@firebase/auth 1.3.2 → 1.4.0-canary.00235ba68
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/auth-public.d.ts +24 -2
- package/dist/auth.d.ts +26 -3
- package/dist/browser-cjs/{index-770706ba.js → index-d50ad728.js} +68 -11
- package/dist/browser-cjs/index-d50ad728.js.map +1 -0
- package/dist/browser-cjs/index.js +2 -1
- package/dist/browser-cjs/index.js.map +1 -1
- package/dist/browser-cjs/internal.js +2 -1
- package/dist/browser-cjs/internal.js.map +1 -1
- package/dist/browser-cjs/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/browser-cjs/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/browser-cjs/src/api/authentication/token.d.ts +13 -2
- package/dist/browser-cjs/src/api/errors.d.ts +1 -0
- package/dist/browser-cjs/src/api/index.d.ts +3 -1
- package/dist/browser-cjs/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/browser-cjs/src/core/errors.d.ts +2 -1
- package/dist/browser-cjs/src/core/index.d.ts +9 -0
- package/dist/browser-cjs/src/core/strategies/email.d.ts +5 -1
- package/dist/browser-cjs/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/browser-cjs/src/core/user/account_info.d.ts +3 -0
- package/dist/browser-cjs/src/model/auth.d.ts +1 -0
- package/dist/cordova/index.js +2 -2
- package/dist/cordova/internal.js +2 -2
- package/dist/cordova/{popup_redirect-a9365a6c.js → popup_redirect-599b3914.js} +92 -15
- package/dist/cordova/popup_redirect-599b3914.js.map +1 -0
- package/dist/cordova/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/cordova/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/cordova/src/api/authentication/token.d.ts +13 -2
- package/dist/cordova/src/api/errors.d.ts +1 -0
- package/dist/cordova/src/api/index.d.ts +3 -1
- package/dist/cordova/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/cordova/src/core/errors.d.ts +2 -1
- package/dist/cordova/src/core/index.d.ts +9 -0
- package/dist/cordova/src/core/strategies/email.d.ts +5 -1
- package/dist/cordova/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/cordova/src/core/user/account_info.d.ts +3 -0
- package/dist/cordova/src/model/auth.d.ts +1 -0
- package/dist/esm2017/{index-94e5f531.js → index-2b54b271.js} +68 -12
- package/dist/esm2017/index-2b54b271.js.map +1 -0
- package/dist/esm2017/index.js +1 -1
- package/dist/esm2017/internal.js +2 -2
- package/dist/esm2017/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/esm2017/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/esm2017/src/api/authentication/token.d.ts +13 -2
- package/dist/esm2017/src/api/errors.d.ts +1 -0
- package/dist/esm2017/src/api/index.d.ts +3 -1
- package/dist/esm2017/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/esm2017/src/core/errors.d.ts +2 -1
- package/dist/esm2017/src/core/index.d.ts +9 -0
- package/dist/esm2017/src/core/strategies/email.d.ts +5 -1
- package/dist/esm2017/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/esm2017/src/core/user/account_info.d.ts +3 -0
- package/dist/esm2017/src/model/auth.d.ts +1 -0
- package/dist/esm5/{index-7b6c682b.js → index-ab0a3e4e.js} +92 -15
- package/dist/esm5/index-ab0a3e4e.js.map +1 -0
- package/dist/esm5/index.js +1 -1
- package/dist/esm5/internal.js +2 -2
- package/dist/esm5/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/esm5/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/esm5/src/api/authentication/token.d.ts +13 -2
- package/dist/esm5/src/api/errors.d.ts +1 -0
- package/dist/esm5/src/api/index.d.ts +3 -1
- package/dist/esm5/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/esm5/src/core/errors.d.ts +2 -1
- package/dist/esm5/src/core/index.d.ts +9 -0
- package/dist/esm5/src/core/strategies/email.d.ts +5 -1
- package/dist/esm5/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/esm5/src/core/user/account_info.d.ts +3 -0
- package/dist/esm5/src/model/auth.d.ts +1 -0
- package/dist/index.webworker.esm5.js +91 -14
- package/dist/index.webworker.esm5.js.map +1 -1
- package/dist/node/index.js +3 -2
- package/dist/node/index.js.map +1 -1
- package/dist/node/internal.js +3 -2
- package/dist/node/internal.js.map +1 -1
- package/dist/node/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/node/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/node/src/api/authentication/token.d.ts +13 -2
- package/dist/node/src/api/errors.d.ts +1 -0
- package/dist/node/src/api/index.d.ts +3 -1
- package/dist/node/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/node/src/core/errors.d.ts +2 -1
- package/dist/node/src/core/index.d.ts +9 -0
- package/dist/node/src/core/strategies/email.d.ts +5 -1
- package/dist/node/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/node/src/core/user/account_info.d.ts +3 -0
- package/dist/node/src/model/auth.d.ts +1 -0
- package/dist/node/{totp-24a79064.js → totp-b6ed1d9d.js} +94 -36
- package/dist/node/totp-b6ed1d9d.js.map +1 -0
- package/dist/node-esm/index.js +2 -2
