[MOB-9064] JWT

.gitignore

@@ -85,6 +85,7 @@ ios/generated
 android/generated
 
 # Iterable
+.env.local
 .env
 .xcode.env.local
 coverage/

CHANGELOG.md

@@ -1,6 +1,21 @@
+## 2.2.0-alpha.0 (2025-10-21)
+
+### Updates
+- Updated Android SDK version to [3.6.1](https://github.com/Iterable/iterable-android-sdk/releases/tag/3.6.1)
+- Updated iOS SDK version to [6.6.1](https://github.com/Iterable/swift-sdk/releases/tag/6.6.1)
+- Added JWT Capabilities:
+  - Added `Iterable.authhManager`, which manages the authentication flow
+  - Added `IterableRetryBackoff` and `IterableAuthFailureReason` enums
+  - Added `onJWTError` and `retryPolicy` for control over JWT flow
+- Moved all native calls to `IterableApi.ts`
+- Added JWT example to our example app
+
+### Fixes
+- Created a standalone `IterableLogger` to avoid circular dependencies
+
 ## 2.1.0-beta.1
 
-## Fixes
+### Fixes
 - Add Temporary fix for circular paths, which break expo ([9c09743](https://github.com/Iterable/react-native-sdk/commit/9c09743))
 
 ## 2.1.0-beta.0

Iterable-React-Native-SDK.podspec

@@ -17,7 +17,7 @@ Pod::Spec.new do |s|
   s.private_header_files = "ios/**/*.h"
 
   # Load Iterables iOS SDK as a dependency
-  s.dependency "Iterable-iOS-SDK", "6.5.4.1"
+  s.dependency "Iterable-iOS-SDK", "6.6.1"
 
   # Basic Swift support
   s.pod_target_xcconfig = {

android/build.gradle

@@ -105,7 +105,7 @@ def kotlin_version = getExtOrDefault("kotlinVersion")
 dependencies {
   implementation "com.facebook.react:react-android"
   implementation "org.jetbrains.kotlin:kotlin-stdlib:$kotlin_version"
-  api "com.iterable:iterableapi:3.5.2"
+  api "com.iterable:iterableapi:3.6.1"
     // api project(":iterableapi") // links to local android SDK repo rather than by release
 }
 

android/src/main/java/com/iterable/reactnative/RNIterableAPIModuleImpl.java

@@ -18,6 +18,7 @@
 import com.facebook.react.bridge.WritableMap;
 import com.facebook.react.modules.core.DeviceEventManagerModule;
 
+import com.iterable.iterableapi.AuthFailure;
 import com.iterable.iterableapi.InboxSessionManager;
 import com.iterable.iterableapi.IterableAction;
 import com.iterable.iterableapi.IterableActionContext;
@@ -572,19 +573,33 @@ public String onAuthTokenRequested() {
         }
     }
 
+    @Override
+    public void onAuthFailure(AuthFailure authFailure) {
+      // Create a JSON object for the authFailure object
+      JSONObject messageJson = new JSONObject();
+      try {
+        messageJson.put("userKey", authFailure.userKey);
+        messageJson.put("failedAuthToken", authFailure.failedAuthToken);
+        messageJson.put("failedRequestTime", authFailure.failedRequestTime);
+        messageJson.put("failureReason", authFailure.failureReason.name());
+        WritableMap eventData = Serialization.convertJsonToMap(messageJson);
+        sendEvent(EventName.handleAuthFailureCalled.name(), eventData);
+      } catch (JSONException e) {
+        IterableLogger.v(TAG, "Failed to set authToken");
+      }
+    }
+
+    public void pauseAuthRetries(boolean pauseRetry) {
+        IterableApi.getInstance().pauseAuthRetries(pauseRetry);
+    }
+
     @Override
     public void onTokenRegistrationSuccessful(String authToken) {
         IterableLogger.v(TAG, "authToken successfully set");
         // MOB-10422: Pass successhandler to event listener
         sendEvent(EventName.handleAuthSuccessCalled.name(), null);
     }
 
