Implement verification code flow in new SwiftUI view

Author: ncooke3

FirebaseAuth/Tests/SampleSwift/AuthenticationExample.xcodeproj/project.pbxproj

@@ -57,7 +57,6 @@
 		EAE4CBC924855E3A00245E92 /* AuthViewController.swift in Sources */ = {isa = PBXBuildFile; fileRef = EAE4CBC824855E3A00245E92 /* AuthViewController.swift */; };
 		EAE4CBCE24855E3D00245E92 /* Assets.xcassets in Resources */ = {isa = PBXBuildFile; fileRef = EAE4CBCD24855E3D00245E92 /* Assets.xcassets */; };
 		EAE4CBE724855E3E00245E92 /* AuthenticationExampleUITests.swift in Sources */ = {isa = PBXBuildFile; fileRef = EAE4CBE624855E3E00245E92 /* AuthenticationExampleUITests.swift */; };
-		EAE4CBF524857A5100245E92 /* LoginController.swift in Sources */ = {isa = PBXBuildFile; fileRef = EAE4CBF424857A5100245E92 /* LoginController.swift */; };
 		EAEBCE0F2489FFDE00FCEA92 /* Extensions.swift in Sources */ = {isa = PBXBuildFile; fileRef = EAEBCE0E2489FFDE00FCEA92 /* Extensions.swift */; };
 		EAEBCE11248A9AA000FCEA92 /* Section.swift in Sources */ = {isa = PBXBuildFile; fileRef = EAEBCE10248A9AA000FCEA92 /* Section.swift */; };
 		EAFDF2BE2490439F0082B6F1 /* Animator.swift in Sources */ = {isa = PBXBuildFile; fileRef = EAFDF2BD2490439F0082B6F1 /* Animator.swift */; };
@@ -140,7 +139,6 @@
 		EAE4CBE224855E3E00245E92 /* AuthenticationExampleUITests.xctest */ = {isa = PBXFileReference; explicitFileType = wrapper.cfbundle; includeInIndex = 0; path = AuthenticationExampleUITests.xctest; sourceTree = BUILT_PRODUCTS_DIR; };
 		EAE4CBE624855E3E00245E92 /* AuthenticationExampleUITests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AuthenticationExampleUITests.swift; sourceTree = "<group>"; };
 		EAE4CBE824855E3E00245E92 /* Info.plist */ = {isa = PBXFileReference; lastKnownFileType = text.plist.xml; path = Info.plist; sourceTree = "<group>"; };
-		EAE4CBF424857A5100245E92 /* LoginController.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = LoginController.swift; sourceTree = "<group>"; };
 		EAEBCE0E2489FFDE00FCEA92 /* Extensions.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = Extensions.swift; sourceTree = "<group>"; };
 		EAEBCE10248A9AA000FCEA92 /* Section.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = Section.swift; sourceTree = "<group>"; };
 		EAFDF2BD2490439F0082B6F1 /* Animator.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = Animator.swift; sourceTree = "<group>"; };
@@ -224,7 +222,6 @@
 			children = (
 				EAE08EB424CF5D09006FA3A5 /* AccountLinkingViewController.swift */,
 				EAE4CBC824855E3A00245E92 /* AuthViewController.swift */,
-				EAE4CBF424857A5100245E92 /* LoginController.swift */,
 				EAB3A17B2494628200385291 /* UserViewController.swift */,
 				EA02F68E24A0714B0079D000 /* OtherAuthMethodControllers */,
 				DEC2E5DC2A95331D0090260A /* SettingsViewController.swift */,
@@ -561,7 +558,6 @@
 				EA02F68524A000E00079D000 /* UserActions.swift in Sources */,
 				EA02F68D24A063E90079D000 /* LoginDelegate.swift in Sources */,
 				EA20B50A249D3D8600B5E581 /* PasswordlessViewController.swift in Sources */,
-				EAE4CBF524857A5100245E92 /* LoginController.swift in Sources */,
 				EA20B510249FDB4400B5E581 /* OtherAuthMethods.swift in Sources */,
 				EA12697F29E33A5D00D79E66 /* CryptoUtils.swift in Sources */,
 				EAEBCE11248A9AA000FCEA92 /* Section.swift in Sources */,

