Add Email Link Authentication #665 (also needs fetchSignInMethodsForEmail)

Author: EddyVerbruggen

demo/app/app.css

@@ -4,7 +4,7 @@
 
 .tab-content {
   color: #808080;
-  padding: 20 20 50 20;
+  padding: 10 10 50 10;
 }
 
 .title {
@@ -31,8 +31,8 @@ label {
 
 button {
   background-color: #6494AA;
-  padding: 8 12;
-  margin: 4 10;
+  padding: 8;
+  margin: 4 8;
   font-size: 13;
   border-radius: 4;
 }
@@ -75,4 +75,4 @@ button {
 
 .button-invites {
   background-color: #1832d5;
-}
+}

demo/app/main-page.xml

@@ -23,16 +23,18 @@
                         class="tab-content">
               <Button row="0" colSpan="2" text="init firebase - do this first" tap="{{ doWebInit }}" class="button button-positive"/>
 
-              <Label row="3" colSpan="2" text="Authentication" class="subtitle"/>
+              <Label row="1" colSpan="2" text="Authentication" class="subtitle"/>
+
+              <Button row="2" col="0" text="anonymous login" tap="{{ doWebLoginAnonymously }}" class="button"/>
+              <Button row="2" col="1" text="passwd login" tap="{{ doWebLoginByPassword }}" class="button"/>
 
-              <Button row="4" col="0" text="anonymous login" tap="{{ doWebLoginAnonymously }}" class="button"/>
-              <Button row="4" col="1" text="fetch providers" tap="{{ doWebFetchProvidersForEmail }}" class="button"/>
+              <Button row="3" col="0" text="providers for email" tap="{{ doWebFetchProvidersForEmail }}" class="button"/>
+              <Button row="3" col="1" text="email sign-in methods" tap="{{ doWebFetchSignInMethodsForEmail }}" class="button"/>
 
-              <Button row="5" col="0" text="passwd login" tap="{{ doWebLoginByPassword }}" class="button"/>
-              <Button row="5" col="1" text="create pwd user" tap="{{ doWebCreateUser }}" class="button"/>
+              <Button row="4" col="0" text="create pwd user" tap="{{ doWebCreateUser }}" class="button"/>
+              <Button row="4" col="1" text="get current user" tap="{{ doWebGetCurrentUser }}" class="button"/>
 
-              <Button row="6" col="0" text="get current user" tap="{{ doWebGetCurrentUser }}" class="button"/>
-              <Button row="6" col="1" text="logout" tap="{{ doWebLogout }}" class="button"/>
+              <Button row="5" colSpan="2" text="logout" tap="{{ doWebLogout }}" class="button"/>
 
               <Label row="7" col="0" text="User email/phone:" class="message"/>
               <Label row="7" col="1" text="{{ userEmailOrPhone }}" class="message" textWrap="true"/>
@@ -82,19 +84,19 @@
               <Label row="3" colSpan="2" text="Authentication" class="subtitle"/>
 
               <Button row="4" col="0" text="anonymous login" tap="{{ doLoginAnonymously }}" class="button"/>
-              <Button row="4" col="1" text="fetch providers" tap="{{ doFetchProvidersForEmail }}" class="button"/>
+              <Button row="4" col="1" text="passwd login" tap="{{ doLoginByPassword }}" class="button"/>
 
-              <Button row="5" col="0" text="passwd login" tap="{{ doLoginByPassword }}" class="button"/>
-              <Button row="5" col="1" text="phone login" tap="{{ doLoginByPhone }}" class="button"/>
+              <Button row="5" col="0" text="create pwd user" tap="{{ doCreateUser }}" class="button"/>
+              <Button row="5" col="1" text="reset pwd" tap="{{ doResetPassword }}" class="button"/>
 
-              <Button row="6" col="0" text="create pwd user" tap="{{ doCreateUser }}" class="button"/>
-              <Button row="6" col="1" text="reset pwd" tap="{{ doResetPassword }}" class="button"/>
+              <Button row="6" col="0" text="Google login" tap="{{ doLoginByGoogle }}" class="button"/>
+              <Button row="6" col="1" text="Facebook login" tap="{{ doLoginByFacebook }}" class="button"/>
 