- package/dist/node-esm/internal.js +3 -3
- package/dist/node-esm/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/node-esm/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/node-esm/src/api/authentication/token.d.ts +13 -2
- package/dist/node-esm/src/api/errors.d.ts +1 -0
- package/dist/node-esm/src/api/index.d.ts +3 -1
- package/dist/node-esm/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/node-esm/src/core/errors.d.ts +2 -1
- package/dist/node-esm/src/core/index.d.ts +9 -0
- package/dist/node-esm/src/core/strategies/email.d.ts +5 -1
- package/dist/node-esm/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/node-esm/src/core/user/account_info.d.ts +3 -0
- package/dist/node-esm/src/model/auth.d.ts +1 -0
- package/dist/node-esm/{totp-a0f18007.js → totp-aa0a9277.js} +70 -14
- package/dist/node-esm/totp-aa0a9277.js.map +1 -0
- package/dist/rn/{index-3d9ec48b.js → index-943ed676.js} +92 -14
- package/dist/rn/index-943ed676.js.map +1 -0
- package/dist/rn/index.js +2 -1
- package/dist/rn/index.js.map +1 -1
- package/dist/rn/internal.js +2 -1
- package/dist/rn/internal.js.map +1 -1
- package/dist/rn/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/rn/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/rn/src/api/authentication/token.d.ts +13 -2
- package/dist/rn/src/api/errors.d.ts +1 -0
- package/dist/rn/src/api/index.d.ts +3 -1
- package/dist/rn/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/rn/src/core/errors.d.ts +2 -1
- package/dist/rn/src/core/index.d.ts +9 -0
- package/dist/rn/src/core/strategies/email.d.ts +5 -1
- package/dist/rn/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/rn/src/core/user/account_info.d.ts +3 -0
- package/dist/rn/src/model/auth.d.ts +1 -0
- package/dist/src/api/account_management/email_and_password.d.ts +2 -0
- package/dist/src/api/authentication/sign_up.d.ts +1 -0
- package/dist/src/api/authentication/token.d.ts +13 -2
- package/dist/src/api/errors.d.ts +1 -0
- package/dist/src/api/index.d.ts +3 -1
- package/dist/src/core/auth/auth_impl.d.ts +4 -0
- package/dist/src/core/errors.d.ts +2 -1
- package/dist/src/core/index.d.ts +9 -0
- package/dist/src/core/strategies/email.d.ts +5 -1
- package/dist/src/core/strategies/email_and_password.d.ts +5 -1
- package/dist/src/core/user/account_info.d.ts +3 -0
- package/dist/src/model/auth.d.ts +1 -0
- package/package.json +7 -7
- package/dist/browser-cjs/index-770706ba.js.map +0 -1
- package/dist/cordova/popup_redirect-a9365a6c.js.map +0 -1
- package/dist/esm2017/index-94e5f531.js.map +0 -1
- package/dist/esm5/index-7b6c682b.js.map +0 -1
- package/dist/node/totp-24a79064.js.map +0 -1
- package/dist/node-esm/totp-a0f18007.js.map +0 -1
- package/dist/rn/index-3d9ec48b.js.map +0 -1
package/dist/esm2017/index.js
CHANGED
|
@@ -1,4 +1,4 @@
|
|
|
1
|
-
export { A as ActionCodeOperation,
|
|
1
|
+
export { A as ActionCodeOperation, ai as ActionCodeURL, L as AuthCredential, I as AuthErrorCodes, M as EmailAuthCredential, V as EmailAuthProvider, W as FacebookAuthProvider, F as FactorId, Y as GithubAuthProvider, X as GoogleAuthProvider, N as OAuthCredential, Z as OAuthProvider, O as OperationType, Q as PhoneAuthCredential, P as PhoneAuthProvider, m as PhoneMultiFactorGenerator, p as ProviderId, R as RecaptchaVerifier, _ as SAMLAuthProvider, S as SignInMethod, T as TotpMultiFactorGenerator, n as TotpSecret, $ as TwitterAuthProvider, a7 as applyActionCode, x as beforeAuthStateChanged, b as browserLocalPersistence, k as browserPopupRedirectResolver, a as browserSessionPersistence, a8 as checkActionCode, a6 as confirmPasswordReset, K as connectAuthEmulator, aa as createUserWithEmailAndPassword, G as debugErrorMap, E as deleteUser, af as fetchSignInMethodsForEmail, aq as getAdditionalUserInfo, o as getAuth, an as getIdToken, ao as getIdTokenResult, as as getMultiFactorResolver, j as getRedirectResult, U as inMemoryPersistence, i as indexedDBLocalPersistence, J as initializeAuth, t as initializeRecaptchaConfig, ad as isSignInWithEmailLink, a2 as linkWithCredential, l as linkWithPhoneNumber, d as linkWithPopup, g as linkWithRedirect, at as multiFactor, y as onAuthStateChanged, w as onIdTokenChanged, aj as parseActionCodeURL, H as prodErrorMap, a3 as reauthenticateWithCredential, r as reauthenticateWithPhoneNumber, e as reauthenticateWithPopup, h as reauthenticateWithRedirect, ar as reload, D as revokeAccessToken, ag as sendEmailVerification, a5 as sendPasswordResetEmail, ac as sendSignInLinkToEmail, q as setPersistence, a0 as signInAnonymously, a1 as signInWithCredential, a4 as signInWithCustomToken, ab as signInWithEmailAndPassword, ae as signInWithEmailLink, s as signInWithPhoneNumber, c as signInWithPopup, f as signInWithRedirect, C as signOut, ap as unlink, B as updateCurrentUser, al as updateEmail, am as updatePassword, u as updatePhoneNumber, ak as updateProfile, z as useDeviceLanguage, v as validatePassword, ah as verifyBeforeUpdateEmail, a9 as verifyPasswordResetCode } from './index-2b54b271.js';
