Auth heartbeat impl

Author: sam-gc

packages/auth/src/api/authentication/token.test.ts

@@ -17,6 +17,7 @@
 
 import { expect, use } from 'chai';
 import chaiAsPromised from 'chai-as-promised';
+import * as sinon from 'sinon';
 
 import { FirebaseError, getUA, querystringDecode } from '@firebase/util';
 
@@ -41,7 +42,10 @@ describe('requestStsToken', () => {
     fetch.setUp();
   });
 
-  afterEach(fetch.tearDown);
+  afterEach(() => {
+    fetch.tearDown();
+    sinon.restore();
+  });
 
   it('should POST to the correct endpoint', async () => {
     const mock = fetch.mock(endpoint, {
@@ -68,6 +72,21 @@ describe('requestStsToken', () => {
     );
   });
 
+  it('should set (or not set) heartbeat correctly', async () => {
+    const mock = fetch.mock(endpoint, {
+      'access_token': 'new-access-token',
+      'expires_in': '3600',
+      'refresh_token': 'new-refresh-token'
+    });
+    await requestStsToken(auth, 'old-refresh-token');
+    sinon.stub(auth, '_getHeartbeatHeader').returns(Promise.resolve('heartbeat'));
+    await requestStsToken(auth, 'old-refresh-token');
+
+    // First call won't have the header, second call will.
+    expect(mock.calls[0].headers!.has(HttpHeader.X_FIREBASE_CLIENT)).to.be.false;
+    expect(mock.calls[1].headers!.get(HttpHeader.X_FIREBASE_CLIENT)).to.eq('heartbeat');
+  });
+
   it('should set the framework in clientVersion if logged', async () => {
     const mock = fetch.mock(endpoint, {
       'access_token': 'new-access-token',

packages/auth/src/api/authentication/token.ts

@@ -22,7 +22,8 @@ import { querystring } from '@firebase/util';
 import {
   _getFinalTarget,
   _performFetchWithErrorHandling,
-  HttpMethod
+  HttpMethod,
+  HttpHeader
 } from '../index';
 import { FetchProvider } from '../../core/util/fetch_provider';
 import { Auth } from '../../model/public_types';
@@ -52,7 +53,7 @@ export async function requestStsToken(
   const response = await _performFetchWithErrorHandling<RequestStsTokenServerResponse>(
     auth,
     {},
-    () => {
+    async () => {
       const body = querystring({
         'grant_type': 'refresh_token',
         'refresh_token': refreshToken
@@ -65,12 +66,18 @@ export async function requestStsToken(
         `key=${apiKey}`
       );
 
+      const heartbeat = await (auth as AuthInternal)._getHeartbeatHeader();
+      const headers: HeadersInit = {
+        [HttpHeader.X_CLIENT_VERSION]: (auth as AuthInternal)._getSdkClientVersion(),
+        [HttpHeader.CONTENT_TYPE]: 'application/x-www-form-urlencoded',
+      };
+      if (heartbeat) {
+        headers[HttpHeader.X_FIREBASE_CLIENT] = heartbeat;
+      }
+
       return FetchProvider.fetch()(url, {
         method: HttpMethod.POST,
-        headers: {
-          'X-Client-Version': (auth as AuthInternal)._getSdkClientVersion(),
-          'Content-Type': 'application/x-www-form-urlencoded'
-        },
+        headers,
         body
       });
     }

packages/auth/src/api/index.test.ts

@@ -59,6 +59,10 @@ describe('api/_performApiRequest', () => {
     auth = await testAuth();
   });
 
+  afterEach(() => {
+    sinon.restore();
+  });
+
   context('with regular requests', () => {
     beforeEach(mockFetch.setUp);
     afterEach(mockFetch.tearDown);
@@ -94,6 +98,27 @@ describe('api/_performApiRequest', () => {
       );
     });
 
+    it('should set the heartbeat header only if available', async () => {
+      const mock = mockEndpoint(Endpoint.SIGN_UP, serverResponse);
+      await _performApiRequest(auth, HttpMethod.POST, Endpoint.SIGN_UP, request);
+      sinon.stub(auth, '_getHeartbeatHeader').returns(Promise.resolve('heartbeat'));
+      await _performApiRequest(auth, HttpMethod.POST, Endpoint.SIGN_UP, request);
+
+      // First call won't have the header, second call will.
+      expect(mock.calls[0].headers!.has(HttpHeader.X_FIREBASE_CLIENT)).to.be.false;
+      expect(mock.calls[1].headers!.get(HttpHeader.X_FIREBASE_CLIENT)).to.eq('heartbeat');
+    });
+
+    it('should not set the heartbeat header on config request', async () => {
+      const mock = mockEndpoint(Endpoint.GET_PROJECT_CONFIG, serverResponse);
+      await _performApiRequest(auth, HttpMethod.POST, Endpoint.GET_PROJECT_CONFIG, request);
+      sinon.stub(auth, '_getHeartbeatHeader').returns(Promise.resolve('heartbeat'));
+      await _performApiRequest(auth, HttpMethod.POST, Endpoint.GET_PROJECT_CONFIG, request);
+      // First call won't have the header, second call will.
+      expect(mock.calls[0].headers!.has(HttpHeader.X_FIREBASE_CLIENT)).to.be.false;
+      expect(mock.calls[1].headers!.has(HttpHeader.X_FIREBASE_CLIENT)).to.be.false;
+    });
+
     it('should set the framework in clientVersion if logged', async () => {
       auth._logFramework('Mythical');
       const mock = mockEndpoint(Endpoint.SIGN_UP, serverResponse);

