Support MFA TOTP in web SDK #7146

prameshj · 2023-03-22T06:11:05Z

This PR adds support for TOTP as a second-factor.

It adds "totp-generator" as a devDependency for integration tests. As a result, yarn.lock changes have been committed as well. These changes were made by yarn.

All individual PRs have been reviewed. Docs changes are the only diff that need review - 0972c84

Testing

Added new integration + unit tests for the new feature. Integration tests use the real backend.

API Changes

API changes were approved in https://docs.google.com/document/d/1PHJ4ActXyG1PhQI8I0IJPF3ZZqon5mFCSOB782JwE6A/edit#

Co-authored-by: Parijat Bhatt <parijatbhatt@google.com>

* Implement TOTP MFA enrollment. This includes changes to mfa_info, addition of TotpMultiFactorImpl and unit tests. * move all TOTP implementation into core/mfa/assertions. We do not need to restrict this to platform_browser. SMS mfa is in platform_browser since it requires a recaptcha step. * Include a reference to Auth in TotpSecret This is cleaner than looking up the app and auth instance with getApp and getAuth. * addressed review comments, added totp subdirectory.

The same pattern is followed in rest of the auth codebase. (ex- src/platform_browser/mfa/assertions/)

* updated readme

* Export TOTP symbols to be picked up by demo app. * Update the demo app to support TOTP enrollment, use local firebase auth version. The QR code image is generated using the qrserver api at https://goqr.me/api/doc/

* Export TOTP symbols to be picked up by demo app. * adding sign-in flow for totp * using only verification code for sign-in * added startSignInTotp method * modified verification code usage in object signin * added mfa enrollment id to finalize signin method: * adding singin for totp in demoapp * made enrollmentId to not be optional * reverting changes in authapi.md * removed unnecessary check and fixed spelling * added back otp check * made _finalizeEnroll && and _finalizeSignin to be async Co-authored-by: Pavithra Ramesh <pavithrar@google.com>

* adding test cases for signing in * fixed test cases to handle async signin

* totp integration test * test cases working with verified email * removing debug logs * changed test email and fixed handling of user delete for totp * reverting unwanted changes in helper.ts * modified comments

* removed delay function and used timestamp for totp generator * updated yarn.lock to show totp-generator * added check for signin after unenroll * adding skippig of totp tests if emulator is being used * using this.skip to skip tests

* Fix type error in totp unit test. * add ts-ignore for totp-generator.

Also changed the demo app to display this field as a countdown.

…e. (#6984)

TOTP only needs a finalize step.

changeset-bot · 2023-03-22T06:11:09Z

🦋 Changeset detected

Latest commit: 7c2af18

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages

Name	Type
@firebase/auth	Patch
@firebase/auth-compat	Patch
firebase	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

google-oss-bot · 2023-03-22T06:33:00Z

Size Report ¹

Affected Products

@firebase/analytics
Type Base (0e1f12c) Merge (2e8e12a) Diff
browser 20.1 kB 20.9 kB +782 B (+3.9%)
esm5 24.8 kB 25.6 kB +778 B (+3.1%)
main 26.1 kB 26.9 kB +778 B (+3.0%)
module 20.1 kB 20.9 kB +782 B (+3.9%)

`@firebase/auth`

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
browser	157 kB	160 kB	+3.86 kB (+2.5%)
cordova	184 kB	184 kB	+462 B (+0.3%)
esm5	205 kB	210 kB	+5.01 kB (+2.4%)
main	148 kB	154 kB	+5.56 kB (+3.7%)
module	157 kB	160 kB	+3.86 kB (+2.5%)
react-native	168 kB	170 kB	+1.16 kB (+0.7%)

