Fix oauth credential and test for OIDC

sam-gc · sam-gc · commit 5925c7ed5e23 · 2021-02-23T11:55:14.000-08:00
diff --git a/packages-exp/auth-exp/src/core/providers/oauth.test.ts b/packages-exp/auth-exp/src/core/providers/oauth.test.ts
@@ -78,6 +78,26 @@ describe('core/providers/oauth', () => {
     expect(OAuthProvider.credentialFromResult(userCred)).to.be.null;
   });
 
+  it('credentialFromResult works for oidc', async () => {
+    const auth = await testAuth();
+    const userCred = new UserCredentialImpl({
+      user: testUser(auth, 'uid'),
+      providerId: ProviderId.GOOGLE,
+      _tokenResponse: {
+        ...TEST_ID_TOKEN_RESPONSE,
+        pendingToken: 'pending-token',
+        oauthIdToken: 'id-token',
+        providerId: 'oidc.oidctest',
+      },
+      operationType: OperationType.SIGN_IN
+    });
+    const cred = OAuthProvider.credentialFromResult(userCred)!;
+    expect(cred.idToken).to.eq('id-token');
+    expect(cred.providerId).to.eq('oidc.oidctest');
+    expect(cred.signInMethod).to.eq('oidc.oidctest');
+    expect((cred.toJSON() as Record<string, string>).pendingToken).to.eq('pending-token');
+  });
+
   it('credentialFromError creates the cred from a tagged error', () => {
     const error = _createError(AuthErrorCode.NEED_CONFIRMATION, {
       appName: 'foo'
diff --git a/packages-exp/auth-exp/src/core/providers/oauth.ts b/packages-exp/auth-exp/src/core/providers/oauth.ts
@@ -20,7 +20,7 @@ import * as externs from '@firebase/auth-types-exp';
 import { _assert } from '../util/assert';
 import { AuthErrorCode } from '../errors';
 
-import { OAuthCredential } from '../credentials/oauth';
+import { OAuthCredential, OAuthCredentialParams } from '../credentials/oauth';
 import { UserCredential } from '../../model/user';
 import { FirebaseError } from '@firebase/util';
 import { TaggedWithTokenResponse } from '../../model/id_token';
@@ -146,12 +146,17 @@ export class OAuthProvider implements externs.AuthProvider {
    * or the ID token string.
    */
   credential(params: OAuthCredentialOptions): externs.OAuthCredential {
-    _assert(params.idToken && params.accessToken, AuthErrorCode.ARGUMENT_ERROR);
+    return this._credential(params);
+  }
+
+  /** An internal credential method that accepts more permissive options */
+  private _credential(params: OAuthCredentialOptions | OAuthCredentialParams): externs.OAuthCredential {
+    _assert(params.idToken || params.accessToken, AuthErrorCode.ARGUMENT_ERROR);
     // For OAuthCredential, sign in method is same as providerId.
     return OAuthCredential._fromParams({
+      ...params,
       providerId: this.providerId,
       signInMethod: this.providerId,
-      ...params
     });
   }
 
@@ -265,10 +270,11 @@ export class OAuthProvider implements externs.AuthProvider {
     }
 
     try {
-      return new OAuthProvider(providerId).credential({
+      return new OAuthProvider(providerId)._credential({
         idToken: oauthIdToken,
         accessToken: oauthAccessToken,
-        rawNonce: nonce
+        rawNonce: nonce,
+        pendingToken,
       });
     } catch (e) {
       return null;
diff --git a/packages-exp/auth-exp/src/core/user/additional_user_info.ts b/packages-exp/auth-exp/src/core/user/additional_user_info.ts
@@ -78,7 +78,7 @@ export function _fromIdTokenResponse(
 class GenericAdditionalUserInfo implements externs.AdditionalUserInfo {
   constructor(
     readonly isNewUser: boolean,
-    readonly providerId: externs.ProviderId | null,
+    readonly providerId: externs.ProviderId | string | null,
     readonly profile: Record<string, unknown> = {}
   ) {}
 }
diff --git a/packages-exp/auth-exp/src/core/user/user_credential_impl.ts b/packages-exp/auth-exp/src/core/user/user_credential_impl.ts
@@ -25,15 +25,15 @@ import { Auth } from '../../model/auth';
 
 interface UserCredentialParams {
   readonly user: User;
-  readonly providerId: externs.ProviderId | null;
+  readonly providerId: externs.ProviderId | string | null;
   readonly _tokenResponse?: PhoneOrOauthTokenResponse;
   readonly operationType: externs.OperationType;
 }
 
 export class UserCredentialImpl
   implements UserCredential, UserCredentialParams {
   readonly user: User;
-  readonly providerId: externs.ProviderId | null;
+  readonly providerId: externs.ProviderId | string | null;
   readonly _tokenResponse: PhoneOrOauthTokenResponse | undefined;
   readonly operationType: externs.OperationType;
 
@@ -83,7 +83,7 @@ export class UserCredentialImpl
 
 function providerIdForResponse(
   response: IdTokenResponse
-): externs.ProviderId | null {
+): externs.ProviderId | string | null {
   if (response.providerId) {
     return response.providerId;
   }
diff --git a/packages-exp/auth-exp/src/model/id_token.ts b/packages-exp/auth-exp/src/model/id_token.ts
@@ -55,7 +55,7 @@ export interface IdTokenResponse {
   idToken?: IdToken;
   refreshToken?: string;
   expiresIn?: string;
-  providerId?: ProviderId;
+  providerId?: ProviderId|string;
 
   // Used in AdditionalUserInfo
   displayName?: string | null;

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ export function _fromIdTokenResponse(`
`78`	`78`	`class GenericAdditionalUserInfo implements externs.AdditionalUserInfo {`
`79`	`79`	`constructor(`
`80`	`80`	`readonly isNewUser: boolean,`
`81`		`- readonly providerId: externs.ProviderId \| null,`
	`81`	`+ readonly providerId: externs.ProviderId \| string \| null,`
`82`	`82`	`readonly profile: Record<string, unknown> = {}`
`83`	`83`	`) {}`
`84`	`84`	`}`