-              <Button row="7" col="0" text="Google login" tap="{{ doLoginByGoogle }}" class="button"/>
-              <Button row="7" col="1" text="Facebook login" tap="{{ doLoginByFacebook }}" class="button"/>
+              <Button row="7" col="0" text="phone login" tap="{{ doLoginByPhone }}" class="button"/>
+              <Button row="7" col="1" text="update profile" tap="{{ doUpdateProfile }}" class="button"/>
 
-              <Button row="8" col="0" text="get current user" tap="{{ doGetCurrentUser }}" class="button"/>
-              <Button row="8" col="1" text="update profile" tap="{{ doUpdateProfile }}" class="button"/>
+              <Button row="8" col="0" text="providers for email" tap="{{ doFetchProvidersForEmail }}" class="button"/>
+              <Button row="8" col="1" text="email sign-in methods" tap="{{ doFetchSignInMethodsForEmail }}" class="button"/>
 
               <Button row="9" col="0" text="re-auth passwd" tap="{{ doReauthenticatePwdUser }}" class="button"/>
               <Button row="9" col="1" text="re-auth Facebook" tap="{{ doReauthenticateFacebookUser }}" class="button"/>
@@ -108,7 +110,8 @@
               <Button row="12" col="0" text="email login link" tap="{{ doLoginByEmailLink }}" class="button"/>
               <Button row="12" col="1" text="send email conf" tap="{{ doSendEmailVerification }}" class="button"/>
 
-              <Button row="13" colSpan="2" text="logout" tap="{{ doLogout }}" class="button"/>
+              <Button row="13" col="0" text="get current user" tap="{{ doGetCurrentUser }}" class="button"/>
+              <Button row="13" col="1" text="logout" tap="{{ doLogout }}" class="button"/>
 
               <Label row="14" colSpan="2" text="Methods on path /users" class="subtitle"/>
 

demo/app/main-view-model.ts

@@ -105,6 +105,35 @@ export class HelloWorldModel extends Observable {
     );
   }
 
+  public doWebFetchSignInMethodsForEmail(): void {
+    const user = firebaseWebApi.auth().currentUser;
+    if (!user || !user.email) {
+      alert({
+        title: "Can't fetch providers",
+        message: "No user with an emailaddress logged in.",
+        okButtonText: "OK, makes sense.."
+      });
+      return;
+    }
+
+    firebaseWebApi.auth().fetchSignInMethodsForEmail(user.email).then(
+        result => {
+          alert({
+            title: `Sign-in methods for ${user.email}`,
+            message: JSON.stringify(result), //  ["password"], ["emailLink"], or ["password", "emailLink']
+            okButtonText: "Thanks!"
+          });
+        },
+        errorMessage => {
+          alert({
+            title: "Sign-in methods for Email error",
+            message: errorMessage,
+            okButtonText: "OK, pity.."
+          });
+        }
+    );
+  }
+
   public doWebLogout(): void {
     firebaseWebApi.auth().signOut()
         .then(() => {
@@ -661,6 +690,37 @@ export class HelloWorldModel extends Observable {
         });
   }
 
+  public doFetchSignInMethodsForEmail(): void {
+    firebase.getCurrentUser().then(
+        user => {
+          if (!user || !user.email) {
+            alert({
+              title: "Can't fetch providers",
+              message: "No user with emailaddress logged in.",
+              okButtonText: "OK, makes sense.."
+            });
+            return;
+          }
+
+          firebase.fetchSignInMethodsForEmail(user.email).then(
+              result => {
+                alert({
+                  title: `Sign-in methods for ${user.email}`,
+                  message: JSON.stringify(result), //  ["password"], ["emailLink"], or ["password", "emailLink']
+                  okButtonText: "Thanks!"
+                });
+              },
+              errorMessage => {
+                alert({
+                  title: "Fetch Sign-in methods for Email error",
+                  message: errorMessage,
+                  okButtonText: "OK, pity.."
+                });
+              }
+          );
+        });
+  }
+
   public doCreateUser(): void {
     firebase.createUser({
       email: '[email protected]',
@@ -790,7 +850,8 @@ export class HelloWorldModel extends Observable {
         // note that you need to enable phone login in your firebase instance
         type: firebase.LoginType.EMAIL_LINK,
         emailLinkOptions: {
-          email: promptResult.text
+          email: promptResult.text,
+          url: "https://combidesk.com?foo=bar"
         }
       }).then(
           result => {