-    @Override
-    public void onTokenRegistrationFailed(Throwable object) {
-        IterableLogger.v(TAG, "Failed to set authToken");
-        sendEvent(EventName.handleAuthFailureCalled.name(), null);
-    }
-
     public void addListener(String eventName) {
         // Keep: Required for RN built in Event Emitter Calls.
     }

android/src/main/java/com/iterable/reactnative/Serialization.java

@@ -24,6 +24,7 @@
 import com.iterable.iterableapi.IterableInboxSession;
 import com.iterable.iterableapi.IterableLogger;
 import com.iterable.iterableapi.RNIterableInternal;
+import com.iterable.iterableapi.RetryPolicy;
 
 import org.json.JSONArray;
 import org.json.JSONException;
@@ -94,7 +95,7 @@ static CommerceItem commerceItemFromMap(JSONObject itemMap) throws JSONException
                 categories[i] = categoriesArray.getString(i);
             }
         }
-        
+
         return new CommerceItem(itemMap.getString("id"),
                 itemMap.getString("name"),
                 itemMap.getDouble("price"),
@@ -216,9 +217,17 @@ static IterableConfig.Builder getConfigFromReadableMap(ReadableMap iterableConte
 
                 configBuilder.setDataRegion(iterableDataRegion);
             }
-
-            if (iterableContextJSON.has("encryptionEnforced")) {
-                configBuilder.setEncryptionEnforced(iterableContextJSON.optBoolean("encryptionEnforced"));
+
+            if (iterableContextJSON.has("retryPolicy")) {
+                JSONObject retryPolicyJson = iterableContextJSON.getJSONObject("retryPolicy");
+                int maxRetry = retryPolicyJson.getInt("maxRetry");
+                long retryInterval = retryPolicyJson.getLong("retryInterval");
+                String retryBackoff = retryPolicyJson.getString("retryBackoff");
+                RetryPolicy.Type retryPolicyType = RetryPolicy.Type.LINEAR;
+                if (retryBackoff.equals("EXPONENTIAL")) {
+                    retryPolicyType = RetryPolicy.Type.EXPONENTIAL;
+                }
+                configBuilder.setAuthRetryPolicy(new RetryPolicy(maxRetry, retryInterval, retryPolicyType));
             }
 
             return configBuilder;
@@ -257,7 +266,13 @@ static JSONObject actionContextToJson(IterableActionContext iterableActionContex
     }
 
     static IterableInboxSession.Impression inboxImpressionFromMap(JSONObject impressionMap) throws JSONException {
-        return new IterableInboxSession.Impression(impressionMap.getString("messageId"),
+        // Add null check for messageId to prevent NullPointerException
+        String messageId = impressionMap.optString("messageId", null);
+        if (messageId == null || messageId.isEmpty()) {
+            throw new JSONException("messageId is null or empty");
+        }
+
+        return new IterableInboxSession.Impression(messageId,
                 impressionMap.getBoolean("silentInbox"),
                 impressionMap.optInt("displayCount", 0),
                 (float) impressionMap.optDouble("duration", 0)
@@ -271,8 +286,13 @@ static List<IterableInboxSession.Impression> impressionsFromReadableArray(Readab
             JSONArray impressionJsonArray = convertArrayToJson(array);
 
             for (int i = 0; i < impressionJsonArray.length(); i++) {
-                JSONObject impressionObj = impressionJsonArray.getJSONObject(i);
-                list.add(inboxImpressionFromMap(impressionObj));
+                try {
+                    JSONObject impressionObj = impressionJsonArray.getJSONObject(i);
+                    list.add(inboxImpressionFromMap(impressionObj));
+                } catch (JSONException e) {
+                    // Skip invalid entries instead of failing completely
+                    IterableLogger.w(TAG, "Skipping invalid impression at index " + i + ": " + e.getLocalizedMessage());
+                }
             }
         } catch (JSONException e) {
             IterableLogger.e(TAG, "Failed converting to JSONObject");
@@ -286,7 +306,7 @@ static List<IterableInboxSession.Impression> impressionsFromReadableArray(Readab
     // ---------------------------------------------------------------------------------------
     // region React Native JSON conversion methods
     // obtained from https://gist.github.com/viperwarp/2beb6bbefcc268dee7ad
-    
+
     static WritableMap convertJsonToMap(JSONObject jsonObject) throws JSONException {
         WritableMap map = new WritableNativeMap();
 

android/src/newarch/java/com/RNIterableAPIModule.java

@@ -7,6 +7,8 @@
 import com.facebook.react.bridge.ReactApplicationContext;
 import com.facebook.react.bridge.ReadableArray;
 import com.facebook.react.bridge.ReadableMap;
+import com.iterable.iterableapi.AuthFailure;
+import com.iterable.iterableapi.IterableLogger;
 
 public class RNIterableAPIModule extends NativeRNIterableAPISpec {
   private final ReactApplicationContext reactContext;
@@ -217,6 +219,11 @@ public void passAlongAuthToken(@Nullable String authToken) {
     moduleImpl.passAlongAuthToken(authToken);
   }
 
