@firebase/auth 1.3.2 → 1.4.0-canary.00235ba68
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/auth-public.d.ts +24 -2
- package/dist/auth.d.ts +26 -3
- package/dist/browser-cjs/{index-770706ba.js → index-d50ad728.js} +68 -11
- package/dist/browser-cjs/index-d50ad728.js.map +1 -0
- package/dist/browser-cjs/index.js +2 -1
- package/dist/browser-cjs/index.js.map +1 -1
- package/dist/browser-cjs/internal.js +2 -1
- package/dist/browser-cjs/internal.js.map +1 -1
- package/dist/browser-cjs/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/browser-cjs/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/browser-cjs/src/api/authentication/token.d.ts +13 -2
- package/dist/browser-cjs/src/api/errors.d.ts +1 -0
- package/dist/browser-cjs/src/api/index.d.ts +3 -1
- package/dist/browser-cjs/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/browser-cjs/src/core/errors.d.ts +2 -1
- package/dist/browser-cjs/src/core/index.d.ts +9 -0
- package/dist/browser-cjs/src/core/strategies/email.d.ts +5 -1
- package/dist/browser-cjs/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/browser-cjs/src/core/user/account_info.d.ts +3 -0
- package/dist/browser-cjs/src/model/auth.d.ts +1 -0
- package/dist/cordova/index.js +2 -2
- package/dist/cordova/internal.js +2 -2
- package/dist/cordova/{popup_redirect-a9365a6c.js → popup_redirect-599b3914.js} +92 -15
- package/dist/cordova/popup_redirect-599b3914.js.map +1 -0
- package/dist/cordova/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/cordova/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/cordova/src/api/authentication/token.d.ts +13 -2
- package/dist/cordova/src/api/errors.d.ts +1 -0
- package/dist/cordova/src/api/index.d.ts +3 -1
- package/dist/cordova/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/cordova/src/core/errors.d.ts +2 -1
- package/dist/cordova/src/core/index.d.ts +9 -0
- package/dist/cordova/src/core/strategies/email.d.ts +5 -1
- package/dist/cordova/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/cordova/src/core/user/account_info.d.ts +3 -0
- package/dist/cordova/src/model/auth.d.ts +1 -0
- package/dist/esm2017/{index-94e5f531.js → index-2b54b271.js} +68 -12
- package/dist/esm2017/index-2b54b271.js.map +1 -0
- package/dist/esm2017/index.js +1 -1
- package/dist/esm2017/internal.js +2 -2
- package/dist/esm2017/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/esm2017/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/esm2017/src/api/authentication/token.d.ts +13 -2
- package/dist/esm2017/src/api/errors.d.ts +1 -0
- package/dist/esm2017/src/api/index.d.ts +3 -1
- package/dist/esm2017/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/esm2017/src/core/errors.d.ts +2 -1
- package/dist/esm2017/src/core/index.d.ts +9 -0
- package/dist/esm2017/src/core/strategies/email.d.ts +5 -1
- package/dist/esm2017/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/esm2017/src/core/user/account_info.d.ts +3 -0
- package/dist/esm2017/src/model/auth.d.ts +1 -0
- package/dist/esm5/{index-7b6c682b.js → index-ab0a3e4e.js} +92 -15
- package/dist/esm5/index-ab0a3e4e.js.map +1 -0
- package/dist/esm5/index.js +1 -1
- package/dist/esm5/internal.js +2 -2
- package/dist/esm5/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/esm5/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/esm5/src/api/authentication/token.d.ts +13 -2
- package/dist/esm5/src/api/errors.d.ts +1 -0
- package/dist/esm5/src/api/index.d.ts +3 -1
- package/dist/esm5/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/esm5/src/core/errors.d.ts +2 -1
- package/dist/esm5/src/core/index.d.ts +9 -0
- package/dist/esm5/src/core/strategies/email.d.ts +5 -1
- package/dist/esm5/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/esm5/src/core/user/account_info.d.ts +3 -0
- package/dist/esm5/src/model/auth.d.ts +1 -0
- package/dist/index.webworker.esm5.js +91 -14
- package/dist/index.webworker.esm5.js.map +1 -1
- package/dist/node/index.js +3 -2
- package/dist/node/index.js.map +1 -1
- package/dist/node/internal.js +3 -2
- package/dist/node/internal.js.map +1 -1
- package/dist/node/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/node/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/node/src/api/authentication/token.d.ts +13 -2
- package/dist/node/src/api/errors.d.ts +1 -0
- package/dist/node/src/api/index.d.ts +3 -1
- package/dist/node/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/node/src/core/errors.d.ts +2 -1
- package/dist/node/src/core/index.d.ts +9 -0
- package/dist/node/src/core/strategies/email.d.ts +5 -1
- package/dist/node/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/node/src/core/user/account_info.d.ts +3 -0
- package/dist/node/src/model/auth.d.ts +1 -0
- package/dist/node/{totp-24a79064.js → totp-b6ed1d9d.js} +94 -36
- package/dist/node/totp-b6ed1d9d.js.map +1 -0
