@firebase/auth 1.7.9-canary.aa6db78eb → 1.7.9-canary.b942e9e6e

package/dist/cordova/internal.js

@@ -1,5 +1,5 @@
-import { ai as _performApiRequest, aj as _addTidIfNecessary, ak as _assert, al as Delay, am as _window, an as isV2, ao as _createError, ap as _recaptchaV2ScriptUrl, aq as _loadJS, ar as _generateCallbackName, as as getRecaptchaParams, at as _isHttpOrHttps, au as _isWorker, av as _castAuth, M as signInWithCredential, aw as _serverAppCurrentUserOperationNotSupportedError, N as linkWithCredential, ax as _assertLinkedStatus, Q as reauthenticateWithCredential, ay as sendPhoneVerificationCode, az as startEnrollPhoneMfa, aA as _link, B as PhoneAuthCredential, aB as debugAssert, aC as _generateEventId, aD as AbstractPopupRedirectOperation, aE as _assertInstanceOf, aF as _withDefaultResolver, aG as FederatedAuthProvider, aH as _fail, aI as _getProjectConfig, aJ as _getCurrentUrl, aK as _gapiScriptUrl, aL as _emulatorUrl, aM as _isChromeIOS, aN as _isFirefox, aO as _isIOSStandalone, aP as _getRedirectUrl, aQ as _setWindowLocation, aR as _isMobileBrowser, aS as _isSafari, aT as _isIOS, f as browserSessionPersistence, aU as _getRedirectResult, aV as _overrideRedirectResult, aW as AuthEventManager, aX as debugFail, aY as finalizeEnrollPhoneMfa, aZ as finalizeEnrollTotpMfa, a_ as startEnrollTotpMfa, r as registerAuth, i as initializeAuth, c as indexedDBLocalPersistence, e as browserLocalPersistence, j as beforeAuthStateChanged, o as onIdTokenChanged, x as connectAuthEmulator, a$ as _setExternalJSProvider } from './popup_redirect-1e109c2a.js';
-export { A as ActionCodeOperation, a6 as ActionCodeURL, y as AuthCredential, w as AuthErrorCodes, b3 as AuthImpl, E as EmailAuthCredential, D as EmailAuthProvider, G as FacebookAuthProvider, F as FactorId, b5 as FetchProvider, I as GithubAuthProvider, H as GoogleAuthProvider, z as OAuthCredential, J as OAuthProvider, O as OperationType, B as PhoneAuthCredential, P as ProviderId, b6 as SAMLAuthCredential, K as SAMLAuthProvider, S as SignInMethod, T as TwitterAuthProvider, b1 as UserImpl, ak as _assert, av as _castAuth, aH as _fail, aC as _generateEventId, b4 as _getClientVersion, b2 as _getInstance, aU as _getRedirectResult, aV as _overrideRedirectResult, b0 as _persistenceKeyName, W as applyActionCode, j as beforeAuthStateChanged, e as browserLocalPersistence, f as browserSessionPersistence, X as checkActionCode, V as confirmPasswordReset, x as connectAuthEmulator, d as cordovaPopupRedirectResolver, Z as createUserWithEmailAndPassword, q as debugErrorMap, p as deleteUser, a3 as fetchSignInMethodsForEmail, ae as getAdditionalUserInfo, ab as getIdToken, ac as getIdTokenResult, ag as getMultiFactorResolver, g as getRedirectResult, C as inMemoryPersistence, c as indexedDBLocalPersistence, i as initializeAuth, h as initializeRecaptchaConfig, a1 as isSignInWithEmailLink, N as linkWithCredential, b8 as linkWithRedirect, ah as multiFactor, k as onAuthStateChanged, o as onIdTokenChanged, a7 as parseActionCodeURL, t as prodErrorMap, Q as reauthenticateWithCredential, b9 as reauthenticateWithRedirect, af as reload, n as revokeAccessToken, a4 as sendEmailVerification, U as sendPasswordResetEmail, a0 as sendSignInLinkToEmail, s as setPersistence, L as signInAnonymously, M as signInWithCredential, R as signInWithCustomToken, $ as signInWithEmailAndPassword, a2 as signInWithEmailLink, b7 as signInWithRedirect, m as signOut, ad as unlink, l as updateCurrentUser, a9 as updateEmail, aa as updatePassword, a8 as updateProfile, u as useDeviceLanguage, v as validatePassword, a5 as verifyBeforeUpdateEmail, Y as verifyPasswordResetCode } from './popup_redirect-1e109c2a.js';