+  @Override
+  public void pauseAuthRetries(boolean pauseRetry) {
+    moduleImpl.pauseAuthRetries(pauseRetry);
+  }
+
   public void sendEvent(@NonNull String eventName, @Nullable Object eventData) {
     moduleImpl.sendEvent(eventName, eventData);
   }

android/src/oldarch/java/com/RNIterableAPIModule.java

@@ -223,6 +223,11 @@ public void passAlongAuthToken(@Nullable String authToken) {
       moduleImpl.passAlongAuthToken(authToken);
     }
 
+    @ReactMethod
+    public void pauseAuthRetries(boolean pauseRetry) {
+      moduleImpl.pauseAuthRetries(pauseRetry);
+    }
+
 
     public void sendEvent(@NonNull String eventName, @Nullable Object eventData) {
       moduleImpl.sendEvent(eventName, eventData);

example/.env.example

@@ -9,11 +9,19 @@
 #  4. Fill in the following fields:
 #     - Name: A descriptive name for the API key
 #     - Type: Mobile
-#     - JWT authentication: Leave **unchecked** (IMPORTANT)
+#     - JWT authentication: Whether or not you want to use JWT
 #  5. Click "Create API Key"
-#  6. Copy the generated API key
-#  7. Replace the placeholder text next to `ITBL_API_KEY=` with the copied API key
+#  6. Copy the generated API key and replace the placeholder text next to
+#     `ITBL_API_KEY=` with the copied API key
+#  7. If you chose to enable JWT authentication, copy the JWT secret and and
+#     replace the placeholder text next to `ITBL_JWT_SECRET=` with the copied
+#     JWT secret
 ITBL_API_KEY=replace_this_with_your_iterable_api_key
+# Your JWT Secret, created when making your API key (see above)
+ITBL_JWT_SECRET=replace_this_with_your_jwt_secret
+# Is your api token JWT Enabled?
+# Must be set to 'true' to enable JWT authentication
+ITBL_IS_JWT_ENABLED=true
 
 # Your Iterable user ID or email address
-ITBL_ID=replace_this_with_your_user_id_or_email
+ITBL_ID=replace_this_with_your_user_id_or_email

example/README.md

@@ -23,7 +23,8 @@ _example app directory_.  To do so, run the following:
 
 ```bash
 cd ios
-pod install
+bundle install
+bundle exec pod install
 ```
 
 Once this is done, `cd` back into the _example app directory_:
@@ -40,12 +41,18 @@ In it, you will find:
 
 ```shell
 ITBL_API_KEY=replace_this_with_your_iterable_api_key
+ITBL_JWT_SECRET=replace_this_with_your_jwt_secret
+ITBL_IS_JWT_ENABLED=true
 ITBL_ID=replace_this_with_your_user_id_or_email
 ```
 
-Replace `replace_this_with_your_iterable_api_key` with your _mobile_ Iterable API key,
-and replace `replace_this_with_your_user_id_or_email` with the email or user id
-that you use to log into Iterable.
+- Replace `replace_this_with_your_iterable_api_key` with your **_mobile_
+Iterable API key**
+- Replace `replace_this_with_your_jwt_secret` with your **JWT Secret** (if you
+have a JWT-enabled API key)
+- Set `ITBL_IS_JWT_ENABLED` to true if you have a JWT-enabled key, and false if you do not.
+- Replace `replace_this_with_your_user_id_or_email` with the **email or user
+id** that you use to log into Iterable.
 
 Follow the steps below if you do not have a mobile Iterable API key.
 