- package/dist/node-esm/index.js +2 -2
- package/dist/node-esm/internal.js +3 -3
- package/dist/node-esm/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/node-esm/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/node-esm/src/api/authentication/token.d.ts +13 -2
- package/dist/node-esm/src/api/errors.d.ts +1 -0
- package/dist/node-esm/src/api/index.d.ts +3 -1
- package/dist/node-esm/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/node-esm/src/core/errors.d.ts +2 -1
- package/dist/node-esm/src/core/index.d.ts +9 -0
- package/dist/node-esm/src/core/strategies/email.d.ts +5 -1
- package/dist/node-esm/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/node-esm/src/core/user/account_info.d.ts +3 -0
- package/dist/node-esm/src/model/auth.d.ts +1 -0
- package/dist/node-esm/{totp-a0f18007.js → totp-aa0a9277.js} +70 -14
- package/dist/node-esm/totp-aa0a9277.js.map +1 -0
- package/dist/rn/{index-3d9ec48b.js → index-943ed676.js} +92 -14
- package/dist/rn/index-943ed676.js.map +1 -0
- package/dist/rn/index.js +2 -1
- package/dist/rn/index.js.map +1 -1
- package/dist/rn/internal.js +2 -1
- package/dist/rn/internal.js.map +1 -1
- package/dist/rn/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/rn/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/rn/src/api/authentication/token.d.ts +13 -2
- package/dist/rn/src/api/errors.d.ts +1 -0
- package/dist/rn/src/api/index.d.ts +3 -1
- package/dist/rn/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/rn/src/core/errors.d.ts +2 -1
- package/dist/rn/src/core/index.d.ts +9 -0
- package/dist/rn/src/core/strategies/email.d.ts +5 -1
- package/dist/rn/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/rn/src/core/user/account_info.d.ts +3 -0
- package/dist/rn/src/model/auth.d.ts +1 -0
- package/dist/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/src/api/authentication/token.d.ts +13 -2
- package/dist/src/api/errors.d.ts +1 -0
- package/dist/src/api/index.d.ts +3 -1
- package/dist/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/src/core/errors.d.ts +2 -1
- package/dist/src/core/index.d.ts +9 -0
- package/dist/src/core/strategies/email.d.ts +5 -1
- package/dist/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/src/core/user/account_info.d.ts +3 -0
- package/dist/src/model/auth.d.ts +1 -0
- package/package.json +7 -7
- package/dist/browser-cjs/index-770706ba.js.map +0 -1
- package/dist/cordova/popup_redirect-a9365a6c.js.map +0 -1
- package/dist/esm2017/index-94e5f531.js.map +0 -1
- package/dist/esm5/index-7b6c682b.js.map +0 -1
- package/dist/node/totp-24a79064.js.map +0 -1
- package/dist/node-esm/totp-a0f18007.js.map +0 -1
- package/dist/rn/index-3d9ec48b.js.map +0 -1
package/dist/esm5/index.js
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
export { A as ActionCodeOperation,
|
|
1
|
+
export { A as ActionCodeOperation, ai as ActionCodeURL, L as AuthCredential, I as AuthErrorCodes, M as EmailAuthCredential, V as EmailAuthProvider, W as FacebookAuthProvider, F as FactorId, Y as GithubAuthProvider, X as GoogleAuthProvider, N as OAuthCredential, Z as OAuthProvider, O as OperationType, Q as PhoneAuthCredential, P as PhoneAuthProvider, m as PhoneMultiFactorGenerator, p as ProviderId, R as RecaptchaVerifier, _ as SAMLAuthProvider, S as SignInMethod, T as TotpMultiFactorGenerator, n as TotpSecret, $ as TwitterAuthProvider, a7 as applyActionCode, x as beforeAuthStateChanged, b as browserLocalPersistence, k as browserPopupRedirectResolver, a as browserSessionPersistence, a8 as checkActionCode, a6 as confirmPasswordReset, K as connectAuthEmulator, aa as createUserWithEmailAndPassword, G as debugErrorMap, E as deleteUser, af as fetchSignInMethodsForEmail, aq as getAdditionalUserInfo, o as getAuth, an as getIdToken, ao as getIdTokenResult, as as getMultiFactorResolver, j as getRedirectResult, U as inMemoryPersistence, i as indexedDBLocalPersistence, J as initializeAuth, t as initializeRecaptchaConfig, ad as isSignInWithEmailLink, a2 as linkWithCredential, l as linkWithPhoneNumber, d as linkWithPopup, g as linkWithRedirect, at as multiFactor, y as onAuthStateChanged, w as onIdTokenChanged, aj as parseActionCodeURL, H as prodErrorMap, a3 as reauthenticateWithCredential, r as reauthenticateWithPhoneNumber, e as reauthenticateWithPopup, h as reauthenticateWithRedirect, ar as reload, D as revokeAccessToken, ag as sendEmailVerification, a5 as sendPasswordResetEmail, ac as sendSignInLinkToEmail, q as setPersistence, a0 as signInAnonymously, a1 as signInWithCredential, a4 as signInWithCustomToken, ab as signInWithEmailAndPassword, ae as signInWithEmailLink, s as signInWithPhoneNumber, c as signInWithPopup, f as signInWithRedirect, C as signOut, ap as unlink, B as updateCurrentUser, al as updateEmail, am as updatePassword, u as updatePhoneNumber, ak as updateProfile, z as useDeviceLanguage, v as validatePassword, ah as verifyBeforeUpdateEmail, a9 as verifyPasswordResetCode } from './index-ab0a3e4e.js';