@firebase/auth/cordova
Type Base (0e1f12c) Merge (2e8e12a) Diff
browser 184 kB 184 kB +462 B (+0.3%)
module 184 kB 184 kB +462 B (+0.3%)
@firebase/auth/internal
Type Base (0e1f12c) Merge (2e8e12a) Diff
browser 167 kB 171 kB +3.86 kB (+2.3%)
esm5 218 kB 223 kB +5.01 kB (+2.3%)
main 184 kB 190 kB +5.53 kB (+3.0%)
module 167 kB 171 kB +3.86 kB (+2.3%)
@firebase/auth/react-native
Type Base (0e1f12c) Merge (2e8e12a) Diff
browser 168 kB 170 kB +1.16 kB (+0.7%)
module 168 kB 170 kB +1.16 kB (+0.7%)
bundle
Type Base (0e1f12c) Merge (2e8e12a) Diff
analytics (logEvent) 43.1 kB 43.5 kB +433 B (+1.0%)

`firebase`

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
firebase-analytics-compat.js	25.8 kB	26.2 kB	+419 B (+1.6%)
firebase-analytics.js	24.9 kB	25.3 kB	+400 B (+1.6%)
firebase-auth-compat.js	126 kB	126 kB	+144 B (+0.1%)
firebase-auth-cordova.js	138 kB	138 kB	+193 B (+0.1%)
firebase-auth-react-native.js	150 kB	150 kB	+544 B (+0.4%)
firebase-auth.js	117 kB	120 kB	+2.34 kB (+2.0%)
firebase-compat.js	750 kB	751 kB	+563 B (+0.1%)

Test Logs

https://storage.googleapis.com/firebase-sdk-metric-reports/AsDsWbeAkG.html

google-oss-bot · 2023-03-22T06:44:48Z

Size Analysis Report ¹

Affected Products

`@firebase/analytics`

`getAnalytics`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.99 kB	10.4 kB	+432 B (+4.3%)
size-with-ext-deps	43.0 kB	43.4 kB	+433 B (+1.0%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getAnalytics
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
initializeAnalytics
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getAnalytics
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
initializeAnalytics
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`initializeAnalytics`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.88 kB	10.3 kB	+432 B (+4.4%)
size-with-ext-deps	36.1 kB	36.6 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

22 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
initializeAnalytics
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

24 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
initializeAnalytics
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`isSupported`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.77 kB	10.2 kB	+430 B (+4.4%)
size-with-ext-deps	35.7 kB	36.1 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

22 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
isSupported
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

24 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
isSupported
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`logEvent`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.63 kB	10.1 kB	+430 B (+4.5%)
size-with-ext-deps	35.6 kB	36.0 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

21 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

23 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`setAnalyticsCollectionEnabled`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.80 kB	10.2 kB	+431 B (+4.4%)
size-with-ext-deps	35.7 kB	36.2 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setAnalyticsCollectionEnabled
setAnalyticsCollectionEnabled$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setAnalyticsCollectionEnabled
setAnalyticsCollectionEnabled$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`setConsent`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.76 kB	10.2 kB	+434 B (+4.4%)
size-with-ext-deps	35.7 kB	36.1 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
_setConsentDefaultForInit
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setConsent
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
_setConsentDefaultForInit
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setConsent
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`setCurrentScreen`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.88 kB	10.3 kB	+431 B (+4.4%)
size-with-ext-deps	35.8 kB	36.3 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setCurrentScreen
setCurrentScreen$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setCurrentScreen
setCurrentScreen$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`setDefaultEventParameters`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.75 kB	10.2 kB	+434 B (+4.5%)
size-with-ext-deps	35.7 kB	36.1 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
_setDefaultEventParametersForInit
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setDefaultEventParameters
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
_setDefaultEventParametersForInit
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setDefaultEventParameters
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`setUserId`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.86 kB	10.3 kB	+431 B (+4.4%)
size-with-ext-deps	35.8 kB	36.2 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setUserId
setUserId$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setUserId
setUserId$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`setUserProperties`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.94 kB	10.4 kB	+431 B (+4.3%)
size-with-ext-deps	35.9 kB	36.3 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

