Add API call to signUp

Author: avolkovi

packages-exp/auth-exp/src/api/authentication/sign_up.ts

@@ -0,0 +1,26 @@
+import { Auth } from '../../model/auth';
+import { IdTokenResponse } from '../../model/id_token';
+import { performSignInRequest, HttpMethod, Endpoint } from '..';
+
+export interface SignUpRequest {
+  returnSecureToken?: boolean;
+  email?: string;
+  password?: string;
+}
+
+export interface SignUpResponse extends IdTokenResponse {
+  displayName?: string;
+  email?: string;
+}
+
+export async function signUp(
+  auth: Auth,
+  request: SignUpRequest
+): Promise<SignUpResponse> {
+  return performSignInRequest<SignUpRequest, SignUpResponse>(
+    auth,
+    HttpMethod.POST,
+    Endpoint.SIGN_UP,
+    request
+  );
+}

packages-exp/auth-exp/src/api/errors.ts

@@ -0,0 +1,228 @@
+/**
+ * @license
+ * Copyright 2020 Google Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import { AuthErrorCode } from '../core/errors';
+
+/**
+ * Errors that can be returned by the backend
+ */
+export enum ServerError {
+  ADMIN_ONLY_OPERATION = 'ADMIN_ONLY_OPERATION',
+  CAPTCHA_CHECK_FAILED = 'CAPTCHA_CHECK_FAILED',
+  CORS_UNSUPPORTED = 'CORS_UNSUPPORTED',
+  CREDENTIAL_MISMATCH = 'CREDENTIAL_MISMATCH',
+  CREDENTIAL_TOO_OLD_LOGIN_AGAIN = 'CREDENTIAL_TOO_OLD_LOGIN_AGAIN',
+  DYNAMIC_LINK_NOT_ACTIVATED = 'DYNAMIC_LINK_NOT_ACTIVATED',
+  EMAIL_EXISTS = 'EMAIL_EXISTS',
+  EMAIL_NOT_FOUND = 'EMAIL_NOT_FOUND',
+  EXPIRED_OOB_CODE = 'EXPIRED_OOB_CODE',
+  FEDERATED_USER_ID_ALREADY_LINKED = 'FEDERATED_USER_ID_ALREADY_LINKED',
+  INVALID_APP_CREDENTIAL = 'INVALID_APP_CREDENTIAL',
+  INVALID_APP_ID = 'INVALID_APP_ID',
+  INVALID_CERT_HASH = 'INVALID_CERT_HASH',
+  INVALID_CODE = 'INVALID_CODE',
+  INVALID_CONTINUE_URI = 'INVALID_CONTINUE_URI',
+  INVALID_CUSTOM_TOKEN = 'INVALID_CUSTOM_TOKEN',
+  INVALID_DYNAMIC_LINK_DOMAIN = 'INVALID_DYNAMIC_LINK_DOMAIN',
+  INVALID_EMAIL = 'INVALID_EMAIL',
+  INVALID_ID_TOKEN = 'INVALID_ID_TOKEN',
+  INVALID_IDP_RESPONSE = 'INVALID_IDP_RESPONSE',
+  INVALID_IDENTIFIER = 'INVALID_IDENTIFIER',
+  INVALID_MESSAGE_PAYLOAD = 'INVALID_MESSAGE_PAYLOAD',
+  INVALID_OAUTH_CLIENT_ID = 'INVALID_OAUTH_CLIENT_ID',
+  INVALID_OOB_CODE = 'INVALID_OOB_CODE',
+  INVALID_PASSWORD = 'INVALID_PASSWORD',
+  INVALID_PENDING_TOKEN = 'INVALID_PENDING_TOKEN',
+  INVALID_PHONE_NUMBER = 'INVALID_PHONE_NUMBER',
+  INVALID_PROVIDER_ID = 'INVALID_PROVIDER_ID',
+  INVALID_RECIPIENT_EMAIL = 'INVALID_RECIPIENT_EMAIL',
+  INVALID_SENDER = 'INVALID_SENDER',
+  INVALID_SESSION_INFO = 'INVALID_SESSION_INFO',
+  INVALID_TEMPORARY_PROOF = 'INVALID_TEMPORARY_PROOF',
