added serverApp auth user tests

Author: DellaBitta

packages/auth/karma.conf.js

@@ -65,7 +65,8 @@ function getTestFiles(argv) {
       'src/**/*.test.ts',
       'test/helpers/**/*.test.ts',
       'test/integration/flows/anonymous.test.ts',
-      'test/integration/flows/email.test.ts'
+      'test/integration/flows/email.test.ts',
+      'test/integration/flows/firebaseserverapp.test.ts'
     ];
   }
 }

packages/auth/scripts/run_node_tests.ts

@@ -48,7 +48,7 @@ let testConfig = [
 ];
 
 if (argv.integration) {
-  testConfig = ['test/integration/flows/{email,anonymous}.test.ts'];
+  testConfig = ['test/integration/flows/{email,anonymous,firebaseserverapp}.test.ts'];
   if (argv.local) {
     testConfig.push('test/integration/flows/*.local.test.ts');
   }

packages/auth/test/integration/flows/firebaseserverapp.test.ts

@@ -0,0 +1,234 @@
+/**
+ * @license
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import { expect, use } from 'chai';
+import chaiAsPromised from 'chai-as-promised';
+
+// eslint-disable-next-line import/no-extraneous-dependencies
+import {
+  Auth,
+  OperationType,
+  createUserWithEmailAndPassword,
+  getAdditionalUserInfo,
+  getAuth,
+  onAuthStateChanged,
+  signInAnonymously,
+  updateProfile,
+} from '@firebase/auth';
+import { FirebaseError } from '@firebase/util';
+import { initializeServerApp } from '@firebase/app';
+
+import {
+  cleanUpTestInstance,
+  getTestInstance,
+  randomEmail
+} from '../../helpers/integration/helpers';
+import { generateMiddlewareTests } from './middleware_test_generator';
+
+use(chaiAsPromised);
+
+const sleep = (delay: number) => new Promise((resolve) => setTimeout(resolve, delay))
+const signInWaitDuration = 200;
+
+describe('Integration test: automatic user login via idToken in server apps', () => {
+  let auth: Auth;
+  let serverAppAuth: Auth;
+
+  beforeEach(() => {
+    auth = getTestInstance();
+  });
+  
+  afterEach(() => {    
+    cleanUpTestInstance(auth);
+    cleanUpTestInstance(serverAppAuth);
+  });
+
+  it('signs in with anonymous user', async () => {
+    const userCred = await signInAnonymously(auth);
+    expect(auth.currentUser).to.eq(userCred.user);
+    expect(userCred.operationType).to.eq(OperationType.SIGN_IN);
+    const user = userCred.user;
+    expect(user).to.equal(auth.currentUser);
+    expect(user.isAnonymous).to.be.true;
+    expect(user.uid).to.be.a('string');
+    expect(user.emailVerified).to.be.false;
+    expect(user.providerData.length).to.equal(0);
+
+    const authIdToken = await user.getIdToken();
+    const firebaseServerAppSettings = { authIdToken };
+
+    const serverApp = initializeServerApp(auth.app, firebaseServerAppSettings);    
+    serverAppAuth = getAuth(serverApp);
+    let numberServerLogins = 0;
+    onAuthStateChanged(serverAppAuth, function(serverAuthUser) {
+      if (serverAuthUser) {
+        numberServerLogins++;
+        
+        // Note, the serverAuthUser does not fully equal the standard Auth user
+        // since the serverAuthUser does not have a refresh token.
+        expect(user.uid).to.be.equal(serverAuthUser.uid);
+        expect(user.isAnonymous).to.be.equal(serverAuthUser.isAnonymous);
+        expect(user.emailVerified).to.be.equal(serverAuthUser.emailVerified);
+        expect(user.providerData.length).to.eq(serverAuthUser.providerData.length);
+      } 
+    });
+    await sleep(signInWaitDuration);
+    expect(numberServerLogins).to.equal(1);
+  });
+
+  it('getToken operations fullfilled or rejected', async () => {
+    const userCred = await signInAnonymously(auth);
+    expect(auth.currentUser).to.eq(userCred.user);
+    expect(userCred.operationType).to.eq(OperationType.SIGN_IN);
+    const user = userCred.user;
+    expect(user).to.equal(auth.currentUser);
+    expect(user.isAnonymous).to.be.true;
+    expect(user.uid).to.be.a('string');
+
+    const authIdToken = await user.getIdToken();
+    const firebaseServerAppSettings = { authIdToken };
+
+    const serverApp = initializeServerApp(auth.app, firebaseServerAppSettings);    
+    serverAppAuth = getAuth(serverApp);
+    let numberServerLogins = 0;
+    onAuthStateChanged(serverAppAuth, function(serverAuthUser) {
+      if (serverAuthUser) {
+        numberServerLogins++;
+        expect(user.uid).to.be.equal(serverAuthUser.uid);
+        expect(serverAppAuth.currentUser).to.equal(serverAuthUser);
+        expect(serverAuthUser.getIdToken)
+      } 
+    });
+    await sleep(signInWaitDuration);
+    expect(numberServerLogins).to.equal(1);