|
|
2
2
|
import 'tslib';
|
|
3
3
|
import '@firebase/util';
|
|
4
4
|
import '@firebase/app';
|
package/dist/esm5/internal.js
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import {
|
|
2
|
-
export { A as ActionCodeOperation,
|
|
1
|
+
import { au as _isIOS, av as _isAndroid, aw as _fail, ax as _getRedirectUrl, ay as debugAssert, az as _getProjectConfig, aA as _isIOS7Or8, aB as _assert, aC as _createError, aD as AuthEventManager, aE as _getInstance, b as browserLocalPersistence, aF as _persistenceKeyName, aG as _clearRedirectOutcomes, a as browserSessionPersistence, aH as _getRedirectResult, aI as _overrideRedirectResult, aJ as _castAuth } from './index-ab0a3e4e.js';
|
|
2
|
+
export { A as ActionCodeOperation, ai as ActionCodeURL, L as AuthCredential, I as AuthErrorCodes, aL as AuthImpl, aO as AuthPopup, M as EmailAuthCredential, V as EmailAuthProvider, W as FacebookAuthProvider, F as FactorId, aP as FetchProvider, Y as GithubAuthProvider, X as GoogleAuthProvider, N as OAuthCredential, Z as OAuthProvider, O as OperationType, Q as PhoneAuthCredential, P as PhoneAuthProvider, m as PhoneMultiFactorGenerator, p as ProviderId, R as RecaptchaVerifier, aQ as SAMLAuthCredential, _ as SAMLAuthProvider, S as SignInMethod, T as TotpMultiFactorGenerator, n as TotpSecret, $ as TwitterAuthProvider, aK as UserImpl, aB as _assert, aJ as _castAuth, aw as _fail, aN as _generateEventId, aM as _getClientVersion, aE as _getInstance, aH as _getRedirectResult, aI as _overrideRedirectResult, aF as _persistenceKeyName, a7 as applyActionCode, x as beforeAuthStateChanged, b as browserLocalPersistence, k as browserPopupRedirectResolver, a as browserSessionPersistence, a8 as checkActionCode, a6 as confirmPasswordReset, K as connectAuthEmulator, aa as createUserWithEmailAndPassword, G as debugErrorMap, E as deleteUser, af as fetchSignInMethodsForEmail, aq as getAdditionalUserInfo, o as getAuth, an as getIdToken, ao as getIdTokenResult, as as getMultiFactorResolver, j as getRedirectResult, U as inMemoryPersistence, i as indexedDBLocalPersistence, J as initializeAuth, t as initializeRecaptchaConfig, ad as isSignInWithEmailLink, a2 as linkWithCredential, l as linkWithPhoneNumber, d as linkWithPopup, g as linkWithRedirect, at as multiFactor, y as onAuthStateChanged, w as onIdTokenChanged, aj as parseActionCodeURL, H as prodErrorMap, a3 as reauthenticateWithCredential, r as reauthenticateWithPhoneNumber, e as reauthenticateWithPopup, h as reauthenticateWithRedirect, ar as reload, D as revokeAccessToken, ag as sendEmailVerification, a5 as sendPasswordResetEmail, ac as sendSignInLinkToEmail, q as setPersistence, a0 as signInAnonymously, a1 as signInWithCredential, a4 as signInWithCustomToken, ab as signInWithEmailAndPassword, ae as signInWithEmailLink, s as signInWithPhoneNumber, c as signInWithPopup, f as signInWithRedirect, C as signOut, ap as unlink, B as updateCurrentUser, al as updateEmail, am as updatePassword, u as updatePhoneNumber, ak as updateProfile, z as useDeviceLanguage, v as validatePassword, ah as verifyBeforeUpdateEmail, a9 as verifyPasswordResetCode } from './index-ab0a3e4e.js';
|
|
3
3
|
import { __awaiter, __generator, __extends } from 'tslib';
|
|
4
4
|
import { querystringDecode } from '@firebase/util';
|
|
5
5
|
import '@firebase/app';
|
|
@@ -17,6 +17,7 @@
|
|
|
17
17
|
import { ActionCodeOperation, Auth } from '../../model/public_types';
|
|
18
18
|
import { IdTokenResponse } from '../../model/id_token';
|
|
19
19
|
import { MfaEnrollment } from './mfa';
|
|
20
|
+
import { SignUpRequest, SignUpResponse } from '../authentication/sign_up';
|
|
20
21
|
export interface ResetPasswordRequest {
|
|
21
22
|
oobCode: string;
|
|
22
23
|
newPassword?: string;
|
|
@@ -38,6 +39,7 @@ export interface UpdateEmailPasswordRequest {
|
|
|
38
39
|
export interface UpdateEmailPasswordResponse extends IdTokenResponse {
|
|
39
40
|
}
|
|
40
41
|
export declare function updateEmailPassword(auth: Auth, request: UpdateEmailPasswordRequest): Promise<UpdateEmailPasswordResponse>;
|
|
42
|
+
export declare function linkEmailPassword(auth: Auth, request: SignUpRequest): Promise<SignUpResponse>;
|
|
41
43
|
export interface ApplyActionCodeRequest {
|
|
42
44
|
oobCode: string;
|
|
43
45
|
tenantId?: string;
|
|
@@ -18,6 +18,7 @@ import { RecaptchaClientType, RecaptchaVersion } from '../index';
|
|
|
18
18
|
import { IdTokenResponse } from '../../model/id_token';
|
|
19
19
|
import { Auth } from '../../model/public_types';
|
|
20
20
|
export interface SignUpRequest {
|
|
21
|
+
idToken?: string;
|
|
21
22
|
returnSecureToken?: boolean;
|
|
22
23
|
email?: string;
|
|
23
24
|
password?: string;
|
|
@@ -15,12 +15,23 @@
|
|
|
15
15
|
* limitations under the License.