|
|
2
2
|
import '@firebase/util';
|
|
3
3
|
import '@firebase/app';
|
|
4
4
|
import '@firebase/logger';
|
package/dist/esm2017/internal.js
CHANGED
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import {
|
|
2
|
-
export { A as ActionCodeOperation,
|
|
1
|
+
import { au as debugAssert, av as _isIOS, aw as _isAndroid, ax as _fail, ay as _getRedirectUrl, az as _getProjectConfig, aA as _isIOS7Or8, aB as _createError, aC as _assert, aD as AuthEventManager, aE as _getInstance, b as browserLocalPersistence, aF as _persistenceKeyName, a as browserSessionPersistence, aG as _getRedirectResult, aH as _overrideRedirectResult, aI as _clearRedirectOutcomes, aJ as _castAuth } from './index-2b54b271.js';
|
|
2
|
+
export { A as ActionCodeOperation, ai as ActionCodeURL, L as AuthCredential, I as AuthErrorCodes, aL as AuthImpl, aO as AuthPopup, M as EmailAuthCredential, V as EmailAuthProvider, W as FacebookAuthProvider, F as FactorId, aP as FetchProvider, Y as GithubAuthProvider, X as GoogleAuthProvider, N as OAuthCredential, Z as OAuthProvider, O as OperationType, Q as PhoneAuthCredential, P as PhoneAuthProvider, m as PhoneMultiFactorGenerator, p as ProviderId, R as RecaptchaVerifier, aQ as SAMLAuthCredential, _ as SAMLAuthProvider, S as SignInMethod, T as TotpMultiFactorGenerator, n as TotpSecret, $ as TwitterAuthProvider, aK as UserImpl, aC as _assert, aJ as _castAuth, ax as _fail, aN as _generateEventId, aM as _getClientVersion, aE as _getInstance, aG as _getRedirectResult, aH as _overrideRedirectResult, aF as _persistenceKeyName, a7 as applyActionCode, x as beforeAuthStateChanged, b as browserLocalPersistence, k as browserPopupRedirectResolver, a as browserSessionPersistence, a8 as checkActionCode, a6 as confirmPasswordReset, K as connectAuthEmulator, aa as createUserWithEmailAndPassword, G as debugErrorMap, E as deleteUser, af as fetchSignInMethodsForEmail, aq as getAdditionalUserInfo, o as getAuth, an as getIdToken, ao as getIdTokenResult, as as getMultiFactorResolver, j as getRedirectResult, U as inMemoryPersistence, i as indexedDBLocalPersistence, J as initializeAuth, t as initializeRecaptchaConfig, ad as isSignInWithEmailLink, a2 as linkWithCredential, l as linkWithPhoneNumber, d as linkWithPopup, g as linkWithRedirect, at as multiFactor, y as onAuthStateChanged, w as onIdTokenChanged, aj as parseActionCodeURL, H as prodErrorMap, a3 as reauthenticateWithCredential, r as reauthenticateWithPhoneNumber, e as reauthenticateWithPopup, h as reauthenticateWithRedirect, ar as reload, D as revokeAccessToken, ag as sendEmailVerification, a5 as sendPasswordResetEmail, ac as sendSignInLinkToEmail, q as setPersistence, a0 as signInAnonymously, a1 as signInWithCredential, a4 as signInWithCustomToken, ab as signInWithEmailAndPassword, ae as signInWithEmailLink, s as signInWithPhoneNumber, c as signInWithPopup, f as signInWithRedirect, C as signOut, ap as unlink, B as updateCurrentUser, al as updateEmail, am as updatePassword, u as updatePhoneNumber, ak as updateProfile, z as useDeviceLanguage, v as validatePassword, ah as verifyBeforeUpdateEmail, a9 as verifyPasswordResetCode } from './index-2b54b271.js';
|
|
3
3
|
import { querystringDecode } from '@firebase/util';
|
|
4
4
|
import '@firebase/app';
|
|
5
5
|
import '@firebase/logger';
|
|
@@ -17,6 +17,7 @@
|
|
|
17
17
|
import { ActionCodeOperation, Auth } from '../../model/public_types';
|
|
18
18
|
import { IdTokenResponse } from '../../model/id_token';
|
|
19
19
|
import { MfaEnrollment } from './mfa';
|
|
20
|
+
import { SignUpRequest, SignUpResponse } from '../authentication/sign_up';
|
|
20
21
|
export interface ResetPasswordRequest {
|
|
21
22
|
oobCode: string;
|
|
22
23
|
newPassword?: string;
|
|
@@ -38,6 +39,7 @@ export interface UpdateEmailPasswordRequest {
|
|
|
38
39
|
export interface UpdateEmailPasswordResponse extends IdTokenResponse {
|
|
39
40
|
}
|
|
40
41
|
export declare function updateEmailPassword(auth: Auth, request: UpdateEmailPasswordRequest): Promise<UpdateEmailPasswordResponse>;
|
|
42
|
+
export declare function linkEmailPassword(auth: Auth, request: SignUpRequest): Promise<SignUpResponse>;
|
|
41
43
|
export interface ApplyActionCodeRequest {
|
|
42
44
|
oobCode: string;
|
|
43
45
|
tenantId?: string;
|
|
@@ -18,6 +18,7 @@ import { RecaptchaClientType, RecaptchaVersion } from '../index';
|
|
|
18
18
|
import { IdTokenResponse } from '../../model/id_token';
|
|
19
19
|
import { Auth } from '../../model/public_types';
|
|
20
20
|
export interface SignUpRequest {
|
|
21
|
+
idToken?: string;
|
|
21
22
|
returnSecureToken?: boolean;
|
|
22
23
|
email?: string;
|
|
23
24
|
password?: string;
|
|
@@ -15,12 +15,23 @@
|
|
|
15
15
|
* limitations under the License.