23 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setUserProperties
setUserProperties$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

25 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
setUserProperties
setUserProperties$1
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`settings`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	9.76 kB	10.2 kB	+430 B (+4.4%)
size-with-ext-deps	35.7 kB	36.1 kB	+433 B (+1.2%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

functions

22 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
settings
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

24 dependencies

_initializeAnalytics
attemptFetchDynamicConfigWithRetry
createGtagTrustedTypesScriptURL
createTrustedTypesPolicy
factory
fetchDynamicConfig
fetchDynamicConfigWithRetry
findGtagScriptOnPage
getHeaders
getOrCreateDataLayer
gtagOnConfig
gtagOnEvent
insertScriptTag
isRetriableError
logEvent
logEvent$1
promiseAllSettled
registerAnalytics
setAbortableTimeout
settings
validateIndexedDB
warnOnBrowserContextMismatch
wrapGtag
wrapOrCreateGtag

+ createGtagTrustedTypesScriptURL
+ createTrustedTypesPolicy

`@firebase/auth`

FactorId
Size
Type Base (0e1f12c) Merge (2e8e12a) Diff
size 31.5 kB 31.5 kB +12 B (+0.0%)
size-with-ext-deps 52.2 kB 52.2 kB +12 B (+0.0%)

`TotpMultiFactorGenerator`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	?	34.0 kB	? (?)
size-with-ext-deps	?	54.8 kB	? (?)

Dependency

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
functions	?	53 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isEmptyString _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _logError _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData finalizeEnrollTotpMfa finalizeSignInTotpMfa getAccountInfo getIdTokenResult getVersionForPlatform isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds startEnrollTotpMfa utcTimestampToDateString	?
classes	?	17 dependencies AuthImpl AuthInterop AuthMiddlewareQueue Delay FetchProvider InMemoryPersistence MultiFactorAssertionImpl NetworkTimeout PersistenceUserManager ProactiveRefresh StsTokenManager Subscription TotpMultiFactorAssertionImpl TotpMultiFactorGenerator TotpSecret UserImpl UserMetadata	?
variables	?	DEFAULT_API_TIMEOUT_MS DEFAULT_ID_TOKEN_MAX_AGE SERVER_ERROR_MAP _DEFAULT_AUTH_ERROR_FACTORY inMemoryPersistence instanceCache logClient name prodErrorMap version	?
enums	?		?

External Dependency

Module	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
`@firebase/app`	?	SDK_VERSION _registerComponent registerVersion	?
`@firebase/component`	?	Component	?
`@firebase/logger`	?	LogLevel Logger	?
`@firebase/util`	?	11 dependencies ErrorFactory FirebaseError base64Decode createSubscribe getExperimentalSetting getModularInstance getUA isBrowserExtension isMobileCordova isReactNative querystring	?
`tslib`	?	__rest	?

`TotpSecret`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	?	32.4 kB	? (?)
size-with-ext-deps	?	53.1 kB	? (?)

Dependency

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
functions	?	49 dependencies _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isEmptyString _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _logError _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getVersionForPlatform isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds utcTimestampToDateString	?
classes	?	14 dependencies AuthImpl AuthInterop AuthMiddlewareQueue Delay FetchProvider InMemoryPersistence NetworkTimeout PersistenceUserManager ProactiveRefresh StsTokenManager Subscription TotpSecret UserImpl UserMetadata	?
variables	?	DEFAULT_API_TIMEOUT_MS DEFAULT_ID_TOKEN_MAX_AGE SERVER_ERROR_MAP _DEFAULT_AUTH_ERROR_FACTORY inMemoryPersistence instanceCache logClient name prodErrorMap version	?
enums	?		?