packages/auth/src/api/index.ts

@@ -36,7 +36,8 @@ export const enum HttpMethod {
 export const enum HttpHeader {
   CONTENT_TYPE = 'Content-Type',
   X_FIREBASE_LOCALE = 'X-Firebase-Locale',
-  X_CLIENT_VERSION = 'X-Client-Version'
+  X_CLIENT_VERSION = 'X-Client-Version',
+  X_FIREBASE_CLIENT = 'X-Firebase-Client'
 }
 
 export const enum Endpoint {
@@ -84,7 +85,8 @@ export async function _performApiRequest<T, V>(
   request?: T,
   customErrorMap: Partial<ServerErrorMap<ServerError>> = {}
 ): Promise<V> {
-  return _performFetchWithErrorHandling(auth, customErrorMap, () => {
+  const authInternal = (auth as AuthInternal);
+  return _performFetchWithErrorHandling(auth, customErrorMap, async () => {
     let body = {};
     let params = {};
     if (request) {
@@ -106,13 +108,20 @@ export async function _performApiRequest<T, V>(
     headers.set(HttpHeader.CONTENT_TYPE, 'application/json');
     headers.set(
       HttpHeader.X_CLIENT_VERSION,
-      (auth as AuthInternal)._getSdkClientVersion()
+      authInternal._getSdkClientVersion()
     );
 
     if (auth.languageCode) {
       headers.set(HttpHeader.X_FIREBASE_LOCALE, auth.languageCode);
     }
 
+    if (!path.includes(Endpoint.GET_PROJECT_CONFIG)) {
+      const heartbeat = await authInternal._getHeartbeatHeader();
+      if (heartbeat) {
+        headers.set(HttpHeader.X_FIREBASE_CLIENT, heartbeat);
+      }
+    }
+
     return FetchProvider.fetch()(
       _getFinalTarget(auth, auth.config.apiHost, path, query),
       {

packages/auth/src/core/auth/auth_impl.test.ts

@@ -47,13 +47,17 @@ const FAKE_APP: FirebaseApp = {
   automaticDataCollectionEnabled: false
 };
 
+const FAKE_HEARTBEAT_CONTROLLER = {
+  getHeartbeatsHeader: async () => '',
+};
+
 describe('core/auth/auth_impl', () => {
   let auth: AuthInternal;
   let persistenceStub: sinon.SinonStubbedInstance<PersistenceInternal>;
 
   beforeEach(async () => {
     persistenceStub = sinon.stub(_getInstance(inMemoryPersistence));
-    const authImpl = new AuthImpl(FAKE_APP, {
+    const authImpl = new AuthImpl(FAKE_APP, FAKE_HEARTBEAT_CONTROLLER, {
       apiKey: FAKE_APP.options.apiKey!,
       apiHost: DefaultConfig.API_HOST,
       apiScheme: DefaultConfig.API_SCHEME,
@@ -431,7 +435,7 @@ describe('core/auth/auth_impl', () => {
     });
 
     it('prevents initialization from completing', async () => {
-      const authImpl = new AuthImpl(FAKE_APP, {
+      const authImpl = new AuthImpl(FAKE_APP, FAKE_HEARTBEAT_CONTROLLER, {
         apiKey: FAKE_APP.options.apiKey!,
         apiHost: DefaultConfig.API_HOST,
         apiScheme: DefaultConfig.API_SCHEME,

packages/auth/src/core/auth/auth_impl.ts

@@ -59,6 +59,10 @@ import { _getInstance } from '../util/instantiator';
 import { _getUserLanguage } from '../util/navigator';
 import { _getClientVersion } from '../util/version';
 