|
|
16
16
|
*/
|
|
17
17
|
import { Auth } from '../../model/public_types';
|
|
18
|
-
export declare const enum
|
|
19
|
-
|
|
18
|
+
export declare const enum TokenType {
|
|
19
|
+
REFRESH_TOKEN = "REFRESH_TOKEN",
|
|
20
|
+
ACCESS_TOKEN = "ACCESS_TOKEN"
|
|
20
21
|
}
|
|
21
22
|
export interface RequestStsTokenResponse {
|
|
22
23
|
accessToken: string;
|
|
23
24
|
expiresIn: string;
|
|
24
25
|
refreshToken: string;
|
|
25
26
|
}
|
|
27
|
+
export interface RevokeTokenRequest {
|
|
28
|
+
providerId: string;
|
|
29
|
+
tokenType: TokenType;
|
|
30
|
+
token: string;
|
|
31
|
+
idToken: string;
|
|
32
|
+
tenantId?: string;
|
|
33
|
+
}
|
|
34
|
+
export interface RevokeTokenResponse {
|
|
35
|
+
}
|
|
26
36
|
export declare function requestStsToken(auth: Auth, refreshToken: string): Promise<RequestStsTokenResponse>;
|
|
37
|
+
export declare function revokeToken(auth: Auth, request: RevokeTokenRequest): Promise<RevokeTokenResponse>;
|
|
@@ -42,6 +42,7 @@ export declare const enum ServerError {
|
|
|
42
42
|
INVALID_ID_TOKEN = "INVALID_ID_TOKEN",
|
|
43
43
|
INVALID_IDP_RESPONSE = "INVALID_IDP_RESPONSE",
|
|
44
44
|
INVALID_IDENTIFIER = "INVALID_IDENTIFIER",
|
|
45
|
+
INVALID_LOGIN_CREDENTIALS = "INVALID_LOGIN_CREDENTIALS",
|
|
45
46
|
INVALID_MESSAGE_PAYLOAD = "INVALID_MESSAGE_PAYLOAD",
|
|
46
47
|
INVALID_MFA_PENDING_CREDENTIAL = "INVALID_MFA_PENDING_CREDENTIAL",
|
|
47
48
|
INVALID_OAUTH_CLIENT_ID = "INVALID_OAUTH_CLIENT_ID",
|
|
@@ -54,7 +54,9 @@ export declare const enum Endpoint {
|
|
|
54
54
|
WITHDRAW_MFA = "/v2/accounts/mfaEnrollment:withdraw",
|
|
55
55
|
GET_PROJECT_CONFIG = "/v1/projects",
|
|
56
56
|
GET_RECAPTCHA_CONFIG = "/v2/recaptchaConfig",
|
|
57
|
-
GET_PASSWORD_POLICY = "/v2/passwordPolicy"
|
|
57
|
+
GET_PASSWORD_POLICY = "/v2/passwordPolicy",
|
|
58
|
+
TOKEN = "/v1/token",
|
|
59
|
+
REVOKE_TOKEN = "/v2/accounts:revokeToken"
|
|
58
60
|
}
|
|
59
61
|
export declare const enum RecaptchaClientType {
|
|
60
62
|
WEB = "CLIENT_TYPE_WEB",
|
|
@@ -87,6 +87,10 @@ export declare class AuthImpl implements AuthInternal, _FirebaseService {
|
|
|
87
87
|
beforeAuthStateChanged(callback: (user: User | null) => void | Promise<void>, onAbort?: () => void): Unsubscribe;
|
|
88
88
|
onIdTokenChanged(nextOrObserver: NextOrObserver<User>, error?: ErrorFn, completed?: CompleteFn): Unsubscribe;
|
|
89
89
|
authStateReady(): Promise<void>;
|
|
90
|
+
/**
|
|
91
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
92
|
+
*/
|
|
93
|
+
revokeAccessToken(token: string): Promise<void>;
|
|
90
94
|
toJSON(): object;
|
|
91
95
|
_setRedirectUser(user: UserInternal | null, popupRedirectResolver?: PopupRedirectResolver): Promise<void>;
|
|
92
96
|
private getOrInitRedirectPersistenceManager;
|
|
@@ -57,7 +57,7 @@ export declare const enum AuthErrorCode {
|
|
|
57
57
|
INVALID_DYNAMIC_LINK_DOMAIN = "invalid-dynamic-link-domain",
|
|
58
58
|
INVALID_EMAIL = "invalid-email",
|
|
59
59
|
INVALID_EMULATOR_SCHEME = "invalid-emulator-scheme",
|
|
60
|
-
|
|
60
|
+
INVALID_CREDENTIAL = "invalid-credential",
|
|
61
61
|
INVALID_MESSAGE_PAYLOAD = "invalid-message-payload",
|
|
62
62
|
INVALID_MFA_SESSION = "invalid-multi-factor-session",
|
|
63
63
|
INVALID_OAUTH_CLIENT_ID = "invalid-oauth-client-id",
|
|
@@ -250,6 +250,7 @@ export declare const AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY: {
|
|
|
250
250
|
readonly INVALID_EMAIL: "auth/invalid-email";
|
|
251
251
|
readonly INVALID_EMULATOR_SCHEME: "auth/invalid-emulator-scheme";
|
|
252
252
|
readonly INVALID_IDP_RESPONSE: "auth/invalid-credential";
|
|
253
|
+
readonly INVALID_LOGIN_CREDENTIALS: "auth/invalid-credential";
|
|
253
254
|
readonly INVALID_MESSAGE_PAYLOAD: "auth/invalid-message-payload";
|
|
254
255
|
readonly INVALID_MFA_SESSION: "auth/invalid-multi-factor-session";
|
|
255
256
|
readonly INVALID_OAUTH_CLIENT_ID: "auth/invalid-oauth-client-id";
|
|
@@ -171,6 +171,15 @@ export declare function updateCurrentUser(auth: Auth, user: User | null): Promis
|
|
|
171
171
|
* @public
|
|
172
172
|
*/
|
|
173
173
|
export declare function signOut(auth: Auth): Promise<void>;
|
|
174
|
+
/**
|
|
175
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
176
|
+
*
|
|
177
|
+
* @param auth - The {@link Auth} instance.
|
|
178
|
+
* @param token - The Apple OAuth access token.
|
|
179
|
+
*
|
|
180
|
+
* @public
|
|
181
|
+
*/
|
|
182
|
+
export declare function revokeAccessToken(auth: Auth, token: string): Promise<void>;
|
|
174
183
|
export { initializeAuth } from './auth/initialize';
|
|
175
184
|
export { connectAuthEmulator } from './auth/emulator';
|
|
176
185
|
export { AuthCredential } from './credentials';
|
|
@@ -16,7 +16,9 @@
|
|
|
16
16
|
*/
|
|
17
17
|
import { ActionCodeSettings, Auth, User } from '../../model/public_types';
|
|
18
18
|
/**
|
|
19
|
-
* Gets the list of possible sign in methods for the given email address.