|
|
16
16
|
*/
|
|
17
17
|
import { Auth } from '../../model/public_types';
|
|
18
|
-
export declare const enum
|
|
19
|
-
|
|
18
|
+
export declare const enum TokenType {
|
|
19
|
+
REFRESH_TOKEN = "REFRESH_TOKEN",
|
|
20
|
+
ACCESS_TOKEN = "ACCESS_TOKEN"
|
|
20
21
|
}
|
|
21
22
|
export interface RequestStsTokenResponse {
|
|
22
23
|
accessToken: string;
|
|
23
24
|
expiresIn: string;
|
|
24
25
|
refreshToken: string;
|
|
25
26
|
}
|
|
27
|
+
export interface RevokeTokenRequest {
|
|
28
|
+
providerId: string;
|
|
29
|
+
tokenType: TokenType;
|
|
30
|
+
token: string;
|
|
31
|
+
idToken: string;
|
|
32
|
+
tenantId?: string;
|
|
33
|
+
}
|
|
34
|
+
export interface RevokeTokenResponse {
|
|
35
|
+
}
|
|
26
36
|
export declare function requestStsToken(auth: Auth, refreshToken: string): Promise<RequestStsTokenResponse>;
|
|
37
|
+
export declare function revokeToken(auth: Auth, request: RevokeTokenRequest): Promise<RevokeTokenResponse>;
|
|
@@ -42,6 +42,7 @@ export declare const enum ServerError {
|
|
|
42
42
|
INVALID_ID_TOKEN = "INVALID_ID_TOKEN",
|
|
43
43
|
INVALID_IDP_RESPONSE = "INVALID_IDP_RESPONSE",
|
|
44
44
|
INVALID_IDENTIFIER = "INVALID_IDENTIFIER",
|
|
45
|
+
INVALID_LOGIN_CREDENTIALS = "INVALID_LOGIN_CREDENTIALS",
|
|
45
46
|
INVALID_MESSAGE_PAYLOAD = "INVALID_MESSAGE_PAYLOAD",
|
|
46
47
|
INVALID_MFA_PENDING_CREDENTIAL = "INVALID_MFA_PENDING_CREDENTIAL",
|
|
47
48
|
INVALID_OAUTH_CLIENT_ID = "INVALID_OAUTH_CLIENT_ID",
|
|
@@ -54,7 +54,9 @@ export declare const enum Endpoint {
|
|
|
54
54
|
WITHDRAW_MFA = "/v2/accounts/mfaEnrollment:withdraw",
|
|
55
55
|
GET_PROJECT_CONFIG = "/v1/projects",
|
|
56
56
|
GET_RECAPTCHA_CONFIG = "/v2/recaptchaConfig",
|
|
57
|
-
GET_PASSWORD_POLICY = "/v2/passwordPolicy"
|
|
57
|
+
GET_PASSWORD_POLICY = "/v2/passwordPolicy",
|
|
58
|
+
TOKEN = "/v1/token",
|
|
59
|
+
REVOKE_TOKEN = "/v2/accounts:revokeToken"
|
|
58
60
|
}
|
|
59
61
|
export declare const enum RecaptchaClientType {
|
|
60
62
|
WEB = "CLIENT_TYPE_WEB",
|
|
@@ -87,6 +87,10 @@ export declare class AuthImpl implements AuthInternal, _FirebaseService {
|
|
|
87
87
|
beforeAuthStateChanged(callback: (user: User | null) => void | Promise<void>, onAbort?: () => void): Unsubscribe;
|
|
88
88
|
onIdTokenChanged(nextOrObserver: NextOrObserver<User>, error?: ErrorFn, completed?: CompleteFn): Unsubscribe;
|
|
89
89
|
authStateReady(): Promise<void>;
|
|
90
|
+
/**
|
|
91
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
92
|
+
*/
|
|
93
|
+
revokeAccessToken(token: string): Promise<void>;
|
|
90
94
|
toJSON(): object;
|
|
91
95
|
_setRedirectUser(user: UserInternal | null, popupRedirectResolver?: PopupRedirectResolver): Promise<void>;
|
|
92
96
|
private getOrInitRedirectPersistenceManager;
|
|
@@ -57,7 +57,7 @@ export declare const enum AuthErrorCode {
|
|
|
57
57
|
INVALID_DYNAMIC_LINK_DOMAIN = "invalid-dynamic-link-domain",
|
|
58
58
|
INVALID_EMAIL = "invalid-email",
|
|
59
59
|
INVALID_EMULATOR_SCHEME = "invalid-emulator-scheme",
|
|
60
|
-
|
|
60
|
+
INVALID_CREDENTIAL = "invalid-credential",
|
|
61
61
|
INVALID_MESSAGE_PAYLOAD = "invalid-message-payload",
|
|
62
62
|
INVALID_MFA_SESSION = "invalid-multi-factor-session",
|
|
63
63
|
INVALID_OAUTH_CLIENT_ID = "invalid-oauth-client-id",
|
|
@@ -250,6 +250,7 @@ export declare const AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY: {
|
|
|
250
250
|
readonly INVALID_EMAIL: "auth/invalid-email";
|
|
251
251
|
readonly INVALID_EMULATOR_SCHEME: "auth/invalid-emulator-scheme";
|
|
252
252
|
readonly INVALID_IDP_RESPONSE: "auth/invalid-credential";
|
|
253
|
+
readonly INVALID_LOGIN_CREDENTIALS: "auth/invalid-credential";
|
|
253
254
|
readonly INVALID_MESSAGE_PAYLOAD: "auth/invalid-message-payload";
|
|
254
255
|
readonly INVALID_MFA_SESSION: "auth/invalid-multi-factor-session";
|
|
255
256
|
readonly INVALID_OAUTH_CLIENT_ID: "auth/invalid-oauth-client-id";
|
|
@@ -171,6 +171,15 @@ export declare function updateCurrentUser(auth: Auth, user: User | null): Promis
|
|
|
171
171
|
* @public
|
|
172
172
|
*/
|
|
173
173
|
export declare function signOut(auth: Auth): Promise<void>;
|
|
174
|
+
/**
|
|
175
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
176
|
+
*
|
|
177
|
+
* @param auth - The {@link Auth} instance.
|
|
178
|
+
* @param token - The Apple OAuth access token.
