chenwenyi
/
firebase-ios-sdk


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131
							// Copyright 2017 Google
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

#import <FirebaseCore/FIRAppInternal.h>

#import "FIRStorageTokenAuthorizer.h"

#import "FIRStorageConstants.h"
#import "FIRStorageConstants_Private.h"
#import "FIRStorageErrors.h"

#import "FirebaseStorage.h"

#import <FirebaseCore/FIRApp.h>
#import <FirebaseCore/FIROptions.h>

@implementation FIRStorageTokenAuthorizer {
 @private
  // Firebase App which vends tokens
  FIRApp *_app;
}

@synthesize fetcherService = _fetcherService;

- (instancetype)initWithApp:(FIRApp *)app fetcherService:(GTMSessionFetcherService *)service {
  self = [super init];
  if (self) {
    _app = app;
    _fetcherService = service;
  }
  return self;
}

#pragma mark - GTMFetcherAuthorizationProtocol methods

- (void)authorizeRequest:(NSMutableURLRequest *)request
                delegate:(id)delegate
       didFinishSelector:(SEL)sel {
  // Set version header on each request
  NSString *versionString = [NSString stringWithFormat:@"ios/%s", FIRStorageVersionString];
  [request setValue:versionString forHTTPHeaderField:@"x-firebase-storage-version"];

  // Set GMP ID on each request
  NSString *GMPAppId = _app.options.googleAppID;
  [request setValue:GMPAppId forHTTPHeaderField:@"x-firebase-gmpid"];

  if (delegate && sel) {
    id selfParam = self;
    NSMethodSignature *sig = [delegate methodSignatureForSelector:sel];
    NSInvocation *invocation = [NSInvocation invocationWithMethodSignature:sig];
    [invocation setSelector:sel];
    [invocation setTarget:delegate];
    [invocation setArgument:&selfParam atIndex:2];
    [invocation setArgument:&request atIndex:3];

    dispatch_queue_t callbackQueue = self.fetcherService.callbackQueue;
    if (!callbackQueue) {
      callbackQueue = dispatch_get_main_queue();
    }

    [invocation retainArguments];
    if (_app.getTokenImplementation) {
      [_app getTokenForcingRefresh:NO
                      withCallback:^(NSString *_Nullable token, NSError *_Nullable error) {
                        if (error) {
                          NSMutableDictionary *errorDictionary =
                              [NSMutableDictionary dictionaryWithDictionary:error.userInfo];
                          errorDictionary[kFIRStorageResponseErrorDomain] = error.domain;
                          errorDictionary[kFIRStorageResponseErrorCode] = @(error.code);

                          NSError *tokenError =
                              [FIRStorageErrors errorWithCode:FIRStorageErrorCodeUnauthenticated
                                               infoDictionary:errorDictionary];
                          [invocation setArgument:&tokenError atIndex:4];
                        } else if (token) {
                          NSString *firebaseToken =
                              [NSString stringWithFormat:kFIRStorageAuthTokenFormat, token];
                          [request setValue:firebaseToken forHTTPHeaderField:@"Authorization"];
                        }
                        dispatch_async(callbackQueue, ^{
                          [invocation invoke];
                        });
                      }];
    } else {
      dispatch_async(callbackQueue, ^{
        [invocation invoke];
      });
    }
  }
}

// Note that stopAuthorization, isAuthorizingRequest, and userEmail
// aren't relevant with the Firebase App/Auth implementation of tokens,
// and thus aren't implemented. Token refresh is handled transparently
// for us, and we don't allow the auth request to be stopped.
// Auth is also not required so the world doesn't stop.
- (void)stopAuthorization {
  // Noop
}

- (void)stopAuthorizationForRequest:(NSURLRequest *)request {
  // Noop
}

- (BOOL)isAuthorizingRequest:(NSURLRequest *)request {
  return NO;
}

- (BOOL)isAuthorizedRequest:(NSURLRequest *)request {
  NSString *authHeader = request.allHTTPHeaderFields[@"Authorization"];
  BOOL isFirebaseToken = [authHeader hasPrefix:@"Firebase"];
  return isFirebaseToken;
}

- (NSString *)userEmail {
  // Noop
  return nil;
}

@end