|
|
19
|
+
* Gets the list of possible sign in methods for the given email address. This method returns an
|
|
20
|
+
* empty list when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled, irrespective of the number of
|
|
21
|
+
* authentication methods available for the given email.
|
|
20
22
|
*
|
|
21
23
|
* @remarks
|
|
22
24
|
* This is useful to differentiate methods of sign-in for the same provider, eg.
|
|
@@ -27,6 +29,8 @@ import { ActionCodeSettings, Auth, User } from '../../model/public_types';
|
|
|
27
29
|
* @param auth - The {@link Auth} instance.
|
|
28
30
|
* @param email - The user's email address.
|
|
29
31
|
*
|
|
32
|
+
* Deprecated. Migrating off of this method is recommended as a security best-practice.
|
|
33
|
+
* Learn more in the Identity Platform documentation for [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection).
|
|
30
34
|
* @public
|
|
31
35
|
*/
|
|
32
36
|
export declare function fetchSignInMethodsForEmail(auth: Auth, email: string): Promise<string[]>;
|
|
@@ -16,7 +16,9 @@
|
|
|
16
16
|
*/
|
|
17
17
|
import { ActionCodeInfo, ActionCodeSettings, Auth, UserCredential } from '../../model/public_types';
|
|
18
18
|
/**
|
|
19
|
-
* Sends a password reset email to the given email address.
|
|
19
|
+
* Sends a password reset email to the given email address. This method does not throw an error when
|
|
20
|
+
* there's no user account with the given email address and
|
|
21
|
+
* [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
20
22
|
*
|
|
21
23
|
* @remarks
|
|
22
24
|
* To complete the password reset, call {@link confirmPasswordReset} with the code supplied in
|
|
@@ -112,6 +114,8 @@ export declare function createUserWithEmailAndPassword(auth: Auth, email: string
|
|
|
112
114
|
*
|
|
113
115
|
* @remarks
|
|
114
116
|
* Fails with an error if the email address and password do not match.
|
|
117
|
+
* When [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled,
|
|
118
|
+
* this method fails with "auth/invalid-credential" in case of an invalid email/password.
|
|
115
119
|
*
|
|
116
120
|
* Note: The user's password is NOT the password used to access the user's email account. The
|
|
117
121
|
* email address serves as a unique identifier for the user, and the password is used to access
|
|
@@ -41,6 +41,9 @@ export declare function updateProfile(user: User, { displayName, photoURL: photo
|
|
|
41
41
|
* @param user - The user.
|
|
42
42
|
* @param newEmail - The new email address.
|
|
43
43
|
*
|
|
44
|
+
* Throws "auth/operation-not-allowed" error when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
45
|
+
* Deprecated - Use {@link verifyBeforeUpdateEmail} instead.
|
|
46
|
+
*
|
|
44
47
|
* @public
|
|
45
48
|
*/
|
|
46
49
|
export declare function updateEmail(user: User, newEmail: string): Promise<void>;
|
|
@@ -175,7 +175,7 @@ function _debugErrorMap() {
|
|
|
175
175
|
_a["invalid-emulator-scheme" /* AuthErrorCode.INVALID_EMULATOR_SCHEME */] = 'Emulator URL must start with a valid scheme (http:// or https://).',
|
|
176
176
|
_a["invalid-api-key" /* AuthErrorCode.INVALID_API_KEY */] = 'Your API key is invalid, please check you have copied it correctly.',
|
|
177
177
|
_a["invalid-cert-hash" /* AuthErrorCode.INVALID_CERT_HASH */] = 'The SHA-1 certificate hash provided is invalid.',
|
|
178
|
-
_a["invalid-credential" /* AuthErrorCode.
|
|
178
|
+
_a["invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */] = 'The supplied auth credential is incorrect, malformed or has expired.',
|
|
179
179
|
_a["invalid-message-payload" /* AuthErrorCode.INVALID_MESSAGE_PAYLOAD */] = 'The email template corresponding to this action contains invalid characters in its message. ' +
|
|
180
180
|
'Please fix by going to the Auth email templates section in the Firebase Console.',
|
|
181
181
|
_a["invalid-multi-factor-session" /* AuthErrorCode.INVALID_MFA_SESSION */] = 'The request does not contain a valid proof of first factor successful sign-in.',
|
|
@@ -352,6 +352,7 @@ var AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY = {
|
|
|
352
352
|
INVALID_EMAIL: 'auth/invalid-email',
|
|
353
353
|
INVALID_EMULATOR_SCHEME: 'auth/invalid-emulator-scheme',
|
|
354
354
|
INVALID_IDP_RESPONSE: 'auth/invalid-credential',
|
|
355
|
+
INVALID_LOGIN_CREDENTIALS: 'auth/invalid-credential',
|
|
355
356
|
INVALID_MESSAGE_PAYLOAD: 'auth/invalid-message-payload',
|
|
356
357
|
INVALID_MFA_SESSION: 'auth/invalid-multi-factor-session',
|
|
357
358
|
INVALID_OAUTH_CLIENT_ID: 'auth/invalid-oauth-client-id',
|
|
@@ -817,12 +818,15 @@ var SERVER_ERROR_MAP = (_a$1 = {},
|
|
|
817
818
|
_a$1["INVALID_PASSWORD" /* ServerError.INVALID_PASSWORD */] = "wrong-password" /* AuthErrorCode.INVALID_PASSWORD */,
|
|
818
819
|
// This can only happen if the SDK sends a bad request.
|
|
819
820
|
_a$1["MISSING_PASSWORD" /* ServerError.MISSING_PASSWORD */] = "missing-password" /* AuthErrorCode.MISSING_PASSWORD */,
|
|
821
|
+
// Thrown if Email Enumeration Protection is enabled in the project and the email or password is
|
|
822
|
+
// invalid.