|
|
179
|
+
*
|
|
180
|
+
* @public
|
|
181
|
+
*/
|
|
182
|
+
export declare function revokeAccessToken(auth: Auth, token: string): Promise<void>;
|
|
174
183
|
export { initializeAuth } from './auth/initialize';
|
|
175
184
|
export { connectAuthEmulator } from './auth/emulator';
|
|
176
185
|
export { AuthCredential } from './credentials';
|
|
@@ -16,7 +16,9 @@
|
|
|
16
16
|
*/
|
|
17
17
|
import { ActionCodeSettings, Auth, User } from '../../model/public_types';
|
|
18
18
|
/**
|
|
19
|
-
* Gets the list of possible sign in methods for the given email address.
|
|
19
|
+
* Gets the list of possible sign in methods for the given email address. This method returns an
|
|
20
|
+
* empty list when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled, irrespective of the number of
|
|
21
|
+
* authentication methods available for the given email.
|
|
20
22
|
*
|
|
21
23
|
* @remarks
|
|
22
24
|
* This is useful to differentiate methods of sign-in for the same provider, eg.
|
|
@@ -27,6 +29,8 @@ import { ActionCodeSettings, Auth, User } from '../../model/public_types';
|
|
|
27
29
|
* @param auth - The {@link Auth} instance.
|
|
28
30
|
* @param email - The user's email address.
|
|
29
31
|
*
|
|
32
|
+
* Deprecated. Migrating off of this method is recommended as a security best-practice.
|
|
33
|
+
* Learn more in the Identity Platform documentation for [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection).
|
|
30
34
|
* @public
|
|
31
35
|
*/
|
|
32
36
|
export declare function fetchSignInMethodsForEmail(auth: Auth, email: string): Promise<string[]>;
|
|
@@ -16,7 +16,9 @@
|
|
|
16
16
|
*/
|
|
17
17
|
import { ActionCodeInfo, ActionCodeSettings, Auth, UserCredential } from '../../model/public_types';
|
|
18
18
|
/**
|
|
19
|
-
* Sends a password reset email to the given email address.
|
|
19
|
+
* Sends a password reset email to the given email address. This method does not throw an error when
|
|
20
|
+
* there's no user account with the given email address and
|
|
21
|
+
* [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
20
22
|
*
|
|
21
23
|
* @remarks
|
|
22
24
|
* To complete the password reset, call {@link confirmPasswordReset} with the code supplied in
|
|
@@ -112,6 +114,8 @@ export declare function createUserWithEmailAndPassword(auth: Auth, email: string
|
|
|
112
114
|
*
|
|
113
115
|
* @remarks
|
|
114
116
|
* Fails with an error if the email address and password do not match.
|
|
117
|
+
* When [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled,
|
|
118
|
+
* this method fails with "auth/invalid-credential" in case of an invalid email/password.
|
|
115
119
|
*
|
|
116
120
|
* Note: The user's password is NOT the password used to access the user's email account. The
|
|
117
121
|
* email address serves as a unique identifier for the user, and the password is used to access
|
|
@@ -41,6 +41,9 @@ export declare function updateProfile(user: User, { displayName, photoURL: photo
|
|
|
41
41
|
* @param user - The user.
|
|
42
42
|
* @param newEmail - The new email address.
|
|
43
43
|
*
|
|
44
|
+
* Throws "auth/operation-not-allowed" error when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
45
|
+
* Deprecated - Use {@link verifyBeforeUpdateEmail} instead.
|
|
46
|
+
*
|
|
44
47
|
* @public
|
|
45
48
|
*/
|
|
46
49
|
export declare function updateEmail(user: User, newEmail: string): Promise<void>;
|
|
@@ -76,7 +76,7 @@ function _debugErrorMap() {
|
|
|
76
76
|
_a["invalid-emulator-scheme" /* AuthErrorCode.INVALID_EMULATOR_SCHEME */] = 'Emulator URL must start with a valid scheme (http:// or https://).',
|
|
77
77
|
_a["invalid-api-key" /* AuthErrorCode.INVALID_API_KEY */] = 'Your API key is invalid, please check you have copied it correctly.',
|
|
78
78
|
_a["invalid-cert-hash" /* AuthErrorCode.INVALID_CERT_HASH */] = 'The SHA-1 certificate hash provided is invalid.',
|
|
79
|
-
_a["invalid-credential" /* AuthErrorCode.
|
|
79
|
+
_a["invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */] = 'The supplied auth credential is incorrect, malformed or has expired.',
|
|
80
80
|
_a["invalid-message-payload" /* AuthErrorCode.INVALID_MESSAGE_PAYLOAD */] = 'The email template corresponding to this action contains invalid characters in its message. ' +
|
|
81
81
|
'Please fix by going to the Auth email templates section in the Firebase Console.',
|
|
82
82
|
_a["invalid-multi-factor-session" /* AuthErrorCode.INVALID_MFA_SESSION */] = 'The request does not contain a valid proof of first factor successful sign-in.',
|
|
@@ -253,6 +253,7 @@ var AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY = {
|
|
|
253
253
|
INVALID_EMAIL: 'auth/invalid-email',
|
|
254
254
|
INVALID_EMULATOR_SCHEME: 'auth/invalid-emulator-scheme',
|
|
255
255
|
INVALID_IDP_RESPONSE: 'auth/invalid-credential',
|
|
256
|
+
INVALID_LOGIN_CREDENTIALS: 'auth/invalid-credential',
|
|
256
257
|
INVALID_MESSAGE_PAYLOAD: 'auth/invalid-message-payload',
|
|
257
258
|
INVALID_MFA_SESSION: 'auth/invalid-multi-factor-session',
|
|
258
259
|
INVALID_OAUTH_CLIENT_ID: 'auth/invalid-oauth-client-id',
|
|
@@ -551,7 +552,7 @@ function _initializeAuthInstance(auth, deps) {
|
|
|
551
552
|
}
|
|
552
553
|
|
|
553
554
|
var name = "@firebase/auth";
|
|
554
|
-
var version = "1.