FirebaseAuth/Tests/SampleSwift/AuthenticationExample/CustomViews/LoginViewSwiftUI.swift

@@ -19,8 +19,14 @@ import SwiftUI
 import FirebaseAuth
 
 struct LoginViewSwiftUI: View {
+  @Environment(\.dismiss) private var dismiss
+  @State private var multiFactorResolver: MultiFactorResolver? = nil
+  @State private var onetimePasscode = ""
+  @State private var showingAlert = false
+
   @State private var email: String = ""
   @State private var password: String = ""
+
   var body: some View {
     Group {
       VStack {
@@ -62,15 +68,56 @@ struct LoginViewSwiftUI: View {
                 _ = try await AppManager.shared
                   .auth()
                   .signIn(withEmail: email, password: password)
-              } catch let error as AuthErrorCode
-                where error.code == .secondFactorRequired {
-                // TODO(ncooke3): Implement.
+//              } catch let error as AuthErrorCode
+//                where error.code == .secondFactorRequired {
+//                // error as? AuthErrorCode == nil because AuthErrorUtils returns generic Errors
+//                // https://firebase.google.com/docs/auth/ios/totp-mfa#sign_in_users_with_a_second_factor
+//                // TODO(ncooke3): Fix?
+              } catch let error as NSError
+                where error.code == AuthErrorCode.secondFactorRequired.rawValue {
+                let mfaKey = AuthErrorUserInfoMultiFactorResolverKey
+                guard
+                  let resolver = error.userInfo[mfaKey] as? MultiFactorResolver,
+                  let multiFactorInfo = resolver.hints.first
+                else { return }
+                if multiFactorInfo.factorID == TOTPMultiFactorID {
+                  // Show the alert to enter the TOTP verification code.
+                  multiFactorResolver = resolver
+                  showingAlert = true
+                } else {
+                  // TODO(ncooke3): Implement handling of other MFA provider (phone).
+                }
               } catch {
-                // TODO(ncooke3): Implement error display.
                 print(error.localizedDescription)
               }
             }
           }
+          .alert("Enter one time passcode.", isPresented: $showingAlert) {
+            TextField("Verification Code", text: $onetimePasscode)
+              .textInputAutocapitalization(.never)
+            Button("Cancel", role: .cancel) {}
+            Button("Submit") {
+              Task {
+                guard onetimePasscode.count > 0 else { return }
+                let multiFactorInfo = multiFactorResolver!.hints[0]
+                let assertion = TOTPMultiFactorGenerator.assertionForSignIn(
+                  withEnrollmentID: multiFactorInfo.uid,
+                  // TODO(ncooke3): Probably should avoid network request if empty passcode.
+                  oneTimePassword: self.onetimePasscode
+                )
+                do {
+                  _ = try await multiFactorResolver!.resolveSignIn(with: assertion)
+                  // MFA login was successful.
+                  dismiss()
+                } catch {
+                  // Wrong or expired OTP. Re-prompt the user.
+                  // TODO(ncooke3): Show error to user.
+                  print(error)
+                }
+              }
+            }
+          }
+
           LoginViewButton(
             text: "Create Account",
             accentColor: .orange,
@@ -82,7 +129,8 @@ struct LoginViewSwiftUI: View {
                   withEmail: email,
                   password: password
                 )
-                // TODO(ncooke3): Transition... `self.delegate?.loginDidOccur()`
+                // Sign-in was successful.
+                dismiss()
               } catch {
                 // TODO(ncooke3): Implement error display.
                 print(error.localizedDescription)
@@ -112,6 +160,7 @@ private struct SymbolTextField: TextFieldStyle {
     }
     .background(Color.color(uiColor: .secondarySystemBackground))
     .cornerRadius(14)
+    .textInputAutocapitalization(.never)
   }
 }
 