+import { ai as _performApiRequest, aj as _addTidIfNecessary, ak as Delay, al as _window, am as _assert, an as isV2, ao as _createError, ap as _recaptchaV2ScriptUrl, aq as _loadJS, ar as MockReCaptcha, as as _generateCallbackName, at as getRecaptchaParams, au as _isHttpOrHttps, av as _isWorker, aw as _castAuth, M as signInWithCredential, ax as _serverAppCurrentUserOperationNotSupportedError, N as linkWithCredential, ay as _assertLinkedStatus, Q as reauthenticateWithCredential, az as handleRecaptchaFlow, aA as _initializeRecaptchaConfig, aB as _link, aC as sendPhoneVerificationCode, aD as FAKE_TOKEN, aE as startEnrollPhoneMfa, B as PhoneAuthCredential, aF as debugAssert, aG as _generateEventId, aH as AbstractPopupRedirectOperation, aI as _assertInstanceOf, aJ as _withDefaultResolver, aK as FederatedAuthProvider, aL as _fail, aM as _getProjectConfig, aN as _getCurrentUrl, aO as _gapiScriptUrl, aP as _emulatorUrl, aQ as _isChromeIOS, aR as _isFirefox, aS as _isIOSStandalone, aT as _getRedirectUrl, aU as _setWindowLocation, aV as _isMobileBrowser, aW as _isSafari, aX as _isIOS, f as browserSessionPersistence, aY as _getRedirectResult, aZ as _overrideRedirectResult, a_ as AuthEventManager, a$ as debugFail, b0 as finalizeEnrollPhoneMfa, b1 as finalizeEnrollTotpMfa, b2 as startEnrollTotpMfa, r as registerAuth, i as initializeAuth, c as indexedDBLocalPersistence, e as browserLocalPersistence, j as beforeAuthStateChanged, o as onIdTokenChanged, x as connectAuthEmulator, b3 as _setExternalJSProvider } from './popup_redirect-63b3580d.js';
+export { A as ActionCodeOperation, a6 as ActionCodeURL, y as AuthCredential, w as AuthErrorCodes, b7 as AuthImpl, E as EmailAuthCredential, D as EmailAuthProvider, G as FacebookAuthProvider, F as FactorId, b9 as FetchProvider, I as GithubAuthProvider, H as GoogleAuthProvider, z as OAuthCredential, J as OAuthProvider, O as OperationType, B as PhoneAuthCredential, P as ProviderId, ba as SAMLAuthCredential, K as SAMLAuthProvider, S as SignInMethod, T as TwitterAuthProvider, b5 as UserImpl, am as _assert, aw as _castAuth, aL as _fail, aG as _generateEventId, b8 as _getClientVersion, b6 as _getInstance, aY as _getRedirectResult, aZ as _overrideRedirectResult, b4 as _persistenceKeyName, W as applyActionCode, j as beforeAuthStateChanged, e as browserLocalPersistence, f as browserSessionPersistence, X as checkActionCode, V as confirmPasswordReset, x as connectAuthEmulator, d as cordovaPopupRedirectResolver, Z as createUserWithEmailAndPassword, q as debugErrorMap, p as deleteUser, a3 as fetchSignInMethodsForEmail, ae as getAdditionalUserInfo, ab as getIdToken, ac as getIdTokenResult, ag as getMultiFactorResolver, g as getRedirectResult, C as inMemoryPersistence, c as indexedDBLocalPersistence, i as initializeAuth, h as initializeRecaptchaConfig, a1 as isSignInWithEmailLink, N as linkWithCredential, bc as linkWithRedirect, ah as multiFactor, k as onAuthStateChanged, o as onIdTokenChanged, a7 as parseActionCodeURL, t as prodErrorMap, Q as reauthenticateWithCredential, bd as reauthenticateWithRedirect, af as reload, n as revokeAccessToken, a4 as sendEmailVerification, U as sendPasswordResetEmail, a0 as sendSignInLinkToEmail, s as setPersistence, L as signInAnonymously, M as signInWithCredential, R as signInWithCustomToken, $ as signInWithEmailAndPassword, a2 as signInWithEmailLink, bb as signInWithRedirect, m as signOut, ad as unlink, l as updateCurrentUser, a9 as updateEmail, aa as updatePassword, a8 as updateProfile, u as useDeviceLanguage, v as validatePassword, a5 as verifyBeforeUpdateEmail, Y as verifyPasswordResetCode } from './popup_redirect-63b3580d.js';
 import { __awaiter, __generator, __assign, __extends, __spreadArray } from 'tslib';
 import { querystring, getModularInstance, getUA, getExperimentalSetting, getDefaultEmulatorHost } from '@firebase/util';
 import { _isFirebaseServerApp, SDK_VERSION, getApp, _getProvider } from '@firebase/app';
@@ -32,143 +32,6 @@ function finalizeSignInTotpMfa(auth, request) {
     return _performApiRequest(auth, "POST" /* HttpMethod.POST */, "/v2/accounts/mfaSignIn:finalize" /* Endpoint.FINALIZE_MFA_SIGN_IN */, _addTidIfNecessary(auth, request));
