Skip to content

feat: Provider Models (AuthProvider + concrete types) #2223

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Sep 24, 2025
Merged

feat: Provider Models (AuthProvider + concrete types) #2223

merged 3 commits into from
Sep 24, 2025

Conversation

demolaf
Copy link

@demolaf demolaf commented Sep 23, 2025
edited
Loading

  • Precondition validations for auth provider configurations including Google email scope warnings, Facebook dependency checks, and phone number format validation
  • Provider-specific validation rules for email link settings, anonymous provider restrictions, and duplicate provider detection
  • Tests for all auth provider validation scenarios and configuration edge cases

@demolaf demolaf marked this pull request as draft September 23, 2025 15:37
demolaf
demolaf commented Sep 24, 2025
View reviewed changes
auth/src/main/java/com/firebase/ui/auth/compose/configuration/AuthProvider.kt
* which is required for security when upgrading anonymous users. Defaults to true.
*/

val isEmailLinkForceSameDeviceEnabled: Boolean = true,
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this was a requirement and a config validation in the old auth library for EmailAuthProvider. When anonymous upgrade is enabled and email link is enabled, you must force same device for security purposes. here

demolaf
demolaf commented Sep 24, 2025
View reviewed changes
auth/src/main/java/com/firebase/ui/auth/compose/configuration/AuthProvider.kt Outdated
)
) {
fun validate(context: Context) {
// TODO(demolaf): do we need this? since we are requesting this in AuthProvider.Google?
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do we need to validate missing server client id?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Was the validation done on the current version of the library?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes but if you look reference in current version, when serverClientId is missing throws if not found during actual use.

@demolaf demolaf marked this pull request as ready for review September 24, 2025 07:50
@demolaf
fix: auth provider validation and tests
676a4c5 
- validate serverClientId empty string
- validate applicationId empty string
- remove @test(expected=) not descriptive
- tests covering AuthProviders Google and Facebook config validation
@Lyokone Lyokone merged commit f1dfd0c into firebase:version-10.0.0-dev Sep 24, 2025
2 checks passed
@demolaf demolaf mentioned this pull request Oct 2, 2025
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Lyokone Lyokone Lyokone approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@demolaf @Lyokone