+interface HeartbeatService {
+  getHeartbeatsHeader(): Promise<string>;
+}
+
 interface AsyncAction {
   (): Promise<void>;
 }
@@ -102,7 +106,8 @@ export class AuthImpl implements AuthInternal, _FirebaseService {
 
   constructor(
     public readonly app: FirebaseApp,
-    public readonly config: ConfigInternal
+    private readonly heartbeatController: HeartbeatService,
+    public readonly config: ConfigInternal,
   ) {
     this.name = app.name;
     this.clientVersion = config.sdkClientVersion;
@@ -577,6 +582,9 @@ export class AuthImpl implements AuthInternal, _FirebaseService {
   _getSdkClientVersion(): string {
     return this.clientVersion;
   }
+  _getHeartbeatHeader(): Promise<string> {
+    return this.heartbeatController.getHeartbeatsHeader();
+  }
 }
 
 /**

packages/auth/src/core/auth/register.ts

@@ -61,8 +61,9 @@ export function registerAuth(clientPlatform: ClientPlatform): void {
       _ComponentName.AUTH,
       (container, { options: deps }: { options?: Dependencies }) => {
         const app = container.getProvider('app').getImmediate()!;
+        const heartbeatController = container.getProvider('heartbeat').getImmediate()!;
         const { apiKey, authDomain } = app.options;
-        return (app => {
+        return ((app, heartbeatController) => {
           _assert(
             apiKey && !apiKey.includes(':'),
             AuthErrorCode.INVALID_API_KEY,
@@ -82,11 +83,11 @@ export function registerAuth(clientPlatform: ClientPlatform): void {
             sdkClientVersion: _getClientVersion(clientPlatform)
           };
 
-          const authInstance = new AuthImpl(app, config);
+          const authInstance = new AuthImpl(app, heartbeatController, config);
           _initializeAuthInstance(authInstance, deps);
 
           return authInstance;
-        })(app);
+        })(app, heartbeatController);
       },
       ComponentType.PUBLIC
     )

packages/auth/src/model/auth.ts

@@ -82,6 +82,7 @@ export interface AuthInternal extends Auth {
   _logFramework(framework: string): void;
   _getFrameworks(): readonly string[];
   _getSdkClientVersion(): string;
+  _getHeartbeatHeader(): Promise<string>;
 
   readonly name: AppName;
   readonly config: ConfigInternal;

packages/auth/src/platform_browser/auth.test.ts

@@ -60,13 +60,17 @@ const FAKE_APP: FirebaseApp = {
   automaticDataCollectionEnabled: false
 };
 
+const FAKE_HEARTBEAT_CONTROLLER = {
+  getHeartbeatsHeader: async () => '',
+};
+
 describe('core/auth/auth_impl', () => {
   let auth: AuthInternal;
   let persistenceStub: sinon.SinonStubbedInstance<PersistenceInternal>;
 
   beforeEach(async () => {
     persistenceStub = sinon.stub(_getInstance(inMemoryPersistence));
-    const authImpl = new AuthImpl(FAKE_APP, {
+    const authImpl = new AuthImpl(FAKE_APP, FAKE_HEARTBEAT_CONTROLLER, {
       apiKey: FAKE_APP.options.apiKey!,
       apiHost: DefaultConfig.API_HOST,
       apiScheme: DefaultConfig.API_SCHEME,
@@ -132,7 +136,7 @@ describe('core/auth/initializeAuth', () => {
       popupRedirectResolver?: PopupRedirectResolver,
       authDomain = FAKE_APP.options.authDomain
     ): Promise<Auth> {
-      const auth = new AuthImpl(FAKE_APP, {
+      const auth = new AuthImpl(FAKE_APP, FAKE_HEARTBEAT_CONTROLLER, {
         apiKey: FAKE_APP.options.apiKey!,
         apiHost: DefaultConfig.API_HOST,
         apiScheme: DefaultConfig.API_SCHEME,
@@ -349,7 +353,7 @@ describe('core/auth/initializeAuth', () => {
 
         // Manually initialize auth to make sure no error is thrown,
         // since the _initializeAuthInstance function floats
-        const auth = new AuthImpl(FAKE_APP, {
+        const auth = new AuthImpl(FAKE_APP, FAKE_HEARTBEAT_CONTROLLER, {
           apiKey: FAKE_APP.options.apiKey!,
           apiHost: DefaultConfig.API_HOST,
           apiScheme: DefaultConfig.API_SCHEME,

packages/auth/test/helpers/mock_auth.ts

@@ -63,6 +63,8 @@ export async function testAuth(
   persistence = new MockPersistenceLayer()
 ): Promise<TestAuth> {
   const auth: TestAuth = new AuthImpl(FAKE_APP, {
+    getHeartbeatsHeader: () => Promise.resolve('')
+  }, {
     apiKey: TEST_KEY,
     authDomain: TEST_AUTH_DOMAIN,
     apiHost: TEST_HOST,