 }
 
-/**
- * @license
- * Copyright 2020 Google LLC
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- *   http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- */
-var _SOLVE_TIME_MS = 500;
-var _EXPIRATION_TIME_MS = 60000;
-var _WIDGET_ID_START = 1000000000000;
-var MockReCaptcha = /** @class */ (function () {
-    function MockReCaptcha(auth) {
-        this.auth = auth;
-        this.counter = _WIDGET_ID_START;
-        this._widgets = new Map();
-    }
-    MockReCaptcha.prototype.render = function (container, parameters) {
-        var id = this.counter;
-        this._widgets.set(id, new MockWidget(container, this.auth.name, parameters || {}));
-        this.counter++;
-        return id;
-    };
-    MockReCaptcha.prototype.reset = function (optWidgetId) {
-        var _a;
-        var id = optWidgetId || _WIDGET_ID_START;
-        void ((_a = this._widgets.get(id)) === null || _a === void 0 ? void 0 : _a.delete());
-        this._widgets.delete(id);
-    };
-    MockReCaptcha.prototype.getResponse = function (optWidgetId) {
-        var _a;
-        var id = optWidgetId || _WIDGET_ID_START;
-        return ((_a = this._widgets.get(id)) === null || _a === void 0 ? void 0 : _a.getResponse()) || '';
-    };
-    MockReCaptcha.prototype.execute = function (optWidgetId) {
-        var _a;
-        return __awaiter(this, void 0, void 0, function () {
-            var id;
-            return __generator(this, function (_b) {
-                id = optWidgetId || _WIDGET_ID_START;
-                void ((_a = this._widgets.get(id)) === null || _a === void 0 ? void 0 : _a.execute());
-                return [2 /*return*/, ''];
-            });
-        });
-    };
-    return MockReCaptcha;
-}());
-var MockWidget = /** @class */ (function () {
-    function MockWidget(containerOrId, appName, params) {
-        var _this = this;
-        this.params = params;
-        this.timerId = null;
-        this.deleted = false;
-        this.responseToken = null;
-        this.clickHandler = function () {
-            _this.execute();
-        };
-        var container = typeof containerOrId === 'string'
-            ? document.getElementById(containerOrId)
-            : containerOrId;
-        _assert(container, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */, { appName: appName });
-        this.container = container;
-        this.isVisible = this.params.size !== 'invisible';
-        if (this.isVisible) {
-            this.execute();
-        }
-        else {
-            this.container.addEventListener('click', this.clickHandler);
-        }
-    }
-    MockWidget.prototype.getResponse = function () {
-        this.checkIfDeleted();
-        return this.responseToken;
-    };
-    MockWidget.prototype.delete = function () {
-        this.checkIfDeleted();
-        this.deleted = true;
-        if (this.timerId) {
-            clearTimeout(this.timerId);
-            this.timerId = null;
-        }
-        this.container.removeEventListener('click', this.clickHandler);
-    };
-    MockWidget.prototype.execute = function () {
-        var _this = this;
-        this.checkIfDeleted();
-        if (this.timerId) {
-            return;
-        }
-        this.timerId = window.setTimeout(function () {
-            _this.responseToken = generateRandomAlphaNumericString(50);
-            var _a = _this.params, callback = _a.callback, expiredCallback = _a["expired-callback"];
-            if (callback) {
-                try {
-                    callback(_this.responseToken);
-                }
-                catch (e) { }
-            }
-            _this.timerId = window.setTimeout(function () {
-                _this.timerId = null;
-                _this.responseToken = null;
-                if (expiredCallback) {