+  INVALID_TENANT_ID = 'INVALID_TENANT_ID',
+  MISSING_ANDROID_PACKAGE_NAME = 'MISSING_ANDROID_PACKAGE_NAME',
+  MISSING_APP_CREDENTIAL = 'MISSING_APP_CREDENTIAL',
+  MISSING_CODE = 'MISSING_CODE',
+  MISSING_CONTINUE_URI = 'MISSING_CONTINUE_URI',
+  MISSING_CUSTOM_TOKEN = 'MISSING_CUSTOM_TOKEN',
+  MISSING_IOS_BUNDLE_ID = 'MISSING_IOS_BUNDLE_ID',
+  MISSING_OOB_CODE = 'MISSING_OOB_CODE',
+  MISSING_OR_INVALID_NONCE = 'MISSING_OR_INVALID_NONCE',
+  MISSING_PASSWORD = 'MISSING_PASSWORD',
+  MISSING_REQ_TYPE = 'MISSING_REQ_TYPE',
+  MISSING_PHONE_NUMBER = 'MISSING_PHONE_NUMBER',
+  MISSING_SESSION_INFO = 'MISSING_SESSION_INFO',
+  OPERATION_NOT_ALLOWED = 'OPERATION_NOT_ALLOWED',
+  PASSWORD_LOGIN_DISABLED = 'PASSWORD_LOGIN_DISABLED',
+  QUOTA_EXCEEDED = 'QUOTA_EXCEEDED',
+  RESET_PASSWORD_EXCEED_LIMIT = 'RESET_PASSWORD_EXCEED_LIMIT',
+  REJECTED_CREDENTIAL = 'REJECTED_CREDENTIAL',
+  SESSION_EXPIRED = 'SESSION_EXPIRED',
+  TENANT_ID_MISMATCH = 'TENANT_ID_MISMATCH',
+  TOKEN_EXPIRED = 'TOKEN_EXPIRED',
+  TOO_MANY_ATTEMPTS_TRY_LATER = 'TOO_MANY_ATTEMPTS_TRY_LATER',
+  UNSUPPORTED_TENANT_OPERATION = 'UNSUPPORTED_TENANT_OPERATION',
+  UNAUTHORIZED_DOMAIN = 'UNAUTHORIZED_DOMAIN',
+  USER_CANCELLED = 'USER_CANCELLED',
+  USER_DISABLED = 'USER_DISABLED',
+  USER_NOT_FOUND = 'USER_NOT_FOUND',
+  WEAK_PASSWORD = 'WEAK_PASSWORD'
+}
+
+/**
+ * API Response in the event of an error
+ */
+export interface JsonError {
+  error: {
+    code: number;
+    message: ServerError;
+    errors: [
+      {
+        message: ServerError;
+        domain: string;
+        reason: string;
+      }
+    ];
+  };
+}
+
+/**
+ * Type definition for a map from server errors to developer visible errors
+ */
+export declare type ServerErrorMap<ApiError extends string> = {
+  readonly [K in ApiError]: AuthErrorCode;
+};
+
+/**
+ * Map from errors returned by the server to errors to developer visible errors
+ */
+export const SERVER_ERROR_MAP: ServerErrorMap<ServerError> = {
+  // Custom token errors.
+  [ServerError.INVALID_CUSTOM_TOKEN]: AuthErrorCode.INVALID_CUSTOM_TOKEN,
+  [ServerError.CREDENTIAL_MISMATCH]: AuthErrorCode.CREDENTIAL_MISMATCH,
+  // This can only happen if the SDK sends a bad request.
+  [ServerError.MISSING_CUSTOM_TOKEN]: AuthErrorCode.INTERNAL_ERROR,
+
+  // Create Auth URI errors.
+  [ServerError.INVALID_IDENTIFIER]: AuthErrorCode.INVALID_EMAIL,
+  // This can only happen if the SDK sends a bad request.
+  [ServerError.MISSING_CONTINUE_URI]: AuthErrorCode.INTERNAL_ERROR,
+
+  // Sign in with email and password errors (some apply to sign up too).
