Skip to content

Defer check whether auth is available #4845

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 11 commits into from
May 5, 2021
Merged

Defer check whether auth is available #4845

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
99b79f6
Support lazy-loaded Auth
schmidt-sebastian May 4, 2021
1ff8800
Update packages/firestore/src/api/credentials.ts
schmidt-sebastian May 4, 2021
c15ae9f
Update packages/firestore/src/api/credentials.ts
schmidt-sebastian May 4, 2021
41b5dc5
Review
schmidt-sebastian May 4, 2021
51718f1
Simplify
schmidt-sebastian May 5, 2021
55590e6
Merge branch 'master' into mrschmidt/optionalauth
schmidt-sebastian May 5, 2021
3624380
Update provider.ts
schmidt-sebastian May 5, 2021
0faa3d9
Cleanup
schmidt-sebastian May 5, 2021
958bcdf
Comment cleanup
schmidt-sebastian May 5, 2021
bc06883
Merge branch 'mrschmidt/optionalauth' of github.com:firebase/firebase…
schmidt-sebastian May 5, 2021
be1fa3c
Review
schmidt-sebastian May 5, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
40 changes: 39 additions & 1 deletion packages/component/src/provider.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,8 @@ import {
InitializeOptions,
InstantiationMode,
Name,
NameServiceMapping
NameServiceMapping,
OnInitCallBack
} from './types';
import { Component } from './component';

Expand All @@ -37,6 +38,7 @@ export class Provider<T extends Name> {
string,
Deferred<NameServiceMapping[T]>
> = new Map();
private onInitCallbacks: Set<OnInitCallBack<T>> = new Set();

constructor(
private readonly name: T,
Expand Down Expand Up @@ -250,9 +252,45 @@ export class Provider<T extends Name> {
instanceDeferred.resolve(instance);
}
}

this.invokeOnInitCallbacks(instance, normalizedIdentifier);
return instance;
}

/**
*
* @param callback - a function that will be invoked after the provider has
* been initialized by calling provider.initialize().
* The function is invoked SYNCHRONOUSLY, so it should not execute any
* longrunning tasks in order to not block the program.
*
* @returns a function to unregister the callback
*/
onInit(callback: (instance: NameServiceMapping[T]) => void): () => void {
this.onInitCallbacks.add(callback);

return () => {
this.onInitCallbacks.delete(callback);
};
}

/**
* Invoke onInit callbacks synchronously
* @param instance the service instance`
*/
private invokeOnInitCallbacks(
instance: NameServiceMapping[T],
identifier: string
): void {
for (const callback of this.onInitCallbacks) {
try {
callback(instance, identifier);
} catch {
// ignore errors in the onInit callback
}
}
}

private getOrInitializeService({
instanceIdentifier,
options = {}
Expand Down
5 changes: 5 additions & 0 deletions packages/component/src/types.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,3 +75,8 @@ export interface NameServiceMapping {}

export type Name = keyof NameServiceMapping;
export type Service = NameServiceMapping[Name];

export type OnInitCallBack<T extends Name> = (
instance: NameServiceMapping[T],
identifier: string
) => void;
2 changes: 1 addition & 1 deletion packages/firestore/.idea/runConfigurations/All_Tests__Emulator_.xml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion packages/firestore/.idea/runConfigurations/All_Tests__Emulator_w__Mock_Persistence_.xml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion packages/firestore/.idea/runConfigurations/Integration_Tests__Emulator_.xml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion ...es/firestore/.idea/runConfigurations/Integration_Tests__Emulator_w__Mock_Persistence_.xml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions packages/firestore/.idea/runConfigurations/Unit_Tests.xml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion packages/firestore/.idea/runConfigurations/Unit_Tests__w__Mock_Persistence_.xml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

158 changes: 116 additions & 42 deletions packages/firestore/src/api/credentials.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,8 +23,10 @@ import { Provider } from '@firebase/component';

import { User } from '../auth/user';
import { hardAssert, debugAssert } from '../util/assert';
import { AsyncQueue } from '../util/async_queue';
import { Code, FirestoreError } from '../util/error';
import { logDebug } from '../util/log';
import { Deferred } from '../util/promise';

// TODO(mikelehen): This should be split into multiple files and probably
// moved to an auth/ folder to match other platforms.
Expand Down Expand Up @@ -78,7 +80,7 @@ export class OAuthToken implements Token {
* token and may need to invalidate other state if the current user has also
* changed.
*/
export type CredentialChangeListener = (user: User) => void;
export type CredentialChangeListener = (user: User) => Promise<void>;