|
|
555
|
+
var version = "1.4.0-canary.00235ba68";
|
|
555
556
|
|
|
556
557
|
/**
|
|
557
558
|
* @license
|
|
@@ -952,12 +953,15 @@ var SERVER_ERROR_MAP = (_a$1 = {},
|
|
|
952
953
|
_a$1["INVALID_PASSWORD" /* ServerError.INVALID_PASSWORD */] = "wrong-password" /* AuthErrorCode.INVALID_PASSWORD */,
|
|
953
954
|
// This can only happen if the SDK sends a bad request.
|
|
954
955
|
_a$1["MISSING_PASSWORD" /* ServerError.MISSING_PASSWORD */] = "missing-password" /* AuthErrorCode.MISSING_PASSWORD */,
|
|
956
|
+
// Thrown if Email Enumeration Protection is enabled in the project and the email or password is
|
|
957
|
+
// invalid.
|
|
958
|
+
_a$1["INVALID_LOGIN_CREDENTIALS" /* ServerError.INVALID_LOGIN_CREDENTIALS */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
955
959
|
// Sign up with email and password errors.
|
|
956
960
|
_a$1["EMAIL_EXISTS" /* ServerError.EMAIL_EXISTS */] = "email-already-in-use" /* AuthErrorCode.EMAIL_EXISTS */,
|
|
957
961
|
_a$1["PASSWORD_LOGIN_DISABLED" /* ServerError.PASSWORD_LOGIN_DISABLED */] = "operation-not-allowed" /* AuthErrorCode.OPERATION_NOT_ALLOWED */,
|
|
958
962
|
// Verify assertion for sign in with credential errors:
|
|
959
|
-
_a$1["INVALID_IDP_RESPONSE" /* ServerError.INVALID_IDP_RESPONSE */] = "invalid-credential" /* AuthErrorCode.
|
|
960
|
-
_a$1["INVALID_PENDING_TOKEN" /* ServerError.INVALID_PENDING_TOKEN */] = "invalid-credential" /* AuthErrorCode.
|
|
963
|
+
_a$1["INVALID_IDP_RESPONSE" /* ServerError.INVALID_IDP_RESPONSE */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
964
|
+
_a$1["INVALID_PENDING_TOKEN" /* ServerError.INVALID_PENDING_TOKEN */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
961
965
|
_a$1["FEDERATED_USER_ID_ALREADY_LINKED" /* ServerError.FEDERATED_USER_ID_ALREADY_LINKED */] = "credential-already-in-use" /* AuthErrorCode.CREDENTIAL_ALREADY_IN_USE */,
|
|
962
966
|
// This can only happen if the SDK sends a bad request.
|
|
963
967
|
_a$1["MISSING_REQ_TYPE" /* ServerError.MISSING_REQ_TYPE */] = "internal-error" /* AuthErrorCode.INTERNAL_ERROR */,
|
|
@@ -979,7 +983,7 @@ var SERVER_ERROR_MAP = (_a$1 = {},
|
|
|
979
983
|
// Phone Auth related errors.
|
|
980
984
|
_a$1["INVALID_CODE" /* ServerError.INVALID_CODE */] = "invalid-verification-code" /* AuthErrorCode.INVALID_CODE */,
|
|
981
985
|
_a$1["INVALID_SESSION_INFO" /* ServerError.INVALID_SESSION_INFO */] = "invalid-verification-id" /* AuthErrorCode.INVALID_SESSION_INFO */,
|
|
982
|
-
_a$1["INVALID_TEMPORARY_PROOF" /* ServerError.INVALID_TEMPORARY_PROOF */] = "invalid-credential" /* AuthErrorCode.
|
|
986
|
+
_a$1["INVALID_TEMPORARY_PROOF" /* ServerError.INVALID_TEMPORARY_PROOF */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
983
987
|
_a$1["MISSING_SESSION_INFO" /* ServerError.MISSING_SESSION_INFO */] = "missing-verification-id" /* AuthErrorCode.MISSING_SESSION_INFO */,
|
|
984
988
|
_a$1["SESSION_EXPIRED" /* ServerError.SESSION_EXPIRED */] = "code-expired" /* AuthErrorCode.CODE_EXPIRED */,
|
|
985
989
|
// Other action code errors when additional settings passed.