src/app/auth/index.ts

@@ -76,5 +76,9 @@ export module auth {
     public fetchProvidersForEmail(email: string): Promise<any> {
       return firebase.fetchProvidersForEmail(email);
     }
+
+    public fetchSignInMethodsForEmail(email: string): Promise<any> {
+      return firebase.fetchSignInMethodsForEmail(email);
+    }
   }
 }

src/firebase.android.ts

@@ -383,14 +383,40 @@ firebase.fetchProvidersForEmail = email => {
       });
 
       com.google.firebase.auth.FirebaseAuth.getInstance().fetchProvidersForEmail(email).addOnCompleteListener(onCompleteListener);
-
     } catch (ex) {
       console.log("Error in firebase.fetchProvidersForEmail: " + ex);
       reject(ex);
     }
   });
 };
 
+firebase.fetchSignInMethodsForEmail = email => {
+  return new Promise((resolve, reject) => {
+    try {
+      if (typeof(email) !== "string") {
+        reject("A parameter representing an email address is required.");
+        return;
+      }
+
+      const onCompleteListener = new com.google.android.gms.tasks.OnCompleteListener({
+        onComplete: task /* <SignInMethodQueryResult> */ => {
+          if (!task.isSuccessful()) {
+            reject((task.getException() && task.getException().getReason ? task.getException().getReason() : task.getException()));
+          } else {
+            const signInMethods = task.getResult().getSignInMethods();
+            resolve(firebase.toJsObject(signInMethods));
+          }
+        }
+      });
+
+      com.google.firebase.auth.FirebaseAuth.getInstance().fetchSignInMethodsForEmail(email).addOnCompleteListener(onCompleteListener);
+    } catch (ex) {
+      console.log("Error in firebase.fetchSignInMethodsForEmail: " + ex);
+      reject(ex);
+    }
+  });
+};
+
 firebase.getCurrentPushToken = () => {
   return new Promise((resolve, reject) => {
     try {

src/firebase.d.ts

@@ -184,6 +184,9 @@ export interface FirebasePasswordLoginOptions {
 
 export interface FirebaseEmailLinkLoginOptions {
   email: string;
+  url: string;
+  iosBundleId?: string;
+  androidPackageId?: string;
 }
 
 export interface FirebasePhoneLoginOptions {
@@ -887,6 +890,8 @@ export function logout(): Promise<any>;
 
 export function fetchProvidersForEmail(email: string): Promise<Array<string>>;
 
+export function fetchSignInMethodsForEmail(email: string): Promise<Array<string>>;
+
 export function sendEmailVerification(): Promise<any>;
 
 export function createUser(options: CreateUserOptions): Promise<CreateUserResult>;