-                    try {
-                        expiredCallback();
-                    }
-                    catch (e) { }
-                }
-                if (_this.isVisible) {
-                    _this.execute();
-                }
-            }, _EXPIRATION_TIME_MS);
-        }, _SOLVE_TIME_MS);
-    };
-    MockWidget.prototype.checkIfDeleted = function () {
-        if (this.deleted) {
-            throw new Error('reCAPTCHA mock was already deleted!');
-        }
-    };
-    return MockWidget;
-}());
-function generateRandomAlphaNumericString(len) {
-    var chars = [];
-    var allowedChars = '1234567890abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
-    for (var i = 0; i < len; i++) {
-        chars.push(allowedChars.charAt(Math.floor(Math.random() * allowedChars.length)));
-    }
-    return chars.join('');
-}
-
 /**
  * @license
  * Copyright 2020 Google LLC
@@ -575,12 +438,15 @@ var ConfirmationResultImpl = /** @class */ (function () {
  * provides the code sent to their phone, call {@link ConfirmationResult.confirm}
  * with the code to sign the user in.
  *
- * For abuse prevention, this method also requires a {@link ApplicationVerifier}.
- * This SDK includes a reCAPTCHA-based implementation, {@link RecaptchaVerifier}.
+ * For abuse prevention, this method requires a {@link ApplicationVerifier}.
+ * This SDK includes an implementation based on reCAPTCHA v2, {@link RecaptchaVerifier}.
  * This function can work on other platforms that do not support the
  * {@link RecaptchaVerifier} (like React Native), but you need to use a
  * third-party {@link ApplicationVerifier} implementation.
  *
+ * If you've enabled project-level reCAPTCHA Enterprise bot protection in
+ * Enforce mode, you can omit the {@link ApplicationVerifier}.
+ *
  * This method does not work in a Node.js environment or with {@link Auth} instances created with a
  * {@link @firebase/app#FirebaseServerApp}.
  *
@@ -693,17 +559,29 @@ function reauthenticateWithPhoneNumber(user, phoneNumber, appVerifier) {
 function _verifyPhoneNumber(auth, options, verifier) {
     var _a;
     return __awaiter(this, void 0, void 0, function () {
-        var recaptchaToken, phoneInfoOptions, session, response, mfaEnrollmentId, response, sessionInfo;
+        var phoneInfoOptions, session, startPhoneMfaEnrollmentRequest, startEnrollPhoneMfaActionCallback, startPhoneMfaEnrollmentResponse, response, mfaEnrollmentId, startPhoneMfaSignInRequest, startSignInPhoneMfaActionCallback, startPhoneMfaSignInResponse, response, sendPhoneVerificationCodeRequest, sendPhoneVerificationCodeActionCallback, sendPhoneVerificationCodeResponse, response;
+        var _this = this;
         return __generator(this, function (_b) {
             switch (_b.label) {
-                case 0: return [4 /*yield*/, verifier.verify()];
+                case 0:
+                    if (!!auth._getRecaptchaConfig()) return [3 /*break*/, 4];
+                    _b.label = 1;
                 case 1:
-                    recaptchaToken = _b.sent();
-                    _b.label = 2;
+                    _b.trys.push([1, 3, , 4]);
+                    return [4 /*yield*/, _initializeRecaptchaConfig(auth)];
                 case 2:
-                    _b.trys.push([2, , 10, 11]);
-                    _assert(typeof recaptchaToken === 'string', auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
-                    _assert(verifier.type === RECAPTCHA_VERIFIER_TYPE, auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                    _b.sent();
+                    return [3 /*break*/, 4];
+                case 3:
+                    _b.sent();
+                    // If an error occurs while fetching the config, there is no way to know the enablement state
+                    // of Phone provider, so we proceed with recaptcha V2 verification.
