feat(auth, web): expose reauthenticateWithRedirect and reauthenticateWithPopup (#9696)

Lyokone · web-flow · commit 2a1f910ff6ca · 2022-10-24T14:48:22.000+02:00
diff --git a/docs/auth/federated-auth.md b/docs/auth/federated-auth.md
@@ -422,6 +422,9 @@ final appleProvider = AppleAuthProvider();
 
 if (kIsWeb) {
   await FirebaseAuth.instance.currentUser?.reauthenticateWithPopup(appleProvider);
+  
+  // Or you can reauthenticate with a redirection
+  // await FirebaseAuth.instance.currentUser?.reauthenticateWithRedirect(appleProvider);
 } else {
   await FirebaseAuth.instance.currentUser?.reauthenticateWithProvider(appleProvider);
 }
diff --git a/packages/firebase_auth/firebase_auth/example/lib/auth.dart b/packages/firebase_auth/firebase_auth/example/lib/auth.dart
@@ -583,10 +583,6 @@ class _AuthGateState extends State<AuthGate> {
     } else {
       await _auth.signInWithProvider(microsoftProvider);
     }
-
-    await FirebaseAuth.instance.currentUser?.reauthenticateWithProvider(
-      microsoftProvider,
-    );
   }
 }
 
diff --git a/packages/firebase_auth/firebase_auth/lib/src/user.dart b/packages/firebase_auth/firebase_auth/lib/src/user.dart
@@ -279,6 +279,79 @@ class User {
     );
   }
 
+  /// Re-authenticates a user using a popup on Web.
+  ///
+  /// Use before operations such as [User.updatePassword] that require tokens
+  /// from recent sign-in attempts.
+  ///
+  /// A [FirebaseAuthException] maybe thrown with the following error code:
+  /// - **user-mismatch**:
+  ///  - Thrown if the credential given does not correspond to the user.
+  /// - **user-not-found**:
+  ///  - Thrown if the credential given does not correspond to any existing
+  ///    user.
+  /// - **invalid-credential**:
+  ///  - Thrown if the provider's credential is not valid. This can happen if it
+  ///    has already expired when calling link, or if it used invalid token(s).
+  ///    See the Firebase documentation for your provider, and make sure you
+  ///    pass in the correct parameters to the credential method.
+  /// - **invalid-email**:
+  ///  - Thrown if the email used in a [EmailAuthProvider.credential] is
+  ///    invalid.
+  /// - **wrong-password**:
+  ///  - Thrown if the password used in a [EmailAuthProvider.credential] is not
+  ///    correct or when the user associated with the email does not have a
+  ///    password.
+  /// - **invalid-verification-code**:
+  ///  - Thrown if the credential is a [PhoneAuthProvider.credential] and the
+  ///    verification code of the credential is not valid.
+  /// - **invalid-verification-id**:
+  ///  - Thrown if the credential is a [PhoneAuthProvider.credential] and the
+  ///    verification ID of the credential is not valid.
+  Future<UserCredential> reauthenticateWithPopup(
+    AuthProvider provider,
+  ) async {
+    return UserCredential._(
+      _auth,
+      await _delegate.reauthenticateWithPopup(provider),
+    );
+  }
+
+  /// Re-authenticates a user using a redirection on Web.
+  ///
+  /// Use before operations such as [User.updatePassword] that require tokens
+  /// from recent sign-in attempts.
+  ///
+  /// A [FirebaseAuthException] maybe thrown with the following error code:
+  /// - **user-mismatch**:
+  ///  - Thrown if the credential given does not correspond to the user.
+  /// - **user-not-found**:
+  ///  - Thrown if the credential given does not correspond to any existing
+  ///    user.
+  /// - **invalid-credential**:
+  ///  - Thrown if the provider's credential is not valid. This can happen if it
+  ///    has already expired when calling link, or if it used invalid token(s).
+  ///    See the Firebase documentation for your provider, and make sure you
+  ///    pass in the correct parameters to the credential method.
+  /// - **invalid-email**:
+  ///  - Thrown if the email used in a [EmailAuthProvider.credential] is
+  ///    invalid.
+  /// - **wrong-password**:
+  ///  - Thrown if the password used in a [EmailAuthProvider.credential] is not
+  ///    correct or when the user associated with the email does not have a
+  ///    password.
+  /// - **invalid-verification-code**:
+  ///  - Thrown if the credential is a [PhoneAuthProvider.credential] and the
+  ///    verification code of the credential is not valid.
+  /// - **invalid-verification-id**:
+  ///  - Thrown if the credential is a [PhoneAuthProvider.credential] and the
+  ///    verification ID of the credential is not valid.
+  Future<void> reauthenticateWithRedirect(
+    AuthProvider provider,
+  ) async {
+    await _delegate.reauthenticateWithRedirect(provider);
+  }
+
   /// Links the user account with the given provider.
   ///
   /// A [FirebaseAuthException] maybe thrown with the following error code:
diff --git a/packages/firebase_auth/firebase_auth_platform_interface/lib/src/platform_interface/platform_interface_user.dart b/packages/firebase_auth/firebase_auth_platform_interface/lib/src/platform_interface/platform_interface_user.dart
@@ -277,6 +277,25 @@ abstract class UserPlatform extends PlatformInterface {
     throw UnimplementedError('reauthenticateWithPopup() is not implemented');
   }
 