/**
* Provides methods for getting the uid and token for the current user and
Expand All @@ -98,8 +100,13 @@ export interface CredentialsProvider {
* Specifies a listener to be notified of credential changes
* (sign-in / sign-out, token changes). It is immediately called once with the
* initial user.
*
* The change listener is invoked on the provided AsyncQueue.
*/
setChangeListener(changeListener: CredentialChangeListener): void;
setChangeListener(
asyncQueue: AsyncQueue,
changeListener: CredentialChangeListener
): void;

/** Removes the previously-set change listener. */
removeChangeListener(): void;
Expand All @@ -120,14 +127,20 @@ export class EmptyCredentialsProvider implements CredentialsProvider {

invalidateToken(): void {}

setChangeListener(changeListener: CredentialChangeListener): void {
setChangeListener(
asyncQueue: AsyncQueue,
changeListener: CredentialChangeListener
): void {
debugAssert(
!this.changeListener,
'Can only call setChangeListener() once.'
);
this.changeListener = changeListener;
// Fire with initial user.
changeListener(User.UNAUTHENTICATED);
asyncQueue.enqueueRetryable(() => {
changeListener(User.FIRST_PARTY);
return Promise.resolve();
});
}

removeChangeListener(): void {
Expand Down Expand Up @@ -175,11 +188,25 @@ export class FirebaseCredentialsProvider implements CredentialsProvider {
* The auth token listener registered with FirebaseApp, retained here so we
* can unregister it.
*/
private tokenListener: ((token: string | null) => void) | null = null;
private tokenListener: (() => void) | null = null;

/** Tracks the current User. */
private currentUser: User = User.UNAUTHENTICATED;
private receivedInitialUser: boolean = false;

/**
* Promise that allows blocking on the next `tokenChange` event. The Promise
* is re-assgined in `awaitTokenAndRaiseInitialEvent()` to allow blocking on
* an a lazily loaded Auth instance. In this case, `this.receivedUser`
* resolves once when the SDK first detects that there is no synchronous
* Auth, and then gets re-created and resolves again once Auth is loaded.
*/
private receivedUser = new Deferred();

/**
* Whether the initial token event has been raised. This can go back to
* `false` if Firestore first starts without Auth and Auth is loaded later.
*/
private initialEventRaised: boolean = false;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This variable doesn't seem to do anything, because it's only set in awaitTokenAndRaiseInitialEvent which is synchronous. It's not used in awaitTokenAndRaiseInitialEvent() itself and is always set to true at the end of the function, so it seems the outside world will always see this variable as true.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hm, this bothers me. It is meant to prevent double-firing of the change listener. I tested that it doesn't fire twice manually, but what you say is also true - this variable and its check do not do anything. I have fixed the variable and am now resetting it on the queue rather than synchronously.


/**
* Counter used to detect if the token changed while a getToken request was
Expand All @@ -188,44 +215,62 @@ export class FirebaseCredentialsProvider implements CredentialsProvider {
private tokenCounter = 0;

/** The listener registered with setChangeListener(). */
private changeListener: CredentialChangeListener | null = null;
private changeListener: CredentialChangeListener = () => Promise.resolve();

private forceRefresh = false;

private auth: FirebaseAuthInternal | null;
private auth: FirebaseAuthInternal | null = null;

private asyncQueue: AsyncQueue | null = null;

constructor(authProvider: Provider<FirebaseAuthInternalName>) {
this.tokenListener = () => {
this.tokenCounter++;
this.receivedUser.resolve();
this.currentUser = this.getUser();
this.receivedInitialUser = true;
if (this.changeListener) {
this.changeListener(this.currentUser);
if (this.initialEventRaised && this.asyncQueue) {
// We only invoke the change listener here if the initial event has been
// raised. The initial event itself is invoked synchronously in
// `awaitTokenAndRaiseInitialEvent()`.
this.asyncQueue.enqueueRetryable(() => {
this.changeListener(this.currentUser);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In the registerAuth(), we do

        this.awaitTokenAndRaiseInitialEvent();
        this.auth.addAuthTokenListener(this.tokenListener);

We already invoke this.changeListener in the asyncQueue in awaitTokenAndRaiseInitialEvent, should we not do it again in this.tokenListener?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think I addressed this. I am not able to verify this right now, but will do a test run later today. BTW, this was meant to be addressed by the buggy code around initialEventRaised

return Promise.resolve();
});
}
};

this.tokenCounter = 0;

this.auth = authProvider.getImmediate({ optional: true });
const registerAuth = (auth: FirebaseAuthInternal): void => {
logDebug('FirebaseCredentialsProvider', 'Auth detected');
this.auth = auth;
if (this.tokenListener) {
// tokenListener can be removed by removeChangeListener()
this.awaitTokenAndRaiseInitialEvent();
this.auth.addAuthTokenListener(this.tokenListener);
}
};

if (this.auth) {
this.auth.addAuthTokenListener(this.tokenListener!);
} else {
// if auth is not available, invoke tokenListener once with null token
this.tokenListener(null);
authProvider.get().then(
auth => {
this.auth = auth;
if (this.tokenListener) {
// tokenListener can be removed by removeChangeListener()
this.auth.addAuthTokenListener(this.tokenListener);
}
},
() => {
/* this.authProvider.get() never rejects */
authProvider.onInit(auth => registerAuth(auth));

