feat: delete user for facebook

russellwheatley · russellwheatley · commit 323eef64b58d · 2025-05-15T13:31:01.000+01:00
diff --git a/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AccountService+Email.swift b/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AccountService+Email.swift
@@ -6,7 +6,7 @@ protocol EmailPasswordOperationReauthentication {
 }
 
 extension EmailPasswordOperationReauthentication {
-  func reauthenticate() async throws -> AuthenticationToken {
+  @MainActor func reauthenticate() async throws -> AuthenticationToken {
     guard let user = Auth.auth().currentUser else {
       throw AuthServiceError.reauthenticationRequired("No user currently signed-in")
     }
@@ -28,6 +28,7 @@ extension EmailPasswordOperationReauthentication {
   }
 }
 
+@MainActor
 class EmailPasswordDeleteUserOperation: AuthenticatedOperation,
   EmailPasswordOperationReauthentication {
   let passwordPrompt: PasswordPromptCoordinator
diff --git a/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AccountService.swift b/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AccountService.swift
@@ -16,6 +16,7 @@ public enum AuthenticationToken {
   case firebase(String)
 }
 
+@MainActor
 public protocol AuthenticatedOperation {
   func callAsFunction(on user: User) async throws
   func reauthenticate() async throws -> AuthenticationToken
diff --git a/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AuthService.swift b/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AuthService.swift
@@ -12,6 +12,7 @@ public protocol GoogleProviderAuthUIProtocol: ExternalAuthProvider {
 
 public protocol FacebookProviderAuthUIProtocol: ExternalAuthProvider {
   @MainActor func signInWithFacebook(isLimitedLogin: Bool) async throws -> AuthCredential
+  @MainActor func deleteUser(user: User) async throws
 }
 
 public protocol PhoneAuthProviderAuthUIProtocol: ExternalAuthProvider {
@@ -200,7 +201,8 @@ public final class AuthService {
       try await linkAccounts(credentials: credentials)
     } else {
       do {
-        try await auth.signIn(with: credentials)
+        let result = try await auth.signIn(with: credentials)
+        signedInCredential = result.credential
         updateAuthenticationState()
       } catch {
         authenticationState = .unauthenticated
@@ -232,9 +234,13 @@ public final class AuthService {
 public extension AuthService {
   func deleteUser() async throws {
     do {
-      if let user = auth.currentUser {
-        let operation = EmailPasswordDeleteUserOperation(passwordPrompt: passwordPrompt)
-        try await operation(on: user)
+      if let user = auth.currentUser, let providerId = signedInCredential?.provider {
+        if providerId == "password" {
+          let operation = EmailPasswordDeleteUserOperation(passwordPrompt: passwordPrompt)
+          try await operation(on: user)
+        } else if providerId == "facebook.com" {
+          try await safeFacebookProvider.deleteUser(user: user)
+        }
       }
 
     } catch {
@@ -276,7 +282,8 @@ public extension AuthService {
     authenticationState = .authenticating
 
     do {
-      try await auth.createUser(withEmail: email, password: password)
+      let result = try await auth.createUser(withEmail: email, password: password)
+      signedInCredential = result.credential
       updateAuthenticationState()
     } catch {
       authenticationState = .unauthenticated
diff --git a/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Services/AccountService+Facebook.swift b/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Services/AccountService+Facebook.swift
@@ -9,17 +9,19 @@
 import FirebaseAuthSwiftUI
 import Observation
 
-protocol FacebookOperationReauthentication {}
+protocol FacebookOperationReauthentication {
+  var facebookProvider: FacebookProviderAuthUI { get }
+}
 
 extension FacebookOperationReauthentication {
-  func reauthenticate() async throws -> AuthenticationToken {
+  @MainActor func reauthenticate() async throws -> AuthenticationToken {
     guard let user = Auth.auth().currentUser else {
       throw AuthServiceError.reauthenticationRequired("No user currently signed-in")
     }
 
     do {
-      let credential = try await FacebookProviderAuthUI.shared
-        .signInWithFacebook(isLimitedLogin: FacebookProviderAuthUI.shared.isLimitedLogin)
+      let credential = try await facebookProvider
+        .signInWithFacebook(isLimitedLogin: facebookProvider.isLimitedLogin)
       try await user.reauthenticate(with: credential)
 
       return .firebase("")
@@ -29,8 +31,13 @@ extension FacebookOperationReauthentication {
   }
 }
 