|
|
823
|
+
_a$1["INVALID_LOGIN_CREDENTIALS" /* ServerError.INVALID_LOGIN_CREDENTIALS */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
820
824
|
// Sign up with email and password errors.
|
|
821
825
|
_a$1["EMAIL_EXISTS" /* ServerError.EMAIL_EXISTS */] = "email-already-in-use" /* AuthErrorCode.EMAIL_EXISTS */,
|
|
822
826
|
_a$1["PASSWORD_LOGIN_DISABLED" /* ServerError.PASSWORD_LOGIN_DISABLED */] = "operation-not-allowed" /* AuthErrorCode.OPERATION_NOT_ALLOWED */,
|
|
823
827
|
// Verify assertion for sign in with credential errors:
|
|
824
|
-
_a$1["INVALID_IDP_RESPONSE" /* ServerError.INVALID_IDP_RESPONSE */] = "invalid-credential" /* AuthErrorCode.
|
|
825
|
-
_a$1["INVALID_PENDING_TOKEN" /* ServerError.INVALID_PENDING_TOKEN */] = "invalid-credential" /* AuthErrorCode.
|
|
828
|
+
_a$1["INVALID_IDP_RESPONSE" /* ServerError.INVALID_IDP_RESPONSE */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
829
|
+
_a$1["INVALID_PENDING_TOKEN" /* ServerError.INVALID_PENDING_TOKEN */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
826
830
|
_a$1["FEDERATED_USER_ID_ALREADY_LINKED" /* ServerError.FEDERATED_USER_ID_ALREADY_LINKED */] = "credential-already-in-use" /* AuthErrorCode.CREDENTIAL_ALREADY_IN_USE */,
|
|
827
831
|
// This can only happen if the SDK sends a bad request.
|
|
828
832
|
_a$1["MISSING_REQ_TYPE" /* ServerError.MISSING_REQ_TYPE */] = "internal-error" /* AuthErrorCode.INTERNAL_ERROR */,
|
|
@@ -844,7 +848,7 @@ var SERVER_ERROR_MAP = (_a$1 = {},
|
|
|
844
848
|
// Phone Auth related errors.
|
|
845
849
|
_a$1["INVALID_CODE" /* ServerError.INVALID_CODE */] = "invalid-verification-code" /* AuthErrorCode.INVALID_CODE */,
|
|
846
850
|
_a$1["INVALID_SESSION_INFO" /* ServerError.INVALID_SESSION_INFO */] = "invalid-verification-id" /* AuthErrorCode.INVALID_SESSION_INFO */,
|
|
847
|
-
_a$1["INVALID_TEMPORARY_PROOF" /* ServerError.INVALID_TEMPORARY_PROOF */] = "invalid-credential" /* AuthErrorCode.
|
|
851
|
+
_a$1["INVALID_TEMPORARY_PROOF" /* ServerError.INVALID_TEMPORARY_PROOF */] = "invalid-credential" /* AuthErrorCode.INVALID_CREDENTIAL */,
|
|
848
852
|
_a$1["MISSING_SESSION_INFO" /* ServerError.MISSING_SESSION_INFO */] = "missing-verification-id" /* AuthErrorCode.MISSING_SESSION_INFO */,
|
|
849
853
|
_a$1["SESSION_EXPIRED" /* ServerError.SESSION_EXPIRED */] = "code-expired" /* AuthErrorCode.CODE_EXPIRED */,
|
|
850
854
|
// Other action code errors when additional settings passed.
|
|
@@ -1728,6 +1732,13 @@ function requestStsToken(auth, refreshToken) {
|
|
|
1728
1732
|
}
|
|
1729
1733
|
});
|
|
1730
1734
|
});
|
|
1735
|
+
}
|
|
1736
|
+
function revokeToken(auth, request) {
|
|
1737
|
+
return __awaiter(this, void 0, void 0, function () {
|
|
1738
|
+
return __generator(this, function (_a) {
|
|
1739
|
+
return [2 /*return*/, _performApiRequest(auth, "POST" /* HttpMethod.POST */, "/v2/accounts:revokeToken" /* Endpoint.REVOKE_TOKEN */, _addTidIfNecessary(auth, request))];
|
|
1740
|
+
});
|
|
1741
|
+
});
|
|
1731
1742
|
}
|
|
1732
1743
|
|
|
1733
1744
|
/**
|
|
@@ -3330,6 +3341,37 @@ var AuthImpl = /** @class */ (function () {
|
|
|
3330
3341
|
}
|
|
3331
3342
|
});
|
|
3332
3343
|
};
|
|
3344
|
+
/**
|
|
3345
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
3346
|
+
*/
|
|
3347
|
+
AuthImpl.prototype.revokeAccessToken = function (token) {
|
|
3348
|
+
return __awaiter(this, void 0, void 0, function () {
|
|
3349
|
+
var idToken, request;
|
|
3350
|
+
return __generator(this, function (_a) {
|
|
3351
|
+
switch (_a.label) {
|
|
3352
|
+
case 0:
|
|
3353
|
+
if (!this.currentUser) return [3 /*break*/, 3];
|
|
3354
|
+
return [4 /*yield*/, this.currentUser.getIdToken()];
|
|
3355
|
+
case 1:
|
|
3356
|
+
idToken = _a.sent();
|
|
3357
|
+
request = {
|
|
3358
|
+
providerId: 'apple.com',
|
|
3359
|
+
tokenType: "ACCESS_TOKEN" /* TokenType.ACCESS_TOKEN */,
|
|
3360
|
+
token: token,
|
|
3361
|
+
idToken: idToken
|
|
3362
|
+
};
|
|
3363
|
+
if (this.tenantId != null) {
|
|
3364
|
+
request.tenantId = this.tenantId;
|
|
3365
|
+
}
|
|
3366
|
+
return [4 /*yield*/, revokeToken(this, request)];
|
|
3367
|
+
case 2:
|
|
3368
|
+
_a.sent();
|
|
3369
|
+
_a.label = 3;
|
|
3370
|
+
case 3: return [2 /*return*/];
|
|
3371
|
+
}
|
|
3372
|
+
});
|
|
3373
|
+
});
|
|
3374
|
+
};
|
|
3333
3375
|
AuthImpl.prototype.toJSON = function () {
|
|
3334
3376
|
var _a;
|
|
3335
3377
|
return {
|
|
@@ -4173,6 +4215,15 @@ function updateEmailPassword(auth, request) {
|
|
|
4173
4215
|
});
|
|
4174
4216
|
});
|
|
4175
4217
|
}
|
|
4218
|
+
// Used for linking an email/password account to an existing idToken. Uses the same request/response
|
|
4219
|
+
// format as updateEmailPassword.