External Dependency

Module	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
`@firebase/app`	?	SDK_VERSION _registerComponent registerVersion	?
`@firebase/component`	?	Component	?
`@firebase/logger`	?	LogLevel Logger	?
`@firebase/util`	?	11 dependencies ErrorFactory FirebaseError base64Decode createSubscribe getExperimentalSetting getModularInstance getUA isBrowserExtension isMobileCordova isReactNative querystring	?
`tslib`	?	__rest	?

`checkActionCode`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	32.7 kB	32.8 kB	+160 B (+0.5%)
size-with-ext-deps	53.4 kB	53.5 kB	+160 B (+0.3%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

classes

15 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
UserImpl
UserMetadata

16 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
TotpMultiFactorInfoImpl
UserImpl
UserMetadata

+ TotpMultiFactorInfoImpl

`getMultiFactorResolver`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	34.2 kB	34.4 kB	+160 B (+0.5%)
size-with-ext-deps	54.9 kB	55.1 kB	+160 B (+0.3%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

classes

18 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
MultiFactorResolverImpl
MultiFactorSessionImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
UserCredentialImpl
UserImpl
UserMetadata

19 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
MultiFactorResolverImpl
MultiFactorSessionImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
TotpMultiFactorInfoImpl
UserCredentialImpl
UserImpl
UserMetadata

+ TotpMultiFactorInfoImpl

`multiFactor`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	33.6 kB	33.8 kB	+160 B (+0.5%)
size-with-ext-deps	54.4 kB	54.5 kB	+160 B (+0.3%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

classes

17 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
MultiFactorSessionImpl
MultiFactorUserImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
UserImpl
UserMetadata

18 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
MultiFactorSessionImpl
MultiFactorUserImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
TotpMultiFactorInfoImpl
UserImpl
UserMetadata

+ TotpMultiFactorInfoImpl

`verifyPasswordResetCode`

Size

Type	Base (`0e1f12c`)	Merge (`2e8e12a`)	Diff
size	32.7 kB	32.9 kB	+160 B (+0.5%)
size-with-ext-deps	53.4 kB	53.6 kB	+160 B (+0.3%)

Dependency

Type Base (0e1f12c) Merge (2e8e12a) Diff

classes

15 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
UserImpl
UserMetadata

16 dependencies

AuthImpl
AuthInterop
AuthMiddlewareQueue
Delay
FetchProvider
InMemoryPersistence
MultiFactorInfoImpl
NetworkTimeout
PersistenceUserManager
PhoneMultiFactorInfoImpl
ProactiveRefresh
StsTokenManager
Subscription
TotpMultiFactorInfoImpl
UserImpl
UserMetadata

+ TotpMultiFactorInfoImpl

Test Logs

https://storage.googleapis.com/firebase-sdk-metric-reports/WFhJcWinaL.html

prameshj · 2023-03-27T18:25:43Z

@egilmorez @kevinthecheung Can you help review the docs changes? 52efc46 Thanks!

packages/auth/src/mfa/assertions/totp.ts

packages/auth/src/model/public_types.ts

Co-authored-by: Kevin Cheung <kevinthecheung@users.noreply.github.com>

dwyfrequency

LGTM

egilmorez

Approving based on Kevin's review to flip code owner bit. Thanks!

bhparijat and others added 16 commits March 20, 2023 16:37

adding support TOTP MFA (#6547)

ebbf397

Co-authored-by: Parijat Bhatt <parijatbhatt@google.com>

restore totp*.ts into mfa/assertions directory. (#6602)

e11ed0b

The same pattern is followed in rest of the auth codebase. (ex- src/platform_browser/mfa/assertions/)

Demo-app readme fix (#6630)

524f1d1

* updated readme

Mfa totp demoapp (#6629)

b6c736f

* Export TOTP symbols to be picked up by demo app. * Update the demo app to support TOTP enrollment, use local firebase auth version. The QR code image is generated using the qrserver api at https://goqr.me/api/doc/

Unit test cases for sign-in flow (#6640)

