feat: allow user to update password

Author: russellwheatley

FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AccountService+Email.swift

@@ -28,13 +28,36 @@ extension EmailPasswordOperationReauthentication {
   }
 }
 
-class EmailPasswordDeleteUserOperation: DeleteUserOperation,
+class EmailPasswordDeleteUserOperation: AuthenticatedOperation,
   EmailPasswordOperationReauthentication {
   let passwordPrompt: PasswordPromptCoordinator
 
   init(passwordPrompt: PasswordPromptCoordinator) {
     self.passwordPrompt = passwordPrompt
   }
+
+  func callAsFunction(on user: User) async throws {
+    try await callAsFunction(on: user) { _ in
+      try await user.delete()
+    }
+  }
+}
+
+class EmailPasswordUpdatePasswordOperation: AuthenticatedOperation,
+  EmailPasswordOperationReauthentication {
+  let passwordPrompt: PasswordPromptCoordinator
+  let newPassword: String
+
+  init(passwordPrompt: PasswordPromptCoordinator, newPassword: String) {
+    self.passwordPrompt = passwordPrompt
+    self.newPassword = newPassword
+  }
+
+  func callAsFunction(on user: User) async throws {
+    try await callAsFunction(on: user) { _ in
+      try await user.updatePassword(to: newPassword)
+    }
+  }
 }
 
 @MainActor

FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AccountService.swift

@@ -19,27 +19,19 @@ enum AuthenticationToken {
 protocol AuthenticatedOperation {
   func callAsFunction(on user: User) async throws
   func reauthenticate() async throws -> AuthenticationToken
-  func performOperation(on user: User, with token: AuthenticationToken?) async throws
 }
 
 extension AuthenticatedOperation {
-  func callAsFunction(on user: User) async throws {
+  func callAsFunction(on _: User,
+                      _ perform: (AuthenticationToken?) async throws -> Void) async throws {
     do {
-      try await performOperation(on: user, with: nil)
+      try await perform(nil)
     } catch let error as NSError where error.requiresReauthentication {
       let token = try await reauthenticate()
-      try await performOperation(on: user, with: token)
+      try await perform(token)
     } catch AuthServiceError.reauthenticationRequired {
       let token = try await reauthenticate()
-      try await performOperation(on: user, with: token)
+      try await perform(token)
     }
   }
 }
-
-protocol DeleteUserOperation: AuthenticatedOperation {}
-
-extension DeleteUserOperation {
-  func performOperation(on user: User, with _: AuthenticationToken? = nil) async throws {
-    try await user.delete()
-  }
-}

FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AuthService.swift

@@ -29,6 +29,7 @@ public enum AuthView {
   case authPicker
   case passwordRecovery
   case emailLink
+  case updatePassword
 }
 
 @MainActor
@@ -217,6 +218,24 @@ public extension AuthService {
       throw error
     }
   }
+
+  func updatePassword(to password: String) async throws {
+    do {
+      if let user = auth.currentUser {
+        let operation = EmailPasswordUpdatePasswordOperation(
+          passwordPrompt: passwordPrompt,
+          newPassword: password
+        )
+        try await operation(on: user)
+      }
+
+    } catch {
+      errorMessage = string.localizedErrorMessage(
+        for: error
+      )
+      throw error
+    }
+  }
 }
 
 // MARK: - Email/Password Sign In

FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Views/SignedInView.swift

@@ -14,32 +14,40 @@ extension SignedInView: View {
   }
 
   public var body: some View {
-    VStack {
-      Text("Signed in")
-      Text("User: \(authService.currentUser?.email ?? "Unknown")")
+    if authService.authView == .updatePassword {
+      UpdatePasswordView()
+    } else {
+      VStack {
+        Text("Signed in")
+        Text("User: \(authService.currentUser?.email ?? "Unknown")")
 
-      if authService.currentUser?.isEmailVerified == false {
-        VerifyEmailView()
-      }
-
-      Button("Sign out") {
-        Task {
-          do {
-            try await authService.signOut()
-          } catch {}
+        if authService.currentUser?.isEmailVerified == false {
+          VerifyEmailView()
         }
-      }
-      Divider()
-      Button("Delete account") {
-        Task {
-          do {
-            try await authService.deleteUser()
-          } catch {}
+        Divider()
+        Button("Update password") {
+          authService.authView = .updatePassword
+        }
+        Divider()
+        Button("Sign out") {
+          Task {
+            do {
+              try await authService.signOut()
+            } catch {}
+          }
+        }
+        Divider()
+        Button("Delete account") {
+          Task {
+            do {
+              try await authService.deleteUser()
+            } catch {}
+          }
         }
+        Text(authService.errorMessage).foregroundColor(.red)
+      }.sheet(isPresented: isShowingPasswordPrompt) {
+        PasswordPromptSheet(coordinator: authService.passwordPrompt)
       }
-      Text(authService.errorMessage).foregroundColor(.red)
-    }.sheet(isPresented: isShowingPasswordPrompt) {
-      PasswordPromptSheet(coordinator: authService.passwordPrompt)
     }
   }
 }

FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Views/UpdatePassword.swift

@@ -0,0 +1,75 @@
+//
+//  UpdatePassword.swift
+//  FirebaseUI
+//
+//  Created by Russell Wheatley on 24/04/2025.
+//
+
+import SwiftUI
+
+private enum FocusableField: Hashable {
+  case password
+  case confirmPassword
+}
+
+public struct UpdatePasswordView {
+  @Environment(AuthService.self) private var authService
+  @State private var password = ""
+  @State private var confirmPassword = ""
+
+  @FocusState private var focus: FocusableField?
+  private var isValid: Bool {
+    !password.isEmpty && password == confirmPassword
+  }
+}
+
+extension UpdatePasswordView: View {
+  public var body: some View {
+    VStack {
+      LabeledContent {
+        SecureField("Password", text: $password)
+          .focused($focus, equals: .password)
+          .submitLabel(.go)
+      } label: {
+        Image(systemName: "lock")
+      }
+      .padding(.vertical, 6)
+      .background(Divider(), alignment: .bottom)
+      .padding(.bottom, 8)
+      Divider()
+
+      LabeledContent {
+        SecureField("Confirm password", text: $confirmPassword)
+          .focused($focus, equals: .confirmPassword)
+          .submitLabel(.go)
+      } label: {
+        Image(systemName: "lock")
+      }
+      .padding(.vertical, 6)
+      .background(Divider(), alignment: .bottom)
+      .padding(.bottom, 8)
+      Divider()
+      Button(action: {
+        Task {
+          try await authService.updatePassword(to: confirmPassword)
+          authService.authView = .authPicker
+        }
+      }) {
+        if authService.authenticationState != .authenticating {
+          Text("Update password")
+            .padding(.vertical, 8)
+            .frame(maxWidth: .infinity)
+        } else {
+          ProgressView()
+            .progressViewStyle(CircularProgressViewStyle(tint: .white))
+            .padding(.vertical, 8)
+            .frame(maxWidth: .infinity)
+        }
+      }
+      .disabled(!isValid)
+      .padding([.top, .bottom], 8)
+      .frame(maxWidth: .infinity)
+      .buttonStyle(.borderedProminent)
+    }
+  }
+}