FirebaseAuth/Tests/SampleSwift/AuthenticationExample/ViewControllers/AuthViewController.swift

@@ -16,6 +16,8 @@
 // [START auth_import]
 import FirebaseCore
 
+import SwiftUI
+
 // For Sign in with Facebook
 import FBSDKLoginKit
 
@@ -178,7 +180,7 @@ class AuthViewController: UIViewController, DataSourceProviderDelegate {
       phoneEnroll()
 
     case .totpEnroll:
-      totpEnroll()
+      Task { await totpEnroll() }
 
     case .multifactorUnenroll:
       mfaUnenroll()
@@ -338,9 +340,9 @@ class AuthViewController: UIViewController, DataSourceProviderDelegate {
   }
 
   private func performDemoEmailPasswordLoginFlow() {
-    let loginController = LoginController()
-    loginController.delegate = self
-    navigationController?.pushViewController(loginController, animated: true)
+    let loginView = LoginViewSwiftUI()
+    let hostingController = UIHostingController(rootView: loginView)
+    navigationController?.pushViewController(hostingController, animated: true)
   }
 
   private func performPasswordlessLoginFlow() {
@@ -780,89 +782,53 @@ class AuthViewController: UIViewController, DataSourceProviderDelegate {
     }
   }
 
-  private func totpEnroll() {
-    guard let user = AppManager.shared.auth().currentUser else {
-      print("Error: User must be logged in first.")
+  private func totpEnroll() async {
+    guard
+      let user = AppManager.shared.auth().currentUser,
+      let accountName = user.email
+    else {
+      showAlert(for: "Enrollment failed: User must be logged and have email address.")
       return
     }
 
-    user.multiFactor.getSessionWithCompletion { session, error in
-      guard let session = session, error == nil else {
-        if let error = error {
-          self.showAlert(for: "Enrollment failed")
-          print("Multi factor start enroll failed. Error: \(error.localizedDescription)")
-        } else {
-          self.showAlert(for: "Enrollment failed")
-          print("Multi factor start enroll failed with unknown error.")
-        }
+    guard let issuer = AppManager.shared.auth().app?.name else {
+      showAlert(for: "Enrollment failed: Firebase app is missing name.")
+      return
+    }
+
+    do {
+      let session = try await user.multiFactor.session()
+      let secret = try await TOTPMultiFactorGenerator.generateSecret(with: session)
+      print("Secret: " + secret.sharedSecretKey())
+
+      let url = secret.generateQRCodeURL(withAccountName: accountName, issuer: issuer)
+      guard !url.isEmpty else {
+        showAlert(for: "Enrollment failed")
+        print("Multi factor finalize enroll failed. Could not generate URL.")
         return
       }
+      secret.openInOTPApp(withQRCodeURL: url)
 
-      TOTPMultiFactorGenerator.generateSecret(with: session) { secret, error in
-        guard let secret = secret, error == nil else {
-          if let error = error {
-            self.showAlert(for: "Enrollment failed")
-            print("Error generating TOTP secret. Error: \(error.localizedDescription)")
-          } else {
-            self.showAlert(for: "Enrollment failed")
-            print("Error generating TOTP secret.")
-          }
-          return
-        }
-
-        guard let accountName = user.email, let issuer = Auth.auth().app?.name else {
-          self.showAlert(for: "Enrollment failed")
-          print("Multi factor finalize enroll failed. Could not get account details.")
-          return
-        }
-
-        DispatchQueue.main.async {
-          let url = secret.generateQRCodeURL(withAccountName: accountName, issuer: issuer)
-
-          guard !url.isEmpty else {
-            self.showAlert(for: "Enrollment failed")
-            print("Multi factor finalize enroll failed. Could not generate URL.")
-            return
-          }
-
-          secret.openInOTPApp(withQRCodeURL: url)
-
-          self
-            .showQRCodePromptWithTextInput(with: "Scan this QR code and enter OTP:",
-                                           url: url) { oneTimePassword in
-              guard !oneTimePassword.isEmpty else {
-                self.showAlert(for: "Display name must not be empty")
-                print("OTP not entered.")
-                return
-              }
+      guard
+        let oneTimePassword = await showTextInputPrompt(with: "Enter the one time passcode.")
+      else {
+        showAlert(for: "Enrollment failed: one time passcode not entered.")
+        return
+      }
 
