firebase-admin 12.6.0 → 13.0.0

package/README.md

@@ -59,8 +59,7 @@ requests, code review feedback, and also pull requests.
 
 ## Supported Environments
 
-We support Node.js 14 and higher. However, Node.js 14 and 16 support is deprecated. We strongly encourage
-you to use Node.js 18 or higher as we will drop support for Node.js 14 and 16 in the next major version.
+We support Node.js 18 and higher.
 
 Please also note that the Admin SDK should only
 be used in server-side/back-end environments controlled by the app developer.

package/lib/app/core.d.ts

@@ -1,4 +1,4 @@
-/*! firebase-admin v12.6.0 */
+/*! firebase-admin v13.0.0 */
 /*!
  * @license
  * Copyright 2021 Google Inc.
@@ -15,7 +15,6 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-/// <reference types="node" />
 import { Agent } from 'http';
 import { Credential } from './credential';
 /**

package/lib/app/core.js

@@ -1,4 +1,4 @@
-/*! firebase-admin v12.6.0 */
+/*! firebase-admin v13.0.0 */
 "use strict";
 /*!
  * @license

package/lib/app/credential-factory.d.ts

@@ -1,4 +1,4 @@
-/*! firebase-admin v12.6.0 */
+/*! firebase-admin v13.0.0 */
 /*!
  * @license
  * Copyright 2021 Google Inc.
@@ -15,7 +15,6 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-/// <reference types="node" />
 import { Agent } from 'http';
 import { Credential, ServiceAccount } from './credential';
 /**

package/lib/app/credential-factory.js

@@ -1,4 +1,4 @@
-/*! firebase-admin v12.6.0 */
+/*! firebase-admin v13.0.0 */
 "use strict";
 /*!
  * @license
@@ -17,7 +17,10 @@
  * limitations under the License.
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.clearGlobalAppDefaultCred = exports.refreshToken = exports.cert = exports.applicationDefault = void 0;
+exports.applicationDefault = applicationDefault;
+exports.cert = cert;
+exports.refreshToken = refreshToken;
+exports.clearGlobalAppDefaultCred = clearGlobalAppDefaultCred;
 const credential_internal_1 = require("./credential-internal");
 let globalAppDefaultCred;
 const globalCertCreds = {};
@@ -56,7 +59,6 @@ function applicationDefault(httpAgent) {
     }
     return globalAppDefaultCred;
 }
-exports.applicationDefault = applicationDefault;
 /**
  * Returns a credential created from the provided service account that grants
  * admin access to Firebase services. This credential can be used in the call
@@ -104,7 +106,6 @@ function cert(serviceAccountPathOrObject, httpAgent) {
     }
     return globalCertCreds[stringifiedServiceAccount];
 }
-exports.cert = cert;
 /**
  * Returns a credential created from the provided refresh token that grants
  * admin access to Firebase services. This credential can be used in the call
@@ -140,11 +141,9 @@ function refreshToken(refreshTokenPathOrObject, httpAgent) {
     }
     return globalRefreshTokenCreds[stringifiedRefreshToken];
 }
-exports.refreshToken = refreshToken;
 /**
  * Clears the global ADC cache. Exported for testing.
  */
 function clearGlobalAppDefaultCred() {
     globalAppDefaultCred = undefined;
 }
-exports.clearGlobalAppDefaultCred = clearGlobalAppDefaultCred;