+  [ServerError.INVALID_EMAIL]: AuthErrorCode.INVALID_EMAIL,
+  [ServerError.INVALID_PASSWORD]: AuthErrorCode.INVALID_PASSWORD,
+  [ServerError.USER_DISABLED]: AuthErrorCode.USER_DISABLED,
+  // This can only happen if the SDK sends a bad request.
+  [ServerError.MISSING_PASSWORD]: AuthErrorCode.INTERNAL_ERROR,
+
+  // Sign up with email and password errors.
+  [ServerError.EMAIL_EXISTS]: AuthErrorCode.EMAIL_EXISTS,
+  [ServerError.PASSWORD_LOGIN_DISABLED]: AuthErrorCode.OPERATION_NOT_ALLOWED,
+
+  // Verify assertion for sign in with credential errors:
+  [ServerError.INVALID_IDP_RESPONSE]: AuthErrorCode.INVALID_IDP_RESPONSE,
+  [ServerError.INVALID_PENDING_TOKEN]: AuthErrorCode.INVALID_IDP_RESPONSE,
+  [ServerError.FEDERATED_USER_ID_ALREADY_LINKED]:
+    AuthErrorCode.CREDENTIAL_ALREADY_IN_USE,
+  [ServerError.MISSING_OR_INVALID_NONCE]:
+    AuthErrorCode.MISSING_OR_INVALID_NONCE,
+
+  // Email template errors while sending emails:
+  [ServerError.INVALID_MESSAGE_PAYLOAD]: AuthErrorCode.INVALID_MESSAGE_PAYLOAD,
+  [ServerError.INVALID_RECIPIENT_EMAIL]: AuthErrorCode.INVALID_RECIPIENT_EMAIL,
+  [ServerError.INVALID_SENDER]: AuthErrorCode.INVALID_SENDER,
+  // This can only happen if the SDK sends a bad request.
+  [ServerError.MISSING_REQ_TYPE]: AuthErrorCode.INTERNAL_ERROR,
+
+  // Send Password reset email errors:
+  [ServerError.EMAIL_NOT_FOUND]: AuthErrorCode.USER_DELETED,
+  [ServerError.RESET_PASSWORD_EXCEED_LIMIT]:
+    AuthErrorCode.TOO_MANY_ATTEMPTS_TRY_LATER,
+
+  // Reset password errors:
+  [ServerError.EXPIRED_OOB_CODE]: AuthErrorCode.EXPIRED_OOB_CODE,
+  [ServerError.INVALID_OOB_CODE]: AuthErrorCode.INVALID_OOB_CODE,
+  // This can only happen if the SDK sends a bad request.
+  [ServerError.MISSING_OOB_CODE]: AuthErrorCode.INTERNAL_ERROR,
+
+  // Get Auth URI errors:
+  [ServerError.INVALID_PROVIDER_ID]: AuthErrorCode.INVALID_PROVIDER_ID,
+
+  // Operations that require ID token in request:
+  [ServerError.CREDENTIAL_TOO_OLD_LOGIN_AGAIN]:
+    AuthErrorCode.CREDENTIAL_TOO_OLD_LOGIN_AGAIN,
+  [ServerError.INVALID_ID_TOKEN]: AuthErrorCode.INVALID_AUTH,
+  [ServerError.TOKEN_EXPIRED]: AuthErrorCode.TOKEN_EXPIRED,
+  [ServerError.USER_NOT_FOUND]: AuthErrorCode.TOKEN_EXPIRED,
+
+  // CORS issues.
+  [ServerError.CORS_UNSUPPORTED]: AuthErrorCode.CORS_UNSUPPORTED,
+
+  // Dynamic link not activated.
+  [ServerError.DYNAMIC_LINK_NOT_ACTIVATED]:
+    AuthErrorCode.DYNAMIC_LINK_NOT_ACTIVATED,
+
+  // iosBundleId or androidPackageName not valid error.
+  [ServerError.INVALID_APP_ID]: AuthErrorCode.INVALID_APP_ID,
