chenwenyi
/
firebase-ios-sdk


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298
							// Copyright 2023 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

@testable import FirebaseAuth
import FirebaseCore
import UIKit

/// Namespace for performable actions on a Auth Settings view
enum SettingsAction: String {
  case toggleIdentityTokenAPI = "Identity Toolkit"
  case toggleSecureTokenAPI = "Secure Token"
  case toggleActiveApp = "Active App"
  case toggleAccessGroup = "Current Access Group"
  case toggleAPNSToken = "APNs Token"
  case toggleAppCredential = "App Credential"
  case setAuthLanguage = "Auth Language"
  case useAppLanguage = "Use App Language"
  case togglePhoneAppVerification = "Disable App Verification (Phone)"
}

class SettingsViewController: UIViewController, DataSourceProviderDelegate {
  var dataSourceProvider: DataSourceProvider<AuthSettings>!

  var tableView: UITableView { view as! UITableView }

  private var _settings: AuthSettings?
  var settings: AuthSettings? {
    get { AppManager.shared.auth().settings }
    set { _settings = newValue }
  }

  // MARK: - UIViewController Life Cycle

  override func loadView() {
    view = UITableView(frame: .zero, style: .insetGrouped)
  }

  override func viewDidLoad() {
    super.viewDidLoad()
    configureNavigationBar()
  }

  override func viewWillAppear(_ animated: Bool) {
    super.viewWillAppear(animated)
    configureDataSourceProvider()
  }

  // MARK: - DataSourceProviderDelegate

  func didSelectRowAt(_ indexPath: IndexPath, on tableView: UITableView) {
    let item = dataSourceProvider.item(at: indexPath)

    guard let actionName = item.detailTitle,
          let action = SettingsAction(rawValue: actionName) else {
      // The row tapped has no affiliated action.
      return
    }
    let auth = AppManager.shared.auth()

    switch action {
    case .toggleSecureTokenAPI:
      toggleSecureTokenAPI()
    case .toggleIdentityTokenAPI:
      toggleIdentityTokenAPI()
    case .toggleActiveApp:
      AppManager.shared.toggle()
    case .toggleAccessGroup:
      toggleAccessGroup()
    case .setAuthLanguage:
      setAuthLanguage()
    case .useAppLanguage:
      auth.useAppLanguage()
    case .toggleAPNSToken:
      clearAPNSToken()
    case .toggleAppCredential:
      clearAppCredential()
    case .togglePhoneAppVerification:
      guard let settings = auth.settings else {
        fatalError("Unset auth.settings")
      }
      settings.isAppVerificationDisabledForTesting = !settings.isAppVerificationDisabledForTesting
    }
    updateUI()
  }

  // MARK: - Firebase 🔥

  private func toggleIdentityTokenAPI() {
    if IdentityToolkitRequest.host == "www.googleapis.com" {
      IdentityToolkitRequest.setHost("staging-www.sandbox.googleapis.com")
    } else {
      IdentityToolkitRequest.setHost("www.googleapis.com")
    }
  }

  private func toggleSecureTokenAPI() {
    if SecureTokenRequest.host == "securetoken.googleapis.com" {
      SecureTokenRequest.setHost("staging-securetoken.sandbox.googleapis.com")
    } else {
      SecureTokenRequest.setHost("securetoken.googleapis.com")
    }
  }

  private func toggleAccessGroup() {
    do {
      if AppManager.shared.auth().userAccessGroup == nil {
        guard let bundleDictionary = Bundle.main.infoDictionary,
              let group = bundleDictionary["AppIdentifierPrefix"] as? String else {
          fatalError("Configure AppIdentifierPrefix in the plist")
        }
        try AppManager.shared.auth().useUserAccessGroup(group +
          "com.google.firebase.auth.keychainGroup1")
      } else {
        try AppManager.shared.auth().useUserAccessGroup(nil)
      }
    } catch {
      fatalError("Failed to set userAccessGroup with error \(error)")
    }
  }

  func clearAPNSToken() {
    guard let token = AppManager.shared.auth().tokenManager.token else {
      return
    }

    let tokenType = token.type == .prod ? "Production" : "Sandbox"
    let message = "token: \(token.string)\ntype: \(tokenType)"

    let prompt = UIAlertController(title: "Clear APNs Token?", message: message,
                                   preferredStyle: .alert)
    let okAction = UIAlertAction(title: "OK", style: .default) { action in
      AppManager.shared.auth().tokenManager.token = nil
      self.updateUI()
    }
    prompt.addAction(okAction)
    present(prompt, animated: true)
  }

  func clearAppCredential() {
    if let credential = AppManager.shared.auth().appCredentialManager.credential {
      let message = "receipt:\(credential.receipt) secret:\(credential.secret ?? "nil")"
      let prompt = UIAlertController(title: "Clear App Credential", message: message,
                                     preferredStyle: .alert)
      let okAction = UIAlertAction(title: "OK", style: .default) { action in
        AppManager.shared.auth().appCredentialManager.clearCredential()
        self.updateUI()
      }
      prompt.addAction(okAction)
      present(prompt, animated: true)
    }
  }