+                    // The error is likely "recaptchaKey undefined", as reCAPTCHA Enterprise is not
+                    // enabled for any provider.
+                    console.log('Failed to initialize reCAPTCHA Enterprise config. Triggering the reCAPTCHA v2 verification.');
+                    return [3 /*break*/, 4];
+                case 4:
+                    _b.trys.push([4, , 12, 13]);
                     phoneInfoOptions = void 0;
                     if (typeof options === 'string') {
                         phoneInfoOptions = {
@@ -713,48 +591,106 @@ function _verifyPhoneNumber(auth, options, verifier) {
                     else {
                         phoneInfoOptions = options;
                     }
-                    if (!('session' in phoneInfoOptions)) return [3 /*break*/, 7];
+                    if (!('session' in phoneInfoOptions)) return [3 /*break*/, 9];
                     session = phoneInfoOptions.session;
-                    if (!('phoneNumber' in phoneInfoOptions)) return [3 /*break*/, 4];
+                    if (!('phoneNumber' in phoneInfoOptions)) return [3 /*break*/, 6];
                     _assert(session.type === "enroll" /* MultiFactorSessionType.ENROLL */, auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
-                    return [4 /*yield*/, startEnrollPhoneMfa(auth, {
-                            idToken: session.credential,
-                            phoneEnrollmentInfo: {
-                                phoneNumber: phoneInfoOptions.phoneNumber,
-                                recaptchaToken: recaptchaToken
+                    startPhoneMfaEnrollmentRequest = {
+                        idToken: session.credential,
+                        phoneEnrollmentInfo: {
+                            phoneNumber: phoneInfoOptions.phoneNumber,
+                            clientType: "CLIENT_TYPE_WEB" /* RecaptchaClientType.WEB */
+                        }
+                    };
+                    startEnrollPhoneMfaActionCallback = function (authInstance, request) { return __awaiter(_this, void 0, void 0, function () {
+                        var requestWithRecaptchaV2;
+                        return __generator(this, function (_a) {
+                            switch (_a.label) {
+                                case 0:
+                                    if (!(request.phoneEnrollmentInfo.captchaResponse === FAKE_TOKEN)) return [3 /*break*/, 2];
+                                    _assert((verifier === null || verifier === void 0 ? void 0 : verifier.type) === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                                    return [4 /*yield*/, injectRecaptchaV2Token(authInstance, request, verifier)];
+                                case 1:
+                                    requestWithRecaptchaV2 = _a.sent();
+                                    return [2 /*return*/, startEnrollPhoneMfa(authInstance, requestWithRecaptchaV2)];
+                                case 2: return [2 /*return*/, startEnrollPhoneMfa(authInstance, request)];
                             }
+                        });
+                    }); };
+                    startPhoneMfaEnrollmentResponse = handleRecaptchaFlow(auth, startPhoneMfaEnrollmentRequest, "mfaSmsEnrollment" /* RecaptchaActionName.MFA_SMS_ENROLLMENT */, startEnrollPhoneMfaActionCallback, "PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */);
+                    return [4 /*yield*/, startPhoneMfaEnrollmentResponse.catch(function (error) {
+                            return Promise.reject(error);
                         })];
-                case 3:
+                case 5:
                     response = _b.sent();
                     return [2 /*return*/, response.phoneSessionInfo.sessionInfo];
-                case 4:
+                case 6:
                     _assert(session.type === "signin" /* MultiFactorSessionType.SIGN_IN */, auth, "internal-error" /* AuthErrorCode.INTERNAL_ERROR */);
                     mfaEnrollmentId = ((_a = phoneInfoOptions.multiFactorHint) === null || _a === void 0 ? void 0 : _a.uid) ||
                         phoneInfoOptions.multiFactorUid;
                     _assert(mfaEnrollmentId, auth, "missing-multi-factor-info" /* AuthErrorCode.MISSING_MFA_INFO */);
-                    return [4 /*yield*/, startSignInPhoneMfa(auth, {
-                            mfaPendingCredential: session.credential,
-                            mfaEnrollmentId: mfaEnrollmentId,
-                            phoneSignInInfo: {
-                                recaptchaToken: recaptchaToken
+                    startPhoneMfaSignInRequest = {
+                        mfaPendingCredential: session.credential,
+                        mfaEnrollmentId: mfaEnrollmentId,
+                        phoneSignInInfo: {
+                            clientType: "CLIENT_TYPE_WEB" /* RecaptchaClientType.WEB */
+                        }