// Our users can initialize Auth right after Firestore, so we give it
// a chance to register itself with the component framework before we
// determine whether to start up in unauthenticated mode.
setTimeout(() => {
if (!this.auth) {
const auth = authProvider.getImmediate({ optional: true });
if (auth) {
registerAuth(auth);
} else if (this.tokenListener) {
// If auth is still not available, invoke tokenListener once with null
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Comment needs update.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed

// token
logDebug('FirebaseCredentialsProvider', 'Auth not yet detected');
this.tokenListener();
}
);
}
}
}, 0);

this.awaitTokenAndRaiseInitialEvent();
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this.asyncQueue set at this point?

My understanding is it is not, so awaitTokenAndRaiseInitialEvent doesn't do anything except for setting this.invokeChangeListener = false; which will lead to wrong behavior if auth is not available - the following code in this.tokenListener` will not execute:

      if (this.invokeChangeListener) {
        this.asyncQueue!.enqueueRetryable(() =>
          this.changeListener(this.currentUser)
        );
      }

Copy link
Member

@Feiyang1 Feiyang1 May 5, 2021
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This seems to work in code though. Firestore will not receive a null user when auth is not initialized, but nothing seems to break.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I changed the logic for invokeChangeListener to only set it to true if the AsyncQueue is available. This should address this concern.

}

getToken(): Promise<Token | null> {
Expand Down Expand Up @@ -273,25 +318,21 @@ export class FirebaseCredentialsProvider implements CredentialsProvider {
this.forceRefresh = true;
}

setChangeListener(changeListener: CredentialChangeListener): void {
debugAssert(
!this.changeListener,
'Can only call setChangeListener() once.'
);
setChangeListener(
asyncQueue: AsyncQueue,
changeListener: CredentialChangeListener
): void {
debugAssert(!this.asyncQueue, 'Can only call setChangeListener() once.');
this.asyncQueue = asyncQueue;
this.changeListener = changeListener;

// Fire the initial event
if (this.receivedInitialUser) {
changeListener(this.currentUser);
}
}

removeChangeListener(): void {
if (this.auth) {
this.auth.removeAuthTokenListener(this.tokenListener!);
}
this.tokenListener = null;
this.changeListener = null;
this.changeListener = () => Promise.resolve();
}

// Auth.getUid() can return null even with a user logged in. It is because
Expand All @@ -306,6 +347,33 @@ export class FirebaseCredentialsProvider implements CredentialsProvider {
);
return new User(currentUid);
}

/**
* Blocks the AsyncQueue until the next user is available. This is invoked
* on SDK start to wait for the first user token (or `null` if Auth is not yet
* loaded). If Auth is loaded after Firestore,
* `awaitTokenAndRaiseInitialEvent()` is also used to block Firestore until
* Auth is fully initialized.
*
* This function also invokes the change listener synchronously once a token
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do you mean asynchronously, since it happens in the asyncQueue?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I meant "synchronously with the code that resolves the token". I have reworded it.

* is available.
*/
private awaitTokenAndRaiseInitialEvent(): void {
this.initialEventRaised = false;
if (this.asyncQueue) {
// Create a new deferred Promise that gets resolved when we receive the
// next token. Ensure that all previous Promises also get resolved.
const awaitToken = new Deferred<void>();
void awaitToken.promise.then(() => awaitToken.resolve());
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

then only fires if awaitToken resolves, why do we resolve it again in then? The comment suggests it ensures all previous Promises also get resolved? But I don't get how that works.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This was meant to resolve the existing this.receivedUser Promise if another one was created later on. I changed how the listener gets called if auth is not used, and am no longer using the Promise twice. This allowed me to remove this logic.

this.receivedUser = awaitToken;

this.asyncQueue.enqueueRetryable(async () => {
await awaitToken.promise;
await this.changeListener(this.currentUser);
});
}
this.initialEventRaised = true;
}
}

// Manual type definition for the subset of Gapi we use.
Expand Down Expand Up @@ -368,9 +436,15 @@ export class FirstPartyCredentialsProvider implements CredentialsProvider {
);
}

setChangeListener(changeListener: CredentialChangeListener): void {
setChangeListener(
asyncQueue: AsyncQueue,
changeListener: CredentialChangeListener
): void {
// Fire with initial uid.
changeListener(User.FIRST_PARTY);
asyncQueue.enqueueRetryable(() => {
changeListener(User.FIRST_PARTY);
return Promise.resolve();
});
}

removeChangeListener(): void {}
Expand Down
Loading