-class FacebookDeleteUserOperation: AuthenticatedOperation, FacebookOperationReauthentication {
-  init() {}
+@MainActor
+class FacebookDeleteUserOperation: AuthenticatedOperation,
+  @preconcurrency FacebookOperationReauthentication {
+  let facebookProvider: FacebookProviderAuthUI
+  init(facebookProvider: FacebookProviderAuthUI) {
+    self.facebookProvider = facebookProvider
+  }
 
   func callAsFunction(on user: User) async throws {
     try await callAsFunction(on: user) {
diff --git a/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Services/FacebookProviderAuthUI.swift b/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Services/FacebookProviderAuthUI.swift
@@ -16,16 +16,16 @@ public enum FacebookProviderError: Error {
   case authenticationToken(String)
 }
 
-public class FacebookProviderAuthUI: FacebookProviderAuthUIProtocol, @unchecked Sendable {
+public class FacebookProviderAuthUI: FacebookProviderAuthUIProtocol {
   public let id: String = "facebook"
   let scopes: [String]
   let shortName = "Facebook"
   let providerId = "facebook.com"
   private let loginManager = LoginManager()
-  private var rawNonce: String
-  private var shaNonce: String
+  private var rawNonce: String?
+  private var shaNonce: String?
   // Needed for reauthentication
-  @MainActor public var isLimitedLogin: Bool = true
+  var isLimitedLogin: Bool = true
 
   @MainActor private static var _shared: FacebookProviderAuthUI?
 
@@ -42,24 +42,29 @@ public class FacebookProviderAuthUI: FacebookProviderAuthUIProtocol, @unchecked
 
   private init(scopes: [String]? = nil) {
     self.scopes = scopes ?? kDefaultFacebookScopes
-    rawNonce = CommonUtils.randomNonce()
-    shaNonce = CommonUtils.sha256Hash(of: rawNonce)
   }
 
   @MainActor public func authButton() -> AnyView {
     AnyView(SignInWithFacebookButton())
   }
 
+  public func deleteUser(user: User) async throws {
+    let operation = FacebookDeleteUserOperation(facebookProvider: self)
+    try await operation(on: user)
+  }
+
   @MainActor public func signInWithFacebook(isLimitedLogin: Bool) async throws -> AuthCredential {
     let loginType: LoginTracking = isLimitedLogin ? .limited : .enabled
     self.isLimitedLogin = isLimitedLogin
 
     guard let configuration: LoginConfiguration = {
       if loginType == .limited {
+        rawNonce = CommonUtils.randomNonce()
+        shaNonce = CommonUtils.sha256Hash(of: rawNonce!)
         return LoginConfiguration(
           permissions: scopes,
           tracking: loginType,
-          nonce: shaNonce
+          nonce: shaNonce!
         )
       } else {
         return LoginConfiguration(
@@ -116,7 +121,7 @@ public class FacebookProviderAuthUI: FacebookProviderAuthUIProtocol, @unchecked
     if let idToken = AuthenticationToken.current {
       let credential = OAuthProvider.credential(withProviderID: providerId,
                                                 idToken: idToken.tokenString,
-                                                rawNonce: rawNonce)
+                                                rawNonce: rawNonce!)
       return credential
     } else {
       throw FacebookProviderError

Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,7 @@ protocol EmailPasswordOperationReauthentication {`
`6`	`6`	`}`
`7`	`7`
`8`	`8`	`extension EmailPasswordOperationReauthentication {`
`9`		`- func reauthenticate() async throws -> AuthenticationToken {`
	`9`	`+ @MainActor func reauthenticate() async throws -> AuthenticationToken {`
`10`	`10`	`guard let user = Auth.auth().currentUser else {`
`11`	`11`	`throw AuthServiceError.reauthenticationRequired("No user currently signed-in")`
`12`	`12`	`}`
`@@ -28,6 +28,7 @@ extension EmailPasswordOperationReauthentication {`
`28`	`28`	`}`
`29`	`29`	`}`
`30`	`30`
	`31`	`+@MainActor`
`31`	`32`	`class EmailPasswordDeleteUserOperation: AuthenticatedOperation,`
`32`	`33`	`EmailPasswordOperationReauthentication {`
`33`	`34`	`let passwordPrompt: PasswordPromptCoordinator`
Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,7 @@ public enum AuthenticationToken {`
`16`	`16`	`case firebase(String)`
`17`	`17`	`}`
`18`	`18`
	`19`	`+@MainActor`
`19`	`20`	`public protocol AuthenticatedOperation {`
`20`	`21`	`func callAsFunction(on user: User) async throws`
`21`	`22`	`func reauthenticate() async throws -> AuthenticationToken`