|
|
4220
|
+
function linkEmailPassword(auth, request) {
|
|
4221
|
+
return __awaiter(this, void 0, void 0, function () {
|
|
4222
|
+
return __generator(this, function (_a) {
|
|
4223
|
+
return [2 /*return*/, _performApiRequest(auth, "POST" /* HttpMethod.POST */, "/v1/accounts:signUp" /* Endpoint.SIGN_UP */, request)];
|
|
4224
|
+
});
|
|
4225
|
+
});
|
|
4226
|
+
}
|
|
4176
4227
|
function applyActionCode$1(auth, request) {
|
|
4177
4228
|
return __awaiter(this, void 0, void 0, function () {
|
|
4178
4229
|
return __generator(this, function (_a) {
|
|
@@ -4381,15 +4432,18 @@ var EmailAuthCredential = /** @class */ (function (_super) {
|
|
|
4381
4432
|
/** @internal */
|
|
4382
4433
|
EmailAuthCredential.prototype._linkToIdToken = function (auth, idToken) {
|
|
4383
4434
|
return __awaiter(this, void 0, void 0, function () {
|
|
4435
|
+
var request;
|
|
4384
4436
|
return __generator(this, function (_a) {
|
|
4385
4437
|
switch (this.signInMethod) {
|
|
4386
4438
|
case "password" /* SignInMethod.EMAIL_PASSWORD */:
|
|
4387
|
-
|
|
4388
|
-
|
|
4389
|
-
|
|
4390
|
-
|
|
4391
|
-
|
|
4392
|
-
|
|
4439
|
+
request = {
|
|
4440
|
+
idToken: idToken,
|
|
4441
|
+
returnSecureToken: true,
|
|
4442
|
+
email: this._email,
|
|
4443
|
+
password: this._password,
|
|
4444
|
+
clientType: "CLIENT_TYPE_WEB" /* RecaptchaClientType.WEB */
|
|
4445
|
+
};
|
|
4446
|
+
return [2 /*return*/, handleRecaptchaFlow(auth, request, "signUpPassword" /* RecaptchaActionName.SIGN_UP_PASSWORD */, linkEmailPassword)];
|
|
4393
4447
|
case "emailLink" /* SignInMethod.EMAIL_LINK */:
|
|
4394
4448
|
return [2 /*return*/, signInWithEmailLinkForLinking(auth, {
|
|
4395
4449
|
idToken: idToken,
|
|
@@ -6559,7 +6613,9 @@ function recachePasswordPolicy(auth) {
|
|
|
6559
6613
|
});
|
|
6560
6614
|
}
|
|
6561
6615
|
/**
|
|
6562
|
-
* Sends a password reset email to the given email address.
|
|
6616
|
+
* Sends a password reset email to the given email address. This method does not throw an error when
|
|
6617
|
+
* there's no user account with the given email address and
|
|
6618
|
+
* [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
6563
6619
|
*
|
|
6564
6620
|
* @remarks
|
|
6565
6621
|
* To complete the password reset, call {@link confirmPasswordReset} with the code supplied in
|
|
@@ -6800,6 +6856,8 @@ function createUserWithEmailAndPassword(auth, email, password) {
|
|
|
6800
6856
|
*
|
|
6801
6857
|
* @remarks
|
|
6802
6858
|
* Fails with an error if the email address and password do not match.
|
|
6859
|
+
* When [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled,
|
|
6860
|
+
* this method fails with "auth/invalid-credential" in case of an invalid email/password.
|
|
6803
6861
|
*
|
|
6804
6862
|
* Note: The user's password is NOT the password used to access the user's email account. The
|
|
6805
6863
|
* email address serves as a unique identifier for the user, and the password is used to access
|
|
@@ -7008,7 +7066,9 @@ function createAuthUri(auth, request) {
|
|
|
7008
7066
|
* limitations under the License.
|
|
7009
7067
|
*/
|
|
7010
7068
|
/**
|
|
7011
|
-
* Gets the list of possible sign in methods for the given email address.
|
|
7069
|
+
* Gets the list of possible sign in methods for the given email address. This method returns an
|
|
7070
|
+
* empty list when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled, irrespective of the number of
|
|
7071
|
+
* authentication methods available for the given email.
|
|
7012
7072
|
*
|
|
7013
7073
|
* @remarks
|
|
7014
7074
|
* This is useful to differentiate methods of sign-in for the same provider, eg.
|
|
@@ -7019,6 +7079,8 @@ function createAuthUri(auth, request) {
|
|
|
7019
7079
|
* @param auth - The {@link Auth} instance.
|
|
7020
7080
|
* @param email - The user's email address.
|
|
7021
7081
|
*
|
|
7082
|
+
* Deprecated. Migrating off of this method is recommended as a security best-practice.
|
|
7083
|
+
* Learn more in the Identity Platform documentation for [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection).