src/firebase.ios.ts

@@ -182,23 +182,49 @@ firebase.addAppDelegateMethods = appDelegate => {
 
       if (userActivity.webpageURL) {
         // check for an email-link-login flow
-        if (FIRAuth.auth().isSignInWithEmailLink(userActivity.webpageURL.absoluteString)) {
+        const fAuth = FIRAuth.auth();
+        if (fAuth.isSignInWithEmailLink(userActivity.webpageURL.absoluteString)) {
           const rememberedEmail = firebase.getRememberedEmailForEmailLinkLogin();
           if (rememberedEmail !== undefined) {
-            FIRAuth.auth().signInWithEmailLinkCompletion(
-                rememberedEmail,
-                userActivity.webpageURL.absoluteString,
-                (authData: FIRAuthDataResult, error: NSError) => {
-                  if (error) {
-                    console.log(error.localizedDescription);
-                  } else {
-                    // TODO if already logged in with another prover, consider merging them (https://firebase.google.com/docs/auth/ios/email-link-auth)
-                    firebase.notifyAuthStateListeners({
-                      loggedIn: true,
-                      user: authData.user
-                    });
-                  }
-                });
+
+            if (fAuth.currentUser) {
+              const onCompletionLink = (result: FIRAuthDataResult, error: NSError) => {
+                if (error) {
+                  console.log("linkAndRetrieveDataWithCredentialCompletion error: " + error.localizedDescription);
+                  // ignore, and complete the email link sign in flow
+                  fAuth.signInWithEmailLinkCompletion(rememberedEmail, userActivity.webpageURL.absoluteString, (authData: FIRAuthDataResult, error: NSError) => {
+                    if (error) {
+                      console.log("signInWithEmailLinkCompletion error: " + error.localizedDescription);
+                    } else {
+                      firebase.notifyAuthStateListeners({
+                        loggedIn: true,
+                        user: result.user
+                      });
+                    }
+                  });
+                } else {
+                  // linking successful, so the user can now log in with either their email address, or however he logged in previously
+                  firebase.notifyAuthStateListeners({
+                    loggedIn: true,
+                    user: result.user
+                  });
+                }
+              };
+              const fIRAuthCredential = FIREmailAuthProvider.credentialWithEmailLink(rememberedEmail, userActivity.webpageURL.absoluteString);
+              fAuth.currentUser.linkAndRetrieveDataWithCredentialCompletion(fIRAuthCredential, onCompletionLink);
+
+            } else {
+              fAuth.signInWithEmailLinkCompletion(rememberedEmail, userActivity.webpageURL.absoluteString, (authData: FIRAuthDataResult, error: NSError) => {
+                if (error) {
+                  console.log(error.localizedDescription);
+                } else {
+                  firebase.notifyAuthStateListeners({
+                    loggedIn: true,
+                    user: authData.user
+                  });
+                }
+              });
+            }
           }
           result = true;
 
@@ -237,7 +263,7 @@ firebase.fetchProvidersForEmail = email => {
         return;
       }
 
-      FIRAuth.auth().fetchProvidersForEmailCompletion(email, (providerNSArray, error) /* FIRProviderQueryCallback */ => {
+      FIRAuth.auth().fetchProvidersForEmailCompletion(email, (providerNSArray, error) => {
         if (error) {
           reject(error.localizedDescription);
         } else {
@@ -251,6 +277,28 @@ firebase.fetchProvidersForEmail = email => {
   });
 };
 
+firebase.fetchSignInMethodsForEmail = email => {
+  return new Promise((resolve, reject) => {
+    try {
+      if (typeof(email) !== "string") {
+        reject("A parameter representing an email address is required.");
+        return;
+      }
+
+      FIRAuth.auth().fetchSignInMethodsForEmailCompletion(email, (methodsNSArray, error) => {
+        if (error) {
+          reject(error.localizedDescription);
+        } else {
+          resolve(firebase.toJsObject(methodsNSArray));
+        }
+      });
+    } catch (ex) {
+      console.log("Error in firebase.fetchSignInMethodsForEmail: " + ex);
+      reject(ex);
+    }
+  });
+};
+
 firebase.getCurrentPushToken = () => {
   return new Promise((resolve, reject) => {
     try {
@@ -1265,14 +1313,19 @@ firebase.login = arg => {
           return;
         }
 
+        if (!arg.emailLinkOptions.url) {
+          reject("Auth type EMAIL_LINK requires an 'emailLinkOptions.url' argument");
+          return;
+        }
+
         const firActionCodeSettings = FIRActionCodeSettings.new();
         // This 'continue URL' is what's emailed to the receiver, and the domain must be whitelisted in the Firebase console
-        firActionCodeSettings.URL = NSURL.URLWithString("https://combidesk.com"); // TODO have this passed in
+        firActionCodeSettings.URL = NSURL.URLWithString(arg.emailLinkOptions.url);
         // The sign-in operation has to always be completed in the app.
         firActionCodeSettings.handleCodeInApp = true;
-        firActionCodeSettings.setIOSBundleID(utils.ios.getter(NSBundle, NSBundle.mainBundle).bundleIdentifier);
+        firActionCodeSettings.setIOSBundleID(arg.emailLinkOptions.iosBundleId || NSBundle.mainBundle.bundleIdentifier);
         firActionCodeSettings.setAndroidPackageNameInstallIfNotAvailableMinimumVersion(
-            "org.nativescript.firebasedemo", // TODO add to options (same for iOS, used in the Android implementation)
+            arg.emailLinkOptions.androidPackageId || NSBundle.mainBundle.bundleIdentifier,
             false, // TODO not sure
             "12"); // TODO not sure
         fAuth.sendSignInLinkToEmailActionCodeSettingsCompletion(