+                    };
+                    startSignInPhoneMfaActionCallback = function (authInstance, request) { return __awaiter(_this, void 0, void 0, function () {
+                        var requestWithRecaptchaV2;
+                        return __generator(this, function (_a) {
+                            switch (_a.label) {
+                                case 0:
+                                    if (!(request.phoneSignInInfo.captchaResponse === FAKE_TOKEN)) return [3 /*break*/, 2];
+                                    _assert((verifier === null || verifier === void 0 ? void 0 : verifier.type) === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                                    return [4 /*yield*/, injectRecaptchaV2Token(authInstance, request, verifier)];
+                                case 1:
+                                    requestWithRecaptchaV2 = _a.sent();
+                                    return [2 /*return*/, startSignInPhoneMfa(authInstance, requestWithRecaptchaV2)];
+                                case 2: return [2 /*return*/, startSignInPhoneMfa(authInstance, request)];
                             }
+                        });
+                    }); };
+                    startPhoneMfaSignInResponse = handleRecaptchaFlow(auth, startPhoneMfaSignInRequest, "mfaSmsSignIn" /* RecaptchaActionName.MFA_SMS_SIGNIN */, startSignInPhoneMfaActionCallback, "PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */);
+                    return [4 /*yield*/, startPhoneMfaSignInResponse.catch(function (error) {
+                            return Promise.reject(error);
                         })];
-                case 5:
+                case 7:
                     response = _b.sent();
                     return [2 /*return*/, response.phoneResponseInfo.sessionInfo];
-                case 6: return [3 /*break*/, 9];
-                case 7: return [4 /*yield*/, sendPhoneVerificationCode(auth, {
+                case 8: return [3 /*break*/, 11];
+                case 9:
+                    sendPhoneVerificationCodeRequest = {
                         phoneNumber: phoneInfoOptions.phoneNumber,
-                        recaptchaToken: recaptchaToken
-                    })];
-                case 8:
-                    sessionInfo = (_b.sent()).sessionInfo;
-                    return [2 /*return*/, sessionInfo];
-                case 9: return [3 /*break*/, 11];
+                        clientType: "CLIENT_TYPE_WEB" /* RecaptchaClientType.WEB */
+                    };
+                    sendPhoneVerificationCodeActionCallback = function (authInstance, request) { return __awaiter(_this, void 0, void 0, function () {
+                        var requestWithRecaptchaV2;
+                        return __generator(this, function (_a) {
+                            switch (_a.label) {
+                                case 0:
+                                    if (!(request.captchaResponse === FAKE_TOKEN)) return [3 /*break*/, 2];
+                                    _assert((verifier === null || verifier === void 0 ? void 0 : verifier.type) === RECAPTCHA_VERIFIER_TYPE, authInstance, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                                    return [4 /*yield*/, injectRecaptchaV2Token(authInstance, request, verifier)];
+                                case 1:
+                                    requestWithRecaptchaV2 = _a.sent();
+                                    return [2 /*return*/, sendPhoneVerificationCode(authInstance, requestWithRecaptchaV2)];
+                                case 2: return [2 /*return*/, sendPhoneVerificationCode(authInstance, request)];
+                            }
+                        });
+                    }); };
+                    sendPhoneVerificationCodeResponse = handleRecaptchaFlow(auth, sendPhoneVerificationCodeRequest, "sendVerificationCode" /* RecaptchaActionName.SEND_VERIFICATION_CODE */, sendPhoneVerificationCodeActionCallback, "PHONE_PROVIDER" /* RecaptchaAuthProvider.PHONE_PROVIDER */);
+                    return [4 /*yield*/, sendPhoneVerificationCodeResponse.catch(function (error) {
+                            return Promise.reject(error);
+                        })];
                 case 10:
-                    verifier._reset();
+                    response = _b.sent();
+                    return [2 /*return*/, response.sessionInfo];
+                case 11: return [3 /*break*/, 13];
+                case 12:
+                    verifier === null || verifier === void 0 ? void 0 : verifier._reset();
                     return [7 /*endfinally*/];
-                case 11: return [2 /*return*/];
+                case 13: return [2 /*return*/];
             }
         });
     });
@@ -799,6 +735,59 @@ function updatePhoneNumber(user, credential) {
             }
         });
     });
+}
+// Helper function that fetches and injects a reCAPTCHA v2 token into the request.