+    expect(serverAppAuth.currentUser).to.not.be.null;
+    if(serverAppAuth.currentUser) {
+      const idToken = await serverAppAuth.currentUser.getIdToken(/*forceRefresh=*/false);
+      expect(idToken).to.not.be.null;
+      expect(serverAppAuth.currentUser.getIdToken(/*forceRefresh=*/true)).to.be.rejected;
+    }
+  });
+
+  it('signs in with email crednetial user', async () => {
+    const email = randomEmail();
+    const password = 'password';
+    const userCred = await createUserWithEmailAndPassword(
+      auth,
+      email,
+      password
+    );
+    const user = userCred.user;
+    expect(auth.currentUser).to.eq(userCred.user);
+    expect(userCred.operationType).to.eq(OperationType.SIGN_IN);
+    
+    const additionalUserInfo = getAdditionalUserInfo(userCred)!;
+    expect(additionalUserInfo.isNewUser).to.be.true;
+    expect(additionalUserInfo.providerId).to.eq('password');
+    expect(user.isAnonymous).to.be.false;
+    expect(user.email).to.equal(email);
+
+    const authIdToken = await user.getIdToken();
+    const firebaseServerAppSettings = { authIdToken };
+
+    const serverApp = initializeServerApp(auth.app, firebaseServerAppSettings);    
+    serverAppAuth = getAuth(serverApp);
+    let numberServerLogins = 0;
+    onAuthStateChanged(serverAppAuth, function(serverAuthUser) {
+      if (serverAuthUser) {
+        numberServerLogins++;
+        expect(serverAppAuth.currentUser).to.equal(serverAuthUser);
+        expect(user.uid).to.be.equal(serverAuthUser.uid);
+        expect(serverAuthUser.refreshToken).to.be.empty;
+        expect(user.isAnonymous).to.be.equal(serverAuthUser.isAnonymous);
+        expect(user.emailVerified).to.be.equal(serverAuthUser.emailVerified);
+        expect(user.providerData.length).to.eq(serverAuthUser.providerData.length);
+        expect(user.email).to.equal(serverAuthUser.email);
+      } 
+    });
+    await sleep(signInWaitDuration);
+    expect(numberServerLogins).to.equal(1);
+  });
+
+  it('can reload user', async () => {
+    const userCred = await signInAnonymously(auth);
+    expect(auth.currentUser).to.eq(userCred.user);
+
+    const user = userCred.user;
+    expect(user).to.equal(auth.currentUser);
+    expect(user.uid).to.be.a('string');
+    
+    const authIdToken = await user.getIdToken();
+    const firebaseServerAppSettings = { authIdToken };
+
+    const serverApp = initializeServerApp(auth.app, firebaseServerAppSettings);    
+    serverAppAuth = getAuth(serverApp);
+    let numberServerLogins = 0;
+    onAuthStateChanged(serverAppAuth, function(serverAuthUser) {
+      if (serverAuthUser) {
+        numberServerLogins++;
+        expect(user.uid).to.be.equal(serverAuthUser.uid);
+        expect(serverAppAuth.currentUser).to.equal(serverAuthUser);
+      } 
+    });
+    await sleep(signInWaitDuration);
+    expect(serverAppAuth.currentUser).to.not.be.null;
+    if(serverAppAuth.currentUser) {
+      await serverAppAuth.currentUser.reload();
+    }
+    expect(numberServerLogins).to.equal(1);
+  });
+
+  it('can update server based user profile', async () => {
+    const userCred = await signInAnonymously(auth);
+    expect(auth.currentUser).to.eq(userCred.user);
+
+    const user = userCred.user;
+    expect(user).to.equal(auth.currentUser);
+    expect(user.uid).to.be.a('string');
+    expect(user.displayName).to.be.null;
+
+    const authIdToken = await user.getIdToken();
+    const firebaseServerAppSettings = { authIdToken };
+
+    const serverApp = initializeServerApp(auth.app, firebaseServerAppSettings);    
+    serverAppAuth = getAuth(serverApp);
+    let numberServerLogins = 0;
+    const newDisplayName = "newName";
+    onAuthStateChanged(serverAppAuth, function(serverAuthUser) {
+      if (serverAuthUser) {
+        numberServerLogins++;
+        expect(serverAppAuth.currentUser).to.equal(serverAuthUser);
+        expect(user.uid).to.be.equal(serverAuthUser.uid);
+        expect(user.displayName).to.be.null;
+        updateProfile(serverAuthUser, {
+          displayName: newDisplayName
+        });
+      } 
+    });
+    await sleep(signInWaitDuration);
+    expect(serverAppAuth.currentUser).to.not.be.null;
+    if(serverAppAuth.currentUser) {
+      await serverAppAuth.currentUser.reload();
+    }
+
+    expect(numberServerLogins).to.equal(1);
+    expect(serverAppAuth.currentUser).to.not.be.null;
+    expect(serverAppAuth.currentUser?.displayName).to.not.be.null;
+    expect(serverAppAuth.currentUser?.displayName).to.equal(newDisplayName);
+  });
+
+});