59e6da3

* adding test cases for signing in * fixed test cases to handle async signin

integration tests for totp (#6784)

7310822

* totp integration test * test cases working with verified email * removing debug logs * changed test email and fixed handling of user delete for totp * reverting unwanted changes in helper.ts * modified comments

Totp integration test fix (#6814)

07eacac

* removed delay function and used timestamp for totp generator * updated yarn.lock to show totp-generator * added check for signin after unenroll * adding skippig of totp tests if emulator is being used * using this.skip to skip tests

fixing conflict in package.json (#6855)

36fc7c7

Fix mfa totp unit test (#6858)

3c64cc7

* Fix type error in totp unit test. * add ts-ignore for totp-generator.

Added ui for setting tenant-id (#6850)

1fcf4e1

Expose enrollmentCompletionDeadline field in TotpSecret. (#6870)

5ff2929

Also changed the demo app to display this field as a countdown.

clear TOTP QR code display in the demo app once enrollment is complet…

b00a7ae

…e. (#6984)

Add a command to run totp integration tests. (#6998)

119cb1c

remove startMfaSignIn step for TOTP. (#7047)

522392a

TOTP only needs a finalize step.

prameshj force-pushed the mfa-totp-2 branch from 1bf6524 to a1eec10 Compare March 22, 2023 19:30

Add back totp-generator dep (removed during merge conflict)

2ab3198

prameshj force-pushed the mfa-totp-2 branch from a1eec10 to 52efc46 Compare March 22, 2023 19:46

prameshj changed the title ~~Support MFA TOTP enrollment + sign in in web SDK~~ Support MFA TOTP in web SDK Mar 27, 2023

prameshj marked this pull request as ready for review March 27, 2023 18:26

prameshj requested review from egilmorez, markarndt, lisajian, renkelvin and sam-gc as code owners March 27, 2023 18:26

prameshj requested review from dwyfrequency and hsubox76 as code owners March 27, 2023 18:26

prameshj force-pushed the mfa-totp-2 branch from 52efc46 to 7d8a524 Compare March 28, 2023 06:19

prameshj added 2 commits March 27, 2023 23:42

Fix doc comments in TOTP files

df20c0a

Generate docs for TOTP

0972c84

prameshj force-pushed the mfa-totp-2 branch from 7d8a524 to 0972c84 Compare March 28, 2023 06:49

Add changeset

b13870c

egilmorez requested a review from kevinthecheung March 28, 2023 16:51

sam-gc approved these changes Mar 28, 2023

View reviewed changes

kevinthecheung approved these changes Mar 28, 2023

View reviewed changes

prameshj and others added 5 commits March 28, 2023 13:38

Update packages/auth/src/mfa/assertions/totp.ts

8c158e8

Co-authored-by: Kevin Cheung <kevinthecheung@users.noreply.github.com>

Update packages/auth/src/model/public_types.ts

5e73e41

Co-authored-by: Kevin Cheung <kevinthecheung@users.noreply.github.com>

Update packages/auth/src/mfa/assertions/totp.ts

be27f0b

Co-authored-by: Kevin Cheung <kevinthecheung@users.noreply.github.com>

Update packages/auth/src/mfa/assertions/totp.ts

81c3177

Co-authored-by: Kevin Cheung <kevinthecheung@users.noreply.github.com>

Apply suggestions from code review

a507d93

Co-authored-by: Kevin Cheung <kevinthecheung@users.noreply.github.com>

kevinthecheung approved these changes Mar 28, 2023

View reviewed changes

re-generate docs

7c2af18

dwyfrequency approved these changes Mar 28, 2023

View reviewed changes

kevinthecheung approved these changes Mar 28, 2023

View reviewed changes

prameshj requested a review from kevinthecheung March 28, 2023 23:28

kevinthecheung approved these changes Mar 28, 2023

View reviewed changes

hsubox76 merged commit 58bae87 into master Mar 28, 2023

hsubox76 deleted the mfa-totp-2 branch March 28, 2023 23:33

egilmorez reviewed Mar 28, 2023

View reviewed changes

google-oss-bot mentioned this pull request Mar 29, 2023

Version Packages #7166

Merged

dwyfrequency pushed a commit that referenced this pull request Apr 13, 2023

Support MFA TOTP in web SDK (#7146)

c2d3242

firebase locked and limited conversation to collaborators Apr 28, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Support MFA TOTP in web SDK #7146

