_TOKEN, fetch reCAPTCHA v2 token and inject into request.
                     if (request.phoneEnrollmentInfo.captchaResponse === FAKE_TOKEN) {
-                        _assert(verifier?.type === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                        _assert((verifier === null || verifier === void 0 ? void 0 : verifier.type) === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
                         const requestWithRecaptchaV2 = await injectRecaptchaV2Token(authInstance, request, verifier);
                         return startEnrollPhoneMfa(authInstance, requestWithRecaptchaV2);
                     }
@@ -8944,7 +8929,7 @@ async function _verifyPhoneNumber(auth, options, verifier) {
             }
             else {
                 _assert(session.type === "signin" /* MultiFactorSessionType.SIGN_IN */, auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
-                const mfaEnrollmentId = phoneInfoOptions.multiFactorHint?.uid ||
+                const mfaEnrollmentId = ((_a = phoneInfoOptions.multiFactorHint) === null || _a === void 0 ? void 0 : _a.uid) ||
                     phoneInfoOptions.multiFactorUid;
                 _assert(mfaEnrollmentId, auth, "missing-multi-factor-info" /* AuthErrorCode.MISSING_MFA_INFO */);
                 const startPhoneMfaSignInRequest = {
@@ -8957,7 +8942,7 @@ async function _verifyPhoneNumber(auth, options, verifier) {
                 const startSignInPhoneMfaActionCallback = async (authInstance, request) => {
                     // If reCAPTCHA Enterprise token is FAKE_TOKEN, fetch reCAPTCHA v2 token and inject into request.
                     if (request.phoneSignInInfo.captchaResponse === FAKE_TOKEN) {
-                        _assert(verifier?.type === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                        _assert((verifier === null || verifier === void 0 ? void 0 : verifier.type) === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
                         const requestWithRecaptchaV2 = await injectRecaptchaV2Token(authInstance, request, verifier);
                         return startSignInPhoneMfa(authInstance, requestWithRecaptchaV2);
                     }
@@ -8978,7 +8963,7 @@ async function _verifyPhoneNumber(auth, options, verifier) {
             const sendPhoneVerificationCodeActionCallback = async (authInstance, request) => {
                 // If reCAPTCHA Enterprise token is FAKE_TOKEN, fetch reCAPTCHA v2 token and inject into request.
                 if (request.captchaResponse === FAKE_TOKEN) {
-                    _assert(verifier?.type === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                    _assert((verifier === null || verifier === void 0 ? void 0 : verifier.type) === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
                     const requestWithRecaptchaV2 = await injectRecaptchaV2Token(authInstance, request, verifier);
                     return sendPhoneVerificationCode(authInstance, requestWithRecaptchaV2);
                 }
@@ -8992,7 +8977,7 @@ async function _verifyPhoneNumber(auth, options, verifier) {
         }
     }
     finally {
-        verifier?._reset();
+        verifier === null || verifier === void 0 ? void 0 : verifier._reset();
     }
 }
 /**
@@ -9030,7 +9015,7 @@ async function injectRecaptchaV2Token(auth, request, recaptchaV2Verifier) {
     _assert(recaptchaV2Verifier.type === RECAPTCHA_VERIFIER_TYPE, auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
     const recaptchaV2Token = await recaptchaV2Verifier.verify();
     _assert(typeof recaptchaV2Token === 'string', auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
-    const newRequest = { ...request };
+    const newRequest = Object.assign({}, request);
     if ('phoneEnrollmentInfo' in newRequest) {
         const phoneNumber = newRequest.phoneEnrollmentInfo.phoneNumber;
         const captchaResponse = newRequest.phoneEnrollmentInfo.captchaResponse;
@@ -9604,7 +9589,8 @@ class PopupOperation extends AbstractPopupRedirectOperation {
         this.pollUserCancellation();
     }
     get eventId() {
-        return this.authWindow?.associatedEvent || null;
+        var _a;
+        return ((_a = this.authWindow) === null || _a === void 0 ? void 0 : _a.associatedEvent) || null;
     }
     cancel() {
         this.reject(_createError(this.auth, "cancelled-popup-request" /* AuthErrorCode.EXPIRED_POPUP_REQUEST */));
@@ -9622,7 +9608,8 @@ class PopupOperation extends AbstractPopupRedirectOperation {
     }
     pollUserCancellation() {
         const poll = () => {
-            if (this.authWindow?.window?.closed) {
+            var _a, _b;
+            if ((_b = (_a = this.authWindow) === null || _a === void 0 ? void 0 : _a.window) === null || _b === void 0 ? void 0 : _b.closed) {
                 // Make sure that there is sufficient time for whatever action to
                 // complete. The window could have closed but the sign in network
                 // call could still be in flight. This is specifically true for
@@ -10060,8 +10047,9 @@ class AuthEventManager {
         return handled;
     }
     sendToConsumer(event, consumer) {
+        var _a;
         if (event.error && !isNullRedirectEvent(event)) {
-            const code = event.error.code?.split('auth/')[1] ||
+            const code = ((_a = event.error.code) === null || _a === void 0 ? void 0 : _a.split('auth/')[1]) ||
                 "internal-error" /* AuthErrorCode.INTERNAL_ERROR */;
             consumer.onError(_createError(this.auth, code));
         }
@@ -10091,7 +10079,7 @@ function eventUid(e) {
 }
 function isNullRedirectEvent({ type, error }) {
     return (type === "unknown" /* AuthEventType.UNKNOWN */ &&
-        error?.code === `auth/${"no-auth-event" /* AuthErrorCode.NO_AUTH_EVENT */}`);
+        (error === null || error === void 0 ? void 0 : error.code) === `auth/${"no-auth-event" /* AuthErrorCode.NO_AUTH_EVENT */}`);
 }
 function isRedirectEvent(event) {
     switch (event.type) {
@@ -10156,7 +10144,7 @@ async function _validateOrigin(auth) {
                 return;
             }
         }
-        catch {
+        catch (_a) {
             // Do nothing if there's a URL error; just continue searching
         }
     }
@@ -10219,7 +10207,7 @@ function resetUnloadedGapiModules() {
     // Get gapix.beacon context.