|
|
7022
7084
|
* @public
|
|
7023
7085
|
*/
|
|
7024
7086
|
function fetchSignInMethodsForEmail(auth, email) {
|
|
@@ -7273,6 +7335,9 @@ function updateProfile(user, _a) {
|
|
|
7273
7335
|
* @param user - The user.
|
|
7274
7336
|
* @param newEmail - The new email address.
|
|
7275
7337
|
*
|
|
7338
|
+
* Throws "auth/operation-not-allowed" error when [Email Enumeration Protection](https://cloud.google.com/identity-platform/docs/admin/email-enumeration-protection) is enabled.
|
|
7339
|
+
* Deprecated - Use {@link verifyBeforeUpdateEmail} instead.
|
|
7340
|
+
*
|
|
7276
7341
|
* @public
|
|
7277
7342
|
*/
|
|
7278
7343
|
function updateEmail(user, newEmail) {
|
|
@@ -7650,6 +7715,18 @@ function updateCurrentUser(auth, user) {
|
|
|
7650
7715
|
function signOut(auth) {
|
|
7651
7716
|
return getModularInstance(auth).signOut();
|
|
7652
7717
|
}
|
|
7718
|
+
/**
|
|
7719
|
+
* Revokes the given access token. Currently only supports Apple OAuth access tokens.
|
|
7720
|
+
*
|
|
7721
|
+
* @param auth - The {@link Auth} instance.
|
|
7722
|
+
* @param token - The Apple OAuth access token.
|
|
7723
|
+
*
|
|
7724
|
+
* @public
|
|
7725
|
+
*/
|
|
7726
|
+
function revokeAccessToken(auth, token) {
|
|
7727
|
+
var authInternal = _castAuth(auth);
|
|
7728
|
+
return authInternal.revokeAccessToken(token);
|
|
7729
|
+
}
|
|
7653
7730
|
/**
|
|
7654
7731
|
* Deletes and signs out the user.
|
|
7655
7732
|
*
|
|
@@ -12183,7 +12260,7 @@ function _isEmptyString(input) {
|
|
|
12183
12260
|
}
|
|
12184
12261
|
|
|
12185
12262
|
var name = "@firebase/auth";
|
|
12186
|
-
var version = "1.
|
|
12263
|
+
var version = "1.4.0-canary.00235ba68";
|
|
12187
12264
|
|
|
12188
12265
|
/**
|
|
12189
12266
|
* @license
|
|
@@ -12435,5 +12512,5 @@ function getAuth(app) {
|
|
|
12435
12512
|
}
|
|
12436
12513
|
registerAuth("Browser" /* ClientPlatform.BROWSER */);
|
|
12437
12514
|
|
|
12438
|
-
export {
|
|
12439
|
-
//# sourceMappingURL=index-
|
|
12515
|
+
export { TwitterAuthProvider as $, ActionCodeOperation as A, updateCurrentUser as B, signOut as C, revokeAccessToken as D, deleteUser as E, FactorId as F, debugErrorMap as G, prodErrorMap as H, AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY as I, initializeAuth as J, connectAuthEmulator as K, AuthCredential as L, EmailAuthCredential as M, OAuthCredential as N, OperationType as O, PhoneAuthProvider as P, PhoneAuthCredential as Q, RecaptchaVerifier as R, SignInMethod as S, TotpMultiFactorGenerator as T, inMemoryPersistence as U, EmailAuthProvider as V, FacebookAuthProvider as W, GoogleAuthProvider as X, GithubAuthProvider as Y, OAuthProvider as Z, SAMLAuthProvider as _, browserSessionPersistence as a, signInAnonymously as a0, signInWithCredential as a1, linkWithCredential as a2, reauthenticateWithCredential as a3, signInWithCustomToken as a4, sendPasswordResetEmail as a5, confirmPasswordReset as a6, applyActionCode as a7, checkActionCode as a8, verifyPasswordResetCode as a9, _isIOS7Or8 as aA, _assert as aB, _createError as aC, AuthEventManager as aD, _getInstance as aE, _persistenceKeyName as aF, _clearRedirectOutcomes as aG, _getRedirectResult as aH, _overrideRedirectResult as aI, _castAuth as aJ, UserImpl as aK, AuthImpl as aL, _getClientVersion as aM, _generateEventId as aN, AuthPopup as aO, FetchProvider as aP, SAMLAuthCredential as aQ, createUserWithEmailAndPassword as aa, signInWithEmailAndPassword as ab, sendSignInLinkToEmail as ac, isSignInWithEmailLink as ad, signInWithEmailLink as ae, fetchSignInMethodsForEmail as af, sendEmailVerification as ag, verifyBeforeUpdateEmail as ah, ActionCodeURL as ai, parseActionCodeURL as aj, updateProfile as ak, updateEmail as al, updatePassword as am, getIdToken as an, getIdTokenResult as ao, unlink as ap, getAdditionalUserInfo as aq, reload as ar, getMultiFactorResolver as as, multiFactor as at, _isIOS as au, _isAndroid as av, _fail as aw, _getRedirectUrl as ax, debugAssert as ay, _getProjectConfig as az, browserLocalPersistence as b, signInWithPopup as c, linkWithPopup as d, reauthenticateWithPopup as e, signInWithRedirect as f, linkWithRedirect as g, reauthenticateWithRedirect as h, indexedDBLocalPersistence as i, getRedirectResult as j, browserPopupRedirectResolver as k, linkWithPhoneNumber as l, PhoneMultiFactorGenerator as m, TotpSecret as n, getAuth as o, ProviderId as p, setPersistence as q, reauthenticateWithPhoneNumber as r, signInWithPhoneNumber as s, initializeRecaptchaConfig as t, updatePhoneNumber as u, validatePassword as v, onIdTokenChanged as w, beforeAuthStateChanged as x, onAuthStateChanged as y, useDeviceLanguage as z };
|
|
12516
|
+
//# sourceMappingURL=index-ab0a3e4e.js.map
|