|
|
@@ -1754,6 +1758,13 @@ function requestStsToken(auth, refreshToken) {
|
|
|
1754
1758
|
}
|
|
1755
1759
|
});
|
|
1756
1760
|
});
|
|
1761
|
+
}
|
|
1762
|
+
function revokeToken(auth, request) {
|
|
1763
|
+
return __awaiter(this, void 0, void 0, function () {
|
|
1764
|
+
return __generator(this, function (_a) {
|
|
1765
|
+
return [2 /*return*/, _performApiRequest(auth, "POST" /* HttpMethod.POST */, "/v2/accounts:revokeToken" /* Endpoint.REVOKE_TOKEN */, _addTidIfNecessary(auth, request))];
|
|
1766
|
+
});
|
|
1767
|
+
});
|
|
1757
1768
|
}
|
|
1758
1769
|
|
|
1759
1770
|
/**
|
|
@@ -3145,6 +3156,37 @@ var AuthImpl = /** @class */ (function () {
|
|
|
3145
3156
|
}
|
|
3146
3157
|
});
|
|
3147
3158
|
};
|
|
3159
|
+
/**
|
|
3160
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
3161
|
+
*/
|
|
3162
|
+
AuthImpl.prototype.revokeAccessToken = function (token) {
|
|
3163
|
+
return __awaiter(this, void 0, void 0, function () {
|
|
3164
|
+
var idToken, request;
|
|
3165
|
+
return __generator(this, function (_a) {
|
|
3166
|
+
switch (_a.label) {
|
|
3167
|
+
case 0:
|
|
3168
|
+
if (!this.currentUser) return [3 /*break*/, 3];
|
|
3169
|
+
return [4 /*yield*/, this.currentUser.getIdToken()];
|
|
3170
|
+
case 1:
|
|
3171
|
+
idToken = _a.sent();
|
|
3172
|
+
request = {
|
|
3173
|
+
providerId: 'apple.com',
|
|
3174
|
+
tokenType: "ACCESS_TOKEN" /* TokenType.ACCESS_TOKEN */,
|
|
3175
|
+
token: token,
|
|
3176
|
+
idToken: idToken
|
|
3177
|
+
};
|
|
3178
|
+
if (this.tenantId != null) {
|
|
3179
|
+
request.tenantId = this.tenantId;
|
|
3180
|
+
}
|
|
3181
|
+
return [4 /*yield*/, revokeToken(this, request)];
|
|
3182
|
+
case 2:
|
|
3183
|
+
_a.sent();
|
|
3184
|
+
_a.label = 3;
|
|
3185
|
+
case 3: return [2 /*return*/];
|
|
3186
|
+
}
|
|
3187
|
+
});
|
|
3188
|
+
});
|
|
3189
|
+
};
|
|
3148
3190
|
AuthImpl.prototype.toJSON = function () {
|
|
3149
3191
|
var _a;
|
|
3150
3192
|
return {
|
|
@@ -5178,6 +5220,15 @@ function updateEmailPassword(auth, request) {
|
|
|
5178
5220
|
});
|
|
5179
5221
|
});
|
|
5180
5222
|
}
|
|
5223
|
+
// Used for linking an email/password account to an existing idToken. Uses the same request/response
|
|
5224
|
+
// format as updateEmailPassword.
|
|
5225
|
+
function linkEmailPassword(auth, request) {
|
|
5226
|
+
return __awaiter(this, void 0, void 0, function () {
|
|
5227
|
+
return __generator(this, function (_a) {
|
|
5228
|
+
return [2 /*return*/, _performApiRequest(auth, "POST" /* HttpMethod.POST */, "/v1/accounts:signUp" /* Endpoint.SIGN_UP */, request)];
|
|
5229
|
+
});
|
|
5230
|
+
});
|
|
5231
|
+
}
|
|
5181
5232
|
function applyActionCode$1(auth, request) {
|
|
5182
5233
|
return __awaiter(this, void 0, void 0, function () {
|
|
5183
5234
|
return __generator(this, function (_a) {
|
|
@@ -5386,15 +5437,18 @@ var EmailAuthCredential = /** @class */ (function (_super) {
|
|
|
5386
5437
|
/** @internal */
|
|
5387
5438
|
EmailAuthCredential.prototype._linkToIdToken = function (auth, idToken) {
|
|
5388
5439
|
return __awaiter(this, void 0, void 0, function () {
|
|
5440
|
+
var request;
|
|
5389
5441
|
return __generator(this, function (_a) {
|
|
5390
5442
|
switch (this.signInMethod) {
|
|
5391
5443
|
case "password" /* SignInMethod.EMAIL_PASSWORD */:
|
|
5392
|
-
|
|
5393
|
-
|
|
5394
|
-
|
|
5395
|
-
|
|
5396
|
-
|
|
5397
|
-
|
|
5444
|
+
request = {
|
|
5445
|
+
idToken: idToken,
|
|
5446
|
+
returnSecureToken: true,
|
|
5447
|
+
email: this._email,
|
|
5448
|
+
password: this._password,
|
|
5449
|
+
clientType: "CLIENT_TYPE_WEB" /* RecaptchaClientType.WEB */
|
|
5450
|
+
};
|
|
5451
|
+
return [2 /*return*/, handleRecaptchaFlow(auth, request, "signUpPassword" /* RecaptchaActionName.SIGN_UP_PASSWORD */, linkEmailPassword)];
|
|
5398
5452
|
case "emailLink" /* SignInMethod.EMAIL_LINK */:
|
|
5399
5453
|
return [2 /*return*/, signInWithEmailLinkForLinking(auth, {
|
|
5400
5454
|
idToken: idToken,
|
|
@@ -7557,7 +7611,9 @@ function recachePasswordPolicy(auth) {
|
|
|
7557
7611
|
});
|
|
7558
7612
|
}
|
|
7559
7613
|
/**
|
|
7560
|
-
* Sends a password reset email to the given email address.
|
|
7614
|
+
* Sends a password reset email to the given email address. This method does not throw an error when
|
|
7615
|
+
* there's no user account with the given email address and
|
|
7616
|
+
* [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
7561
7617
|
*
|
|
7562
7618
|
* @remarks
|
|
7563
7619
|
* To complete the password reset, call {@link confirmPasswordReset} with the code supplied in
|
|
@@ -7798,6 +7854,8 @@ function createUserWithEmailAndPassword(auth, email, password) {
|
|
|
7798
7854
|
*
|
|
7799
7855
|
* @remarks
|
|
7800
7856
|
* Fails with an error if the email address and password do not match.
|
|
7857
|
+
* When [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled,
|
|
7858
|
+
* this method fails with "auth/invalid-credential" in case of an invalid email/password.
|
|
7801
7859
|
*
|
|
7802
7860
|
* Note: The user's password is NOT the password used to access the user's email account. The
|
|
7803
7861
|
* email address serves as a unique identifier for the user, and the password is used to access
|
|
@@ -8006,7 +8064,9 @@ function createAuthUri(auth, request) {
|
|
|
8006
8064
|
* limitations under the License.
|
|
8007
8065
|
*/
|
|
8008
8066
|
/**
|
|
8009
|
-
* Gets the list of possible sign in methods for the given email address.
|
|
8067
|
+
* Gets the list of possible sign in methods for the given email address. This method returns an
|
|
8068
|
+
* empty list when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled, irrespective of the number of
|
|
8069
|
+
* authentication methods available for the given email.