     const beacon = _window().___jsl;
     // Get current hint.
-    if (beacon?.H) {
+    if (beacon === null || beacon === void 0 ? void 0 : beacon.H) {
         // Get gapi hint.
         for (const hint of Object.keys(beacon.H)) {
             // Requested modules.
@@ -10240,6 +10228,7 @@ function resetUnloadedGapiModules() {
 }
 function loadGapi(auth) {
     return new Promise((resolve, reject) => {
+        var _a, _b, _c;
         // Function to run when gapi.load is ready.
         function loadGapiIframe() {
             // The developer may have tried to previously run gapi.load and failed.
@@ -10262,11 +10251,11 @@ function loadGapi(auth) {
                 timeout: NETWORK_TIMEOUT.get()
             });
         }
-        if (_window().gapi?.iframes?.Iframe) {
+        if ((_b = (_a = _window().gapi) === null || _a === void 0 ? void 0 : _a.iframes) === null || _b === void 0 ? void 0 : _b.Iframe) {
             // If gapi.iframes.Iframe available, resolve.
             resolve(gapi.iframes.getContext());
         }
-        else if (!!_window().gapi?.load) {
+        else if (!!((_c = _window().gapi) === null || _c === void 0 ? void 0 : _c.load)) {
             // Gapi loader ready, load gapi.iframes.
             loadGapiIframe();
         }
@@ -10439,13 +10428,8 @@ function _open(auth, url, name, width = DEFAULT_WIDTH, height = DEFAULT_HEIGHT)
     const top = Math.max((window.screen.availHeight - height) / 2, 0).toString();
     const left = Math.max((window.screen.availWidth - width) / 2, 0).toString();
     let target = '';
-    const options = {
-        ...BASE_POPUP_OPTIONS,
-        width: width.toString(),
-        height: height.toString(),
-        top,
-        left
-    };
+    const options = Object.assign(Object.assign({}, BASE_POPUP_OPTIONS), { width: width.toString(), height: height.toString(), top,
+        left });
     // Chrome iOS 7 and 8 is returning an undefined popup win when target is
     // specified, even though the popup is not necessarily blocked.
     const ua = util.getUA().toLowerCase();
@@ -10605,7 +10589,8 @@ class BrowserPopupRedirectResolver {
     // Wrapping in async even though we don't await anywhere in order
     // to make sure errors are raised as promise rejections
     async _openPopup(auth, provider, authType, eventId) {
-        debugAssert(this.eventManagers[auth._key()]?.manager, '_initialize() not called before _openPopup()');
+        var _a;
+        debugAssert((_a = this.eventManagers[auth._key()]) === null || _a === void 0 ? void 0 : _a.manager, '_initialize() not called before _openPopup()');
         const url = await _getRedirectUrl(auth, provider, authType, _getCurrentUrl(), eventId);
         return _open(auth, url, _generateEventId());
     }
@@ -10640,7 +10625,7 @@ class BrowserPopupRedirectResolver {
         const iframe = await _openIframe(auth);
         const manager = new AuthEventManager(auth);
         iframe.register('authEvent', (iframeEvent) => {
-            _assert(iframeEvent?.authEvent, auth, "invalid-auth-event" /* AuthErrorCode.INVALID_AUTH_EVENT */);
+            _assert(iframeEvent === null || iframeEvent === void 0 ? void 0 : iframeEvent.authEvent, auth, "invalid-auth-event" /* AuthErrorCode.INVALID_AUTH_EVENT */);
             // TODO: Consider splitting redirect and popup events earlier on
             const handled = manager.onEvent(iframeEvent.authEvent);
             return { status: handled ? "ACK" /* GapiOutcome.ACK */ : "ERROR" /* GapiOutcome.ERROR */ };
@@ -10652,7 +10637,8 @@ class BrowserPopupRedirectResolver {
     _isIframeWebStorageSupported(auth, cb) {
         const iframe = this.iframes[auth._key()];
         iframe.send(WEB_STORAGE_SUPPORT_KEY, { type: WEB_STORAGE_SUPPORT_KEY }, result => {
-            const isSupported = result?.[0]?.[WEB_STORAGE_SUPPORT_KEY];
+            var _a;
+            const isSupported = (_a = result === null || result === void 0 ? void 0 : result[0]) === null || _a === void 0 ? void 0 : _a[WEB_STORAGE_SUPPORT_KEY];
             if (isSupported !== undefined) {
                 cb(!!isSupported);
             }
@@ -10795,8 +10781,9 @@ class TotpMultiFactorGenerator {
      * @returns A promise to {@link TotpSecret}.