+function injectRecaptchaV2Token(auth, request, recaptchaV2Verifier) {
+    return __awaiter(this, void 0, void 0, function () {
+        var recaptchaV2Token, newRequest, phoneNumber, captchaResponse, clientType, recaptchaVersion, captchaResponse, clientType, recaptchaVersion;
+        return __generator(this, function (_a) {
+            switch (_a.label) {
+                case 0:
+                    _assert(recaptchaV2Verifier.type === RECAPTCHA_VERIFIER_TYPE, auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                    return [4 /*yield*/, recaptchaV2Verifier.verify()];
+                case 1:
+                    recaptchaV2Token = _a.sent();
+                    _assert(typeof recaptchaV2Token === 'string', auth, "argument-error" /* AuthErrorCode.ARGUMENT_ERROR */);
+                    newRequest = __assign({}, request);
+                    if ('phoneEnrollmentInfo' in newRequest) {
+                        phoneNumber = newRequest.phoneEnrollmentInfo.phoneNumber;
+                        captchaResponse = newRequest.phoneEnrollmentInfo.captchaResponse;
+                        clientType = newRequest
+                            .phoneEnrollmentInfo.clientType;
+                        recaptchaVersion = newRequest.phoneEnrollmentInfo.recaptchaVersion;
+                        Object.assign(newRequest, {
+                            'phoneEnrollmentInfo': {
+                                phoneNumber: phoneNumber,
+                                recaptchaToken: recaptchaV2Token,
+                                captchaResponse: captchaResponse,
+                                clientType: clientType,
+                                recaptchaVersion: recaptchaVersion
+                            }
+                        });
+                        return [2 /*return*/, newRequest];
+                    }
+                    else if ('phoneSignInInfo' in newRequest) {
+                        captchaResponse = newRequest.phoneSignInInfo.captchaResponse;
+                        clientType = newRequest
+                            .phoneSignInInfo.clientType;
+                        recaptchaVersion = newRequest.phoneSignInInfo.recaptchaVersion;
+                        Object.assign(newRequest, {
+                            'phoneSignInInfo': {
+                                recaptchaToken: recaptchaV2Token,
+                                captchaResponse: captchaResponse,
+                                clientType: clientType,
+                                recaptchaVersion: recaptchaVersion
+                            }
+                        });
+                        return [2 /*return*/, newRequest];
+                    }
+                    else {
+                        Object.assign(newRequest, { 'recaptchaToken': recaptchaV2Token });
+                        return [2 /*return*/, newRequest];
+                    }
+            }
+        });
+    });
 }
 
 /**
@@ -870,12 +859,14 @@ var PhoneAuthProvider = /** @class */ (function () {
      *
      * @param phoneInfoOptions - The user's {@link PhoneInfoOptions}. The phone number should be in
      * E.164 format (e.g. +16505550101).
-     * @param applicationVerifier - For abuse prevention, this method also requires a
-     * {@link ApplicationVerifier}. This SDK includes a reCAPTCHA-based implementation,
-     * {@link RecaptchaVerifier}.
+     * @param applicationVerifier - An {@link ApplicationVerifier}, which prevents
+     * requests from unauthorized clients. This SDK includes an implementation
+     * based on reCAPTCHA v2, {@link RecaptchaVerifier}. If you've enabled
+     * reCAPTCHA Enterprise bot protection in Enforce mode, this parameter is
+     * optional; in all other configurations, the parameter is required.
      *
      * @returns A Promise for a verification ID that can be passed to
-     * {@link PhoneAuthProvider.credential} to identify this flow..
+     * {@link PhoneAuthProvider.credential} to identify this flow.
      */
     PhoneAuthProvider.prototype.verifyPhoneNumber = function (phoneOptions, applicationVerifier) {
         return _verifyPhoneNumber(this.auth, phoneOptions, getModularInstance(applicationVerifier));