@@ -54,12 +61,12 @@ To add an API key, do the following:
  1. Sign into your Iterable account
  2. Go to [Integrations > API Keys](https://app.iterable.com/settings/apiKeys)
  3. Click "New API Key" in the top right corner
- 4. Fill in the followsing fields:
+ 4. Fill in the following fields:
     - Name: A descriptive name for the API key
     - Type: Mobile
-    - JWT authentication: Leave **unchecked** (IMPORTANT)
+    - JWT authentication: Check to enable JWT authentication. If enabled, will need to create a [JWT generator](https://support.iterable.com/hc/en-us/articles/360050801231-JWT-Enabled-API-Keys#sample-python-code-for-jwt-generation) to generate the JWT token.
  5. Click "Create API Key"
- 6. Copy the generated API key
+ 6. Copy the generated API key and JWT secret into your _.env_ file
 
 
 ## Step 3: Start the Metro Server

example/android/app/src/main/java/iterable/reactnativesdk/example/IterableJwtGenerator.java

@@ -0,0 +1,106 @@
+package com.iterable;
+
+import javax.crypto.Mac;
+import javax.crypto.spec.SecretKeySpec;
+import java.nio.charset.StandardCharsets;
+import java.time.Duration;
+import java.util.Base64;
+import java.util.Base64.Encoder;
+
+/**
+* Utility class to generate JWTs for use with the Iterable API
+*
+* @author engineering@iterable.com
+*/
+public class IterableJwtGenerator {
+   static Encoder encoder = Base64.getUrlEncoder().withoutPadding();
+
+   private static final String algorithm = "HmacSHA256";
+
+   // Iterable enforces a 1-year maximum token lifetime
+   private static final Duration maxTokenLifetime = Duration.ofDays(365);
+
+   private static long millisToSeconds(long millis) {
+       return millis / 1000;
+   }
+
+   private static final String encodedHeader = encoder.encodeToString(
+       "{\"alg\":\"HS256\",\"typ\":\"JWT\"}".getBytes(StandardCharsets.UTF_8)
+   );
+
+   /**
+    * Generates a JWT from the provided secret, header, and payload. Does not
+    * validate the header or payload.
+    *
+    * @param secret  Your organization's shared secret with Iterable
+    * @param payload The JSON payload
+    *
+    * @return a signed JWT
+    */
+   public static String generateToken(String secret, String payload) {
+       try {
+           String encodedPayload = encoder.encodeToString(
+               payload.getBytes(StandardCharsets.UTF_8)
+           );
+           String encodedHeaderAndPayload = encodedHeader + "." + encodedPayload;
+
+           // HMAC setup
+           Mac hmac = Mac.getInstance(algorithm);
+           SecretKeySpec keySpec = new SecretKeySpec(
+               secret.getBytes(StandardCharsets.UTF_8), algorithm
+           );
+           hmac.init(keySpec);
+
+           String signature = encoder.encodeToString(
+               hmac.doFinal(
+                   encodedHeaderAndPayload.getBytes(StandardCharsets.UTF_8)
+               )
+           );
+
+           return encodedHeaderAndPayload + "." + signature;
+
+       } catch (Exception e) {
+           throw new RuntimeException(e.getMessage());
+       }
+   }
+
+   /**
+    * Generates a JWT (issued now, expires after the provided duration).
+    *
+    * @param secret   Your organization's shared secret with Iterable.
+    * @param duration The token's expiration time. Up to one year.
+    * @param email    The email to included in the token, or null.
+    * @param userId   The userId to include in the token, or null.
+    *
+    * @return A JWT string
+    */
+   public static String generateToken(
+       String secret, Duration duration, String email, String userId) {
+
+       if (duration.compareTo(maxTokenLifetime) > 0)
+           throw new IllegalArgumentException(
+               "Duration must be one year or less."
+           );
+
+       if ((userId != null && email != null) || (userId == null && email == null))
+           throw new IllegalArgumentException(
+               "The token must include a userId or email, but not both."
+           );
+
+       long now = millisToSeconds(System.currentTimeMillis());
+
+       String payload;
+       if (userId != null)
+           payload = String.format(
+               "{ \"userId\": \"%s\", \"iat\": %d, \"exp\": %d }",
+               userId, now, now + millisToSeconds(duration.toMillis())
+           );
+       else
+           payload = String.format(
+               "{ \"email\": \"%s\", \"iat\": %d, \"exp\": %d }",
+               email, now, now + millisToSeconds(duration.toMillis())
+           );
+
+       return generateToken(secret, payload);
+   }
+}