  private func setAuthLanguage() {
    let prompt = UIAlertController(title: nil, message: "Enter Language Code For Auth:",
                                   preferredStyle: .alert)
    prompt.addTextField()
    let okAction = UIAlertAction(title: "OK", style: .default) { action in
      AppManager.shared.auth().languageCode = prompt.textFields?[0].text ?? ""
      self.updateUI()
    }
    prompt.addAction(okAction)

    present(prompt, animated: true)
  }

  // MARK: - Private Helpers

  private func configureNavigationBar() {
    navigationItem.title = "Settings"
    guard let navigationBar = navigationController?.navigationBar else { return }
    navigationBar.prefersLargeTitles = true
    navigationBar.titleTextAttributes = [.foregroundColor: UIColor.systemOrange]
    navigationBar.largeTitleTextAttributes = [.foregroundColor: UIColor.systemOrange]
  }

  private func configureDataSourceProvider() {
    dataSourceProvider = DataSourceProvider(
      dataSource: settings?.sections,
      emptyStateView: SignedOutView(),
      tableView: tableView
    )
    dataSourceProvider.delegate = self
  }

  private func updateUI() {
    configureDataSourceProvider()
    animateUpdates(for: tableView)
  }

  private func animateUpdates(for tableView: UITableView) {
    UIView.transition(with: tableView, duration: 0.2,
                      options: .transitionCrossDissolve,
                      animations: { tableView.reloadData() })
  }
}

// MARK: - Extending a `AuthSettings` to conform to `DataSourceProvidable`

extension AuthSettings: DataSourceProvidable {
  private var versionSection: Section {
    let items = [Item(title: FirebaseVersion(), detailTitle: "FirebaseAuth")]
    return Section(headerDescription: "Versions", items: items)
  }

  private var apiHostSection: Section {
    let items = [Item(title: IdentityToolkitRequest.host, detailTitle: "Identity Toolkit"),
                 Item(title: SecureTokenRequest.host, detailTitle: "Secure Token")]
    return Section(headerDescription: "API Hosts", items: items)
  }

  private var appsSection: Section {
    let items = [Item(title: AppManager.shared.app.options.projectID, detailTitle: "Active App")]
    return Section(headerDescription: "Firebase Apps", items: items)
  }

  private var keychainSection: Section {
    let items = [Item(title: AppManager.shared.auth().userAccessGroup ?? "[none]",
                      detailTitle: "Current Access Group")]
    return Section(headerDescription: "Keychain Access Groups", items: items)
  }

  func truncatedString(string: String, length: Int) -> String {
    guard string.count > length else { return string }

    let half = (length - 3) / 2
    let startIndex = string.startIndex
    let midIndex = string.index(startIndex, offsetBy: half) // Ensure correct mid index
    let endIndex = string.index(startIndex, offsetBy: string.count - half)

    return "\(string[startIndex ..< midIndex])...\(string[endIndex...])"
  }

  // TODO: Add ability to click and clear both of these fields.
  private var phoneAuthSection: Section {
    let items = [Item(title: APNSTokenString(), detailTitle: "APNs Token"),
                 Item(title: appCredentialString(), detailTitle: "App Credential")]
    return Section(headerDescription: "Phone Auth", items: items)
  }

  func APNSTokenString() -> String {
    guard let token = AppManager.shared.auth().tokenManager.token else {
      return "No APNs token"
    }

    let truncatedToken = truncatedString(string: token.string, length: 19)
    let tokenType = token.type == .prod ? "Production" : "Sandbox"
    return "\(truncatedToken)(\(tokenType))"
  }

  func appCredentialString() -> String {
    if let credential = AppManager.shared.auth().appCredentialManager.credential {
      let truncatedReceipt = truncatedString(string: credential.receipt, length: 13)
      let truncatedSecret = truncatedString(string: credential.secret ?? "", length: 13)
      return "\(truncatedReceipt)/\(truncatedSecret)"
    } else {
      return "No App Credential"
    }
  }

  private var languageSection: Section {
    let languageCode = AppManager.shared.auth().languageCode
    let items = [Item(title: languageCode ?? "[none]", detailTitle: "Auth Language"),
                 Item(title: "Click to Use App Language", detailTitle: "Use App Language")]
    return Section(headerDescription: "Language", items: items)
  }

  private var disableSection: Section {
    guard let settings = AppManager.shared.auth().settings else {
      fatalError("Missing auth settings")
    }
    let disabling = settings.isAppVerificationDisabledForTesting ? "YES" : "NO"
    let items = [Item(title: disabling, detailTitle: "Disable App Verification (Phone)")]
    return Section(headerDescription: "Auth Settings", items: items)
  }

  var sections: [Section] {
    [
      versionSection,
      apiHostSection,
      appsSection,
      keychainSection,
      phoneAuthSection,
      languageSection,
      disableSection,
    ]
  }
}