      */
     static async generateSecret(session) {
+        var _a;
         const mfaSession = session;
-        _assert(typeof mfaSession.user?.auth !== 'undefined', "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
+        _assert(typeof ((_a = mfaSession.user) === null || _a === void 0 ? void 0 : _a.auth) !== 'undefined', "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
         const response = await startEnrollTotpMfa(mfaSession.user.auth, {
             idToken: mfaSession.credential,
             totpEnrollmentInfo: {}
@@ -10880,13 +10867,14 @@ class TotpSecret {
      * @returns A QR code URL string.
      */
     generateQrCodeUrl(accountName, issuer) {
+        var _a;
         let useDefaults = false;
         if (_isEmptyString(accountName) || _isEmptyString(issuer)) {
             useDefaults = true;
         }
         if (useDefaults) {
             if (_isEmptyString(accountName)) {
-                accountName = this.auth.currentUser?.email || 'unknownuser';
+                accountName = ((_a = this.auth.currentUser) === null || _a === void 0 ? void 0 : _a.email) || 'unknownuser';
             }
             if (_isEmptyString(issuer)) {
                 issuer = this.auth.name;
@@ -10897,11 +10885,11 @@ class TotpSecret {
 }
 /** @internal */
 function _isEmptyString(input) {
-    return typeof input === 'undefined' || input?.length === 0;
+    return typeof input === 'undefined' || (input === null || input === void 0 ? void 0 : input.length) === 0;
 }
 
 var name = "@firebase/auth";
-var version = "1.10.8-canary.2d720995d";
+var version = "1.10.8-canary.f11b55294";
 
 /**
  * @license
@@ -10925,8 +10913,9 @@ class AuthInterop {
         this.internalListeners = new Map();
     }
     getUid() {
+        var _a;
         this.assertAuthConfigured();
-        return this.auth.currentUser?.uid || null;
+        return ((_a = this.auth.currentUser) === null || _a === void 0 ? void 0 : _a.uid) || null;
     }
     async getToken(forceRefresh) {
         this.assertAuthConfigured();
@@ -10943,7 +10932,7 @@ class AuthInterop {
             return;
         }
         const unsubscribe = this.auth.onIdTokenChanged(user => {
-            listener(user?.stsTokenManager.accessToken || null);
+            listener((user === null || user === void 0 ? void 0 : user.stsTokenManager.accessToken) || null);
         });
         this.internalListeners.set(listener, unsubscribe);
         this.updateProactiveRefresh();
@@ -11042,8 +11031,8 @@ function registerAuth(clientPlatform) {
         return (auth => new AuthInterop(auth))(auth);
     }, "PRIVATE" /* ComponentType.PRIVATE */).setInstantiationMode("EXPLICIT" /* InstantiationMode.EXPLICIT */));
     app.registerVersion(name, version, getVersionForPlatform(clientPlatform));
-    // BUILD_TARGET will be replaced by values like esm, cjs, etc during the compilation
-    app.registerVersion(name, version, 'cjs2020');
+    // BUILD_TARGET will be replaced by values like esm2017, cjs2017, etc during the compilation
+    app.registerVersion(name, version, 'cjs2017');
 }
 
 /**
@@ -11073,7 +11062,7 @@ const mintCookieFactory = (url) => async (user) => {
         return;
     }
     // Specifically trip null => undefined when logged out, to delete any existing cookie
-    const idToken = idTokenResult?.token;
+    const idToken = idTokenResult === null || idTokenResult === void 0 ? void 0 : idTokenResult.token;
     if (lastPostedIdToken === idToken) {
         return;
     }
@@ -11128,7 +11117,8 @@ function getAuth(app$1 = app.getApp()) {
     return auth;
 }
 function getScriptParentElement() {
-    return document.getElementsByTagName('head')?.[0] ?? document;
+    var _a, _b;
+    return (_b = (_a = document.getElementsByTagName('head')) === null || _a === void 0 ? void 0 : _a[0]) !== null && _b !== void 0 ? _b : document;
 }
 _setExternalJSProvider({
     loadJS(url) {
@@ -11261,4 +11251,4 @@ exports.useDeviceLanguage = useDeviceLanguage;
 exports.validatePassword = validatePassword;
 exports.verifyBeforeUpdateEmail = verifyBeforeUpdateEmail;
 exports.verifyPasswordResetCode = verifyPasswordResetCode;
-//# sourceMappingURL=index-6ce158e3.js.map
+//# sourceMappingURL=index-8213225f.js.map