package/lib/app/credential-internal.d.ts

@@ -1,4 +1,4 @@
-/*! firebase-admin v12.6.0 */
+/*! firebase-admin v13.0.0 */
 /*!
  * @license
  * Copyright 2020 Google Inc.
@@ -15,63 +15,65 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-/// <reference types="node" />
 import { Agent } from 'http';
 import { Credential, GoogleOAuthAccessToken } from './credential';
+/**
+ * Implementation of ADC that uses google-auth-library-nodejs.
+ */
+export declare class ApplicationDefaultCredential implements Credential {
+    private readonly googleAuth;
+    private authClient;
+    private projectId?;
+    private quotaProjectId?;
+    private accountId?;
+    constructor(httpAgent?: Agent);
+    getAccessToken(): Promise<GoogleOAuthAccessToken>;
+    getProjectId(): Promise<string>;
+    getQuotaProjectId(): string | undefined;
+    isComputeEngineCredential(): Promise<boolean>;
+    /**
+   * getIDToken returns a OIDC token from the compute metadata service
+   * that can be used to make authenticated calls to audience
+   * @param audience the URL the returned ID token will be used to call.
+  */
+    getIDToken(audience: string): Promise<string>;
+    getServiceAccountEmail(): Promise<string>;
+}
 /**
  * Implementation of Credential that uses a service account.
  */
 export declare class ServiceAccountCredential implements Credential {
+    private readonly serviceAccountPathOrObject;
     private readonly httpAgent?;
     readonly implicit: boolean;
     readonly projectId: string;
     readonly privateKey: string;
     readonly clientEmail: string;
-    private readonly httpClient;
+    private googleAuth;
+    private authClient;
     /**
      * Creates a new ServiceAccountCredential from the given parameters.
      *
      * @param serviceAccountPathOrObject - Service account json object or path to a service account json file.
      * @param httpAgent - Optional http.Agent to use when calling the remote token server.
-     * @param implicit - An optinal boolean indicating whether this credential was implicitly discovered from the
+     * @param implicit - An optional boolean indicating whether this credential was implicitly discovered from the
      *   environment, as opposed to being explicitly specified by the developer.
      *
      * @constructor
      */
     constructor(serviceAccountPathOrObject: string | object, httpAgent?: Agent | undefined, implicit?: boolean);
+    private getGoogleAuth;
     getAccessToken(): Promise<GoogleOAuthAccessToken>;
-    private createAuthJwt_;
-}
-/**
- * Implementation of Credential that gets access tokens from the metadata service available
- * in the Google Cloud Platform. This authenticates the process as the default service account
- * of an App Engine instance or Google Compute Engine machine.
- */
-export declare class ComputeEngineCredential implements Credential {
-    private readonly httpClient;
-    private readonly httpAgent?;
-    private projectId?;
-    private accountId?;
-    constructor(httpAgent?: Agent);
-    getAccessToken(): Promise<GoogleOAuthAccessToken>;
-    /**
-     * getIDToken returns a OIDC token from the compute metadata service
-     * that can be used to make authenticated calls to audience
-     * @param audience the URL the returned ID token will be used to call.
-    */
-    getIDToken(audience: string): Promise<string>;
-    getProjectId(): Promise<string>;
-    getServiceAccountEmail(): Promise<string>;
-    private buildRequest;
 }
 /**
  * Implementation of Credential that gets access tokens from refresh tokens.
  */
 export declare class RefreshTokenCredential implements Credential {
+    private readonly refreshTokenPathOrObject;
     private readonly httpAgent?;
     readonly implicit: boolean;
-    private readonly refreshToken;
-    private readonly httpClient;
+    private googleAuth;
+    private authClient;
     /**
      * Creates a new RefreshTokenCredential from the given parameters.
      *
@@ -84,16 +86,18 @@ export declare class RefreshTokenCredential implements Credential {
      * @constructor
      */
     constructor(refreshTokenPathOrObject: string | object, httpAgent?: Agent | undefined, implicit?: boolean);
+    private getGoogleAuth;
     getAccessToken(): Promise<GoogleOAuthAccessToken>;
 }
 /**
  * Implementation of Credential that uses impersonated service account.
  */
 export declare class ImpersonatedServiceAccountCredential implements Credential {
+    private readonly impersonatedServiceAccountPathOrObject;
     private readonly httpAgent?;
     readonly implicit: boolean;
-    private readonly impersonatedServiceAccount;
-    private readonly httpClient;
+    private googleAuth;
+    private authClient;
     /**
      * Creates a new ImpersonatedServiceAccountCredential from the given parameters.
      *
@@ -106,13 +110,11 @@ export declare class ImpersonatedServiceAccountCredential implements Credential
      * @constructor
      */
     constructor(impersonatedServiceAccountPathOrObject: string | object, httpAgent?: Agent | undefined, implicit?: boolean);
+    private getGoogleAuth;
     getAccessToken(): Promise<GoogleOAuthAccessToken>;
 }
 /**
- * Checks if the given credential was loaded via the application default credentials mechanism. This
- * includes all ComputeEngineCredential instances, and the ServiceAccountCredential and RefreshTokenCredential
- * instances that were loaded from well-known files or environment variables, rather than being explicitly
- * instantiated.
+ * Checks if the given credential was loaded via the application default credentials mechanism.
  *
  * @param credential - The credential instance to check.
  */