+
+  // Other errors.
+  [ServerError.TOO_MANY_ATTEMPTS_TRY_LATER]:
+    AuthErrorCode.TOO_MANY_ATTEMPTS_TRY_LATER,
+  [ServerError.WEAK_PASSWORD]: AuthErrorCode.WEAK_PASSWORD,
+  [ServerError.OPERATION_NOT_ALLOWED]: AuthErrorCode.OPERATION_NOT_ALLOWED,
+  [ServerError.USER_CANCELLED]: AuthErrorCode.USER_CANCELLED,
+
+  // Phone Auth related errors.
+  [ServerError.CAPTCHA_CHECK_FAILED]: AuthErrorCode.CAPTCHA_CHECK_FAILED,
+  [ServerError.INVALID_APP_CREDENTIAL]: AuthErrorCode.INVALID_APP_CREDENTIAL,
+  [ServerError.INVALID_CODE]: AuthErrorCode.INVALID_CODE,
+  [ServerError.INVALID_PHONE_NUMBER]: AuthErrorCode.INVALID_PHONE_NUMBER,
+  [ServerError.INVALID_SESSION_INFO]: AuthErrorCode.INVALID_SESSION_INFO,
+  [ServerError.INVALID_TEMPORARY_PROOF]: AuthErrorCode.INVALID_IDP_RESPONSE,
+  [ServerError.MISSING_APP_CREDENTIAL]: AuthErrorCode.MISSING_APP_CREDENTIAL,
+  [ServerError.MISSING_CODE]: AuthErrorCode.MISSING_CODE,
+  [ServerError.MISSING_PHONE_NUMBER]: AuthErrorCode.MISSING_PHONE_NUMBER,
+  [ServerError.MISSING_SESSION_INFO]: AuthErrorCode.MISSING_SESSION_INFO,
+  [ServerError.QUOTA_EXCEEDED]: AuthErrorCode.QUOTA_EXCEEDED,
+  [ServerError.SESSION_EXPIRED]: AuthErrorCode.CODE_EXPIRED,
+  [ServerError.REJECTED_CREDENTIAL]: AuthErrorCode.REJECTED_CREDENTIAL,
+
+  // Other action code errors when additional settings passed.
+  [ServerError.INVALID_CONTINUE_URI]: AuthErrorCode.INVALID_CONTINUE_URI,
+  // MISSING_CONTINUE_URI is getting mapped to INTERNAL_ERROR above.
+  // This is OK as this error will be caught by client side validation.
+  [ServerError.MISSING_ANDROID_PACKAGE_NAME]:
+    AuthErrorCode.MISSING_ANDROID_PACKAGE_NAME,
+  [ServerError.MISSING_IOS_BUNDLE_ID]: AuthErrorCode.MISSING_IOS_BUNDLE_ID,
+  [ServerError.UNAUTHORIZED_DOMAIN]: AuthErrorCode.UNAUTHORIZED_DOMAIN,
+  [ServerError.INVALID_DYNAMIC_LINK_DOMAIN]:
+    AuthErrorCode.INVALID_DYNAMIC_LINK_DOMAIN,
+
+  // getProjectConfig errors when clientId is passed.
+  [ServerError.INVALID_OAUTH_CLIENT_ID]: AuthErrorCode.INVALID_OAUTH_CLIENT_ID,
+  // getProjectConfig errors when sha1Cert is passed.
+  [ServerError.INVALID_CERT_HASH]: AuthErrorCode.INVALID_CERT_HASH,
+
+  // Multi-tenant related errors.
+  [ServerError.UNSUPPORTED_TENANT_OPERATION]:
+    AuthErrorCode.UNSUPPORTED_TENANT_OPERATION,
+  [ServerError.INVALID_TENANT_ID]: AuthErrorCode.INVALID_TENANT_ID,
+  [ServerError.TENANT_ID_MISMATCH]: AuthErrorCode.TENANT_ID_MISMATCH,
+
+  // User actions (sign-up or deletion) disabled errors.
+  [ServerError.ADMIN_ONLY_OPERATION]: AuthErrorCode.ADMIN_ONLY_OPERATION
+};