+  /// Renews the user’s authentication using the provided auth provider instance.
+  /// On mobile you should use [reauthenticateWithProvider] instead.
+  ///
+  /// A [FirebaseAuthException] maybe thrown with the following error code:
+  /// - **invalid-credential**:
+  ///  - Thrown if the provider's credential is not valid. This can happen if it
+  ///    has already expired when calling link, or if it used invalid token(s).
+  ///    See the Firebase documentation for your provider, and make sure you
+  ///    pass in the correct parameters to the credential method.
+  /// - **operation-not-allowed**:
+  ///  - Thrown if you have not enabled the provider in the Firebase Console. Go
+  ///    to the Firebase Console for your project, in the Auth section and the
+  ///    Sign in Method tab and configure the provider.
+  Future<void> reauthenticateWithRedirect(
+    AuthProvider provider,
+  ) {
+    throw UnimplementedError('reauthenticateWithRedirect() is not implemented');
+  }
+
   /// Links the user account with the given provider.
   ///
   /// A [FirebaseAuthException] maybe thrown with the following error code:
diff --git a/packages/firebase_auth/firebase_auth_web/lib/src/firebase_auth_web_user.dart b/packages/firebase_auth/firebase_auth_web/lib/src/firebase_auth_web_user.dart
@@ -164,6 +164,17 @@ class UserWeb extends UserPlatform {
     }
   }
 
+  @override
+  Future<void> reauthenticateWithRedirect(AuthProvider provider) async {
+    _assertIsSignedOut(auth);
+    try {
+      return _webUser
+          .reauthenticateWithRedirect(convertPlatformAuthProvider(provider));
+    } catch (e) {
+      throw getFirebaseAuthException(e);
+    }
+  }
+
   @override
   Future<void> reload() async {
     _assertIsSignedOut(auth);

Original file line number	Diff line number	Diff line change
`@@ -422,6 +422,9 @@ final appleProvider = AppleAuthProvider();`
`422`	`422`
`423`	`423`	`if (kIsWeb) {`
`424`	`424`	`await FirebaseAuth.instance.currentUser?.reauthenticateWithPopup(appleProvider);`
	`425`	`+`
	`426`	`+ // Or you can reauthenticate with a redirection`
	`427`	`+ // await FirebaseAuth.instance.currentUser?.reauthenticateWithRedirect(appleProvider);`
`425`	`428`	`} else {`
`426`	`429`	`await FirebaseAuth.instance.currentUser?.reauthenticateWithProvider(appleProvider);`
`427`	`430`	`}`
Original file line number	Diff line number	Diff line change
`@@ -583,10 +583,6 @@ class _AuthGateState extends State<AuthGate> {`
`583`	`583`	`} else {`
`584`	`584`	`await _auth.signInWithProvider(microsoftProvider);`
`585`	`585`	`}`
`586`		`-`
`587`		`- await FirebaseAuth.instance.currentUser?.reauthenticateWithProvider(`
`588`		`- microsoftProvider,`
`589`		`- );`
`590`	`586`	`}`
`591`	`587`	`}`
`592`	`588`