Support MFA TOTP in web SDK #7146

prameshj commented Mar 22, 2023 •

edited

Loading

changeset-bot bot commented Mar 22, 2023 •

edited

Loading

google-oss-bot commented Mar 22, 2023 •

edited

Loading

`@firebase/analytics`

`@firebase/auth`

`@firebase/auth/cordova`

`@firebase/auth/internal`

`@firebase/auth/react-native`

`bundle`

`firebase`

google-oss-bot commented Mar 22, 2023 •

edited

Loading

`@firebase/analytics`

`getAnalytics`

`initializeAnalytics`

`isSupported`

`logEvent`

`setAnalyticsCollectionEnabled`

`setConsent`

`setCurrentScreen`

`setDefaultEventParameters`

`setUserId`

`setUserProperties`

`settings`

`@firebase/auth`

`FactorId`

`TotpMultiFactorGenerator`

`TotpSecret`

`checkActionCode`

`getMultiFactorResolver`

`multiFactor`

`verifyPasswordResetCode`

prameshj commented Mar 27, 2023

dwyfrequency left a comment

egilmorez left a comment

Support MFA TOTP in web SDK #7146

Support MFA TOTP in web SDK #7146

Conversation

prameshj commented Mar 22, 2023 • edited Loading

Testing

API Changes

changeset-bot bot commented Mar 22, 2023 • edited Loading

🦋 Changeset detected

google-oss-bot commented Mar 22, 2023 • edited Loading

Size Report 1

Affected Products

@firebase/analytics

@firebase/auth

@firebase/auth/cordova

@firebase/auth/internal

@firebase/auth/react-native

bundle

firebase

Test Logs

google-oss-bot commented Mar 22, 2023 • edited Loading

Size Analysis Report 1

Affected Products

@firebase/analytics

getAnalytics

initializeAnalytics

isSupported

logEvent

setAnalyticsCollectionEnabled

setConsent

setCurrentScreen

setDefaultEventParameters

setUserId

setUserProperties

settings

@firebase/auth

FactorId

TotpMultiFactorGenerator

TotpSecret

checkActionCode

getMultiFactorResolver

multiFactor

verifyPasswordResetCode

Test Logs

prameshj commented Mar 27, 2023

dwyfrequency left a comment

Choose a reason for hiding this comment

egilmorez left a comment

Choose a reason for hiding this comment

prameshj commented Mar 22, 2023 •

edited

Loading

changeset-bot bot commented Mar 22, 2023 •

edited

Loading

google-oss-bot commented Mar 22, 2023 •

edited

Loading

Size Report ¹

`@firebase/analytics`

`@firebase/auth`

`@firebase/auth/cordova`

`@firebase/auth/internal`

`@firebase/auth/react-native`

`bundle`

`firebase`

google-oss-bot commented Mar 22, 2023 •

edited

Loading

Size Analysis Report ¹

`@firebase/analytics`

`getAnalytics`

`initializeAnalytics`

`isSupported`

`logEvent`

`setAnalyticsCollectionEnabled`

`setConsent`

`setCurrentScreen`

`setDefaultEventParameters`

`setUserId`

`setUserProperties`

`settings`

`@firebase/auth`

`FactorId`

`TotpMultiFactorGenerator`

`TotpSecret`

`checkActionCode`

`getMultiFactorResolver`

`multiFactor`

`verifyPasswordResetCode`