|
|
8010
8070
|
*
|
|
8011
8071
|
* @remarks
|
|
8012
8072
|
* This is useful to differentiate methods of sign-in for the same provider, eg.
|
|
@@ -8017,6 +8077,8 @@ function createAuthUri(auth, request) {
|
|
|
8017
8077
|
* @param auth - The {@link Auth} instance.
|
|
8018
8078
|
* @param email - The user's email address.
|
|
8019
8079
|
*
|
|
8080
|
+
* Deprecated. Migrating off of this method is recommended as a security best-practice.
|
|
8081
|
+
* Learn more in the Identity Platform documentation for [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection).
|
|
8020
8082
|
* @public
|
|
8021
8083
|
*/
|
|
8022
8084
|
function fetchSignInMethodsForEmail(auth, email) {
|
|
@@ -8271,6 +8333,9 @@ function updateProfile(user, _a) {
|
|
|
8271
8333
|
* @param user - The user.
|
|
8272
8334
|
* @param newEmail - The new email address.
|
|
8273
8335
|
*
|
|
8336
|
+
* Throws "auth/operation-not-allowed" error when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
8337
|
+
* Deprecated - Use {@link verifyBeforeUpdateEmail} instead.
|
|
8338
|
+
*
|
|
8274
8339
|
* @public
|
|
8275
8340
|
*/
|
|
8276
8341
|
function updateEmail(user, newEmail) {
|
|
@@ -8648,6 +8713,18 @@ function updateCurrentUser(auth, user) {
|
|
|
8648
8713
|
function signOut(auth) {
|
|
8649
8714
|
return getModularInstance(auth).signOut();
|
|
8650
8715
|
}
|
|
8716
|
+
/**
|
|
8717
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
8718
|
+
*
|
|
8719
|
+
* @param auth - The {@link Auth} instance.
|
|
8720
|
+
* @param token - The Apple OAuth access token.
|
|
8721
|
+
*
|
|
8722
|
+
* @public
|
|
8723
|
+
*/
|
|
8724
|
+
function revokeAccessToken(auth, token) {
|
|
8725
|
+
var authInternal = _castAuth(auth);
|
|
8726
|
+
return authInternal.revokeAccessToken(token);
|
|
8727
|
+
}
|
|
8651
8728
|
/**
|
|
8652
8729
|
* Deletes and signs out the user.
|
|
8653
8730
|
*
|
|
@@ -8998,5 +9075,5 @@ function getAuth(app) {
|
|
|
8998
9075
|
return auth;
|
|
8999
9076
|
}
|
|
9000
9077
|
|
|
9001
|
-
export { ActionCodeOperation, ActionCodeURL, AuthCredential, AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY as AuthErrorCodes, EmailAuthCredential, EmailAuthProvider, FacebookAuthProvider, FactorId, GithubAuthProvider, GoogleAuthProvider, OAuthCredential, OAuthProvider, OperationType, PhoneAuthCredential, ProviderId, SAMLAuthProvider, SignInMethod, TwitterAuthProvider, applyActionCode, beforeAuthStateChanged, checkActionCode, confirmPasswordReset, connectAuthEmulator, createUserWithEmailAndPassword, debugErrorMap, deleteUser, fetchSignInMethodsForEmail, getAdditionalUserInfo, getAuth, getIdToken, getIdTokenResult, getMultiFactorResolver, inMemoryPersistence, indexedDBLocalPersistence, initializeAuth, initializeRecaptchaConfig, isSignInWithEmailLink, linkWithCredential, multiFactor, onAuthStateChanged, onIdTokenChanged, parseActionCodeURL, prodErrorMap, reauthenticateWithCredential, reload, sendEmailVerification, sendPasswordResetEmail, sendSignInLinkToEmail, setPersistence, signInAnonymously, signInWithCredential, signInWithCustomToken, signInWithEmailAndPassword, signInWithEmailLink, signOut, unlink, updateCurrentUser, updateEmail, updatePassword, updateProfile, useDeviceLanguage, validatePassword, verifyBeforeUpdateEmail, verifyPasswordResetCode };
|
|
9078
|
+
export { ActionCodeOperation, ActionCodeURL, AuthCredential, AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY as AuthErrorCodes, EmailAuthCredential, EmailAuthProvider, FacebookAuthProvider, FactorId, GithubAuthProvider, GoogleAuthProvider, OAuthCredential, OAuthProvider, OperationType, PhoneAuthCredential, ProviderId, SAMLAuthProvider, SignInMethod, TwitterAuthProvider, applyActionCode, beforeAuthStateChanged, checkActionCode, confirmPasswordReset, connectAuthEmulator, createUserWithEmailAndPassword, debugErrorMap, deleteUser, fetchSignInMethodsForEmail, getAdditionalUserInfo, getAuth, getIdToken, getIdTokenResult, getMultiFactorResolver, inMemoryPersistence, indexedDBLocalPersistence, initializeAuth, initializeRecaptchaConfig, isSignInWithEmailLink, linkWithCredential, multiFactor, onAuthStateChanged, onIdTokenChanged, parseActionCodeURL, prodErrorMap, reauthenticateWithCredential, reload, revokeAccessToken, sendEmailVerification, sendPasswordResetEmail, sendSignInLinkToEmail, setPersistence, signInAnonymously, signInWithCredential, signInWithCustomToken, signInWithEmailAndPassword, signInWithEmailLink, signOut, unlink, updateCurrentUser, updateEmail, updatePassword, updateProfile, useDeviceLanguage, validatePassword, verifyBeforeUpdateEmail, verifyPasswordResetCode };
|
|
9002
9079
|
//# sourceMappingURL=index.webworker.esm5.js.map
|