-              let assertion = TOTPMultiFactorGenerator.assertionForEnrollment(
-                with: secret,
-                oneTimePassword: oneTimePassword
-              )
+      let assertion = TOTPMultiFactorGenerator.assertionForEnrollment(
+        with: secret,
+        oneTimePassword: oneTimePassword
+      )
 
-              self.showTextInputPrompt(with: "Display Name") { displayName in
-                guard !displayName.isEmpty else {
-                  self.showAlert(for: "Display name must not be empty")
-                  print("Display name not entered.")
-                  return
-                }
+      // TODO(nickcooke): Provide option to enter display name.
+      try await user.multiFactor.enroll(with: assertion, displayName: "TOTP")
 
-                user.multiFactor.enroll(with: assertion, displayName: displayName) { error in
-                  if let error = error {
-                    self.showAlert(for: "Enrollment failed")
-                    print(
-                      "Multi factor finalize enroll failed. Error: \(error.localizedDescription)"
-                    )
-                  } else {
-                    self.showAlert(for: "Successfully enrolled: \(displayName)")
-                    print("Multi factor finalize enroll succeeded.")
-                  }
-                }
-              }
-            }
-        }
-      }
+      showAlert(for: "Successfully enrolled: TOTP")
+      print("Multi factor finalize enroll succeeded.")
+    } catch {
+      print(error)
+      showAlert(for: "Enrollment failed: \(error.localizedDescription)")
     }
   }
 
@@ -958,60 +924,12 @@ class AuthViewController: UIViewController, DataSourceProviderDelegate {
     present(editController, animated: true, completion: nil)
   }
 
-  private func showQRCodePromptWithTextInput(with message: String, url: String,
-                                             completion: ((String) -> Void)? = nil) {
-    // Create a UIAlertController
-    let alertController = UIAlertController(
-      title: "QR Code Prompt",
-      message: message,
-      preferredStyle: .alert
-    )
-
-    // Add a text field for input
-    alertController.addTextField { textField in
-      textField.placeholder = "Enter text"
-    }
-
-    // Create a UIImage from the URL
-    guard let image = generateQRCode(from: url) else {
-      print("Failed to generate QR code")
-      return
-    }
-
-    // Create an image view to display the QR code
-    let imageView = UIImageView(image: image)
-    imageView.contentMode = .scaleAspectFit
-    imageView.translatesAutoresizingMaskIntoConstraints = false
-
-    // Add the image view to the alert controller
-    alertController.view.addSubview(imageView)
-
-    // Add constraints to position the image view
-    NSLayoutConstraint.activate([
-      imageView.topAnchor.constraint(equalTo: alertController.view.topAnchor, constant: 20),
-      imageView.centerXAnchor.constraint(equalTo: alertController.view.centerXAnchor),
-      imageView.widthAnchor.constraint(equalToConstant: 200),
-      imageView.heightAnchor.constraint(equalToConstant: 200),
-    ])
-
-    // Add actions
-    let cancelAction = UIAlertAction(title: "Cancel", style: .cancel, handler: nil)
-    let submitAction = UIAlertAction(title: "Submit", style: .default) { _ in
-      if let completion,
-         let text = alertController.textFields?.first?.text {
-        completion(text)
+  private func showTextInputPrompt(with message: String) async -> String? {
+    await withCheckedContinuation { continuation in
+      showTextInputPrompt(with: message) { inputText in
+        continuation.resume(returning: inputText.isEmpty ? nil : inputText)
       }
     }
-
-    alertController.addAction(cancelAction)
-    alertController.addAction(submitAction)
-
-    // Present the alert controller
-    UIApplication.shared.windows.first?.rootViewController?.present(
-      alertController,
-      animated: true,
-      completion: nil
-    )
   }
 
   // Function to generate QR code from a string