packages-exp/auth-exp/src/api/index.ts

@@ -0,0 +1,126 @@
+/**
+ * @license
+ * Copyright 2020 Google Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import { Auth } from '../model/auth';
+import {
+  JsonError,
+  SERVER_ERROR_MAP,
+  ServerErrorMap,
+  ServerError
+} from './errors';
+import { AUTH_ERROR_FACTORY, AuthErrorCode } from '../core/errors';
+import { FirebaseError } from '@firebase/util';
+import { IdTokenResponse } from '../model/id_token';
+
+export enum HttpMethod {
+  POST = 'POST',
+  GET = 'GET'
+}
+
+export enum Endpoint {
+  CREATE_AUTH_URI = '/v1/accounts:createAuthUri',
+  DELETE_ACCOUNT = '/v1/accounts:delete',
+  RESET_PASSWORD = '/v1/accounts:resetPassword',
+  SIGN_UP = '/v1/accounts:signUp',
+  SIGN_IN_WITH_CUSTOM_TOKEN = '/v1/accounts:signInWithCustomToken',
+  SIGN_IN_WITH_EMAIL_LINK = '/v1/accounts:signInWithEmailLink',
+  SIGN_IN_WITH_IDP = '/v1/accounts:signInWithIdp',
+  SIGN_IN_WITH_PASSWORD = '/v1/accounts:signInWithPassword',
+  SIGN_IN_WITH_PHONE_NUMBER = '/v1/accounts:signInWithPhoneNumber',
+  SEND_VERIFICATION_CODE = '/v1/accounts:sendVerificationCode',
+  SEND_OOB_CODE = '/v1/accounts:sendOobCode',
+  SET_ACCOUNT_INFO = '/v1/accounts:update',
+  GET_ACCOUNT_INFO = '/v1/accounts:lookup',
+  GET_RECAPTCHA_PARAM = '/v1/recaptchaParams',
+  START_PHONE_MFA_ENROLLMENT = '/v2/accounts/mfaEnrollment:start',
+  FINALIZE_PHONE_MFA_ENROLLMENT = '/v2/accounts/mfaEnrollment:finalize',
+  START_PHONE_MFA_SIGN_IN = '/v2/accounts/mfaSignIn:start',
+  FINALIZE_PHONE_MFA_SIGN_IN = '/v2/accounts/mfaSignIn:finalize',
+  WITHDRAW_MFA = '/v2/accounts/mfaEnrollment:withdraw'
+}
+
+export async function performApiRequest<T, V>(
+  auth: Auth,
+  method: HttpMethod,
+  path: Endpoint,
+  request?: T,
+  customErrorMap: Partial<ServerErrorMap<ServerError>> = {}
+): Promise<V> {
+  const errorMap = { ...SERVER_ERROR_MAP, ...customErrorMap };
+  try {
+    const body = request
+      ? {
+          body: JSON.stringify(request)
+        }
+      : {};
+    const response = await fetch(
+      `${auth.config.apiScheme}://${auth.config.apiHost}${path}?key=${auth.config.apiKey}`,
+      {
+        method,
+        headers: {
+          'Content-Type': 'application/json'
+        },
+        referrerPolicy: 'no-referrer',
+        ...body
+      }
+    );
+    if (response.ok) {
+      return response.json();
+    } else {
+      const json: JsonError = await response.json();
+      const authError = errorMap[json.error.message];
+      if (authError) {
+        throw AUTH_ERROR_FACTORY.create(authError, { appName: auth.name });
+      } else {
+        // TODO probably should handle improperly formatted errors as well
+        // If you see this, add an entry to SERVER_ERROR_MAP for the corresponding error
+        throw new Error(`Unexpected API error: ${json.error.message}`);
+      }
+    }
+  } catch (e) {
+    if (e instanceof FirebaseError) {
+      throw e;
+    }
+    throw AUTH_ERROR_FACTORY.create(AuthErrorCode.NETWORK_REQUEST_FAILED, {
+      appName: auth.name
+    });
+  }
+}
+
+export async function performSignInRequest<T, V extends IdTokenResponse>(
+  auth: Auth,
+  method: HttpMethod,
+  path: Endpoint,
+  request?: T,
+  customErrorMap: Partial<ServerErrorMap<ServerError>> = {}
+): Promise<V> {
+  const serverResponse = await performApiRequest<T, V>(
+    auth,
+    method,
+    path,
+    request,
+    customErrorMap
+  );
+  if (serverResponse.mfaPendingCredential) {
+    throw AUTH_ERROR_FACTORY.create(AuthErrorCode.MFA_REQUIRED, {
+      appName: auth.name,
+      serverResponse
+    });
+  }
+
+  return serverResponse;
+}

packages-exp/auth-exp/src/model/action_code_info.d.ts

@@ -0,0 +1,6 @@
+export enum Operation {
+  PASSWORD_RESET = 'PASSWORD_RESET',
+  RECOVER_EMAIL = 'RECOVER_EMAIL',
+  EMAIL_SIGNIN = 'EMAIL_SIGNIN',
+  VERIFY_EMAIL = 'VERIFY_EMAIL'
+}