/* * Copyright 2016 Google LLC * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #ifndef FIREBASE_AUTH_CLIENT_CPP_SRC_INCLUDE_FIREBASE_AUTH_USER_H_ #define FIREBASE_AUTH_CLIENT_CPP_SRC_INCLUDE_FIREBASE_AUTH_USER_H_ #include #include #include "firebase/future.h" #include "firebase/internal/common.h" #include "firebase/variant.h" #include "firebase/auth/credential.h" #include "firebase/auth/types.h" namespace firebase { namespace auth { // Predeclarations. class Auth; struct AuthData; /// @brief Interface implemented by each identity provider. class UserInfoInterface { public: virtual ~UserInfoInterface(); /// Gets the unique Firebase user ID for the user. /// /// @note The user's ID, unique to the Firebase project. /// Do NOT use this value to authenticate with your backend server, if you /// have one. /// @if cpp_examples /// Use User::GetToken() instead. /// @endif virtual std::string uid() const = 0; /// Gets email associated with the user, if any. virtual std::string email() const = 0; /// Gets the display name associated with the user, if any. virtual std::string display_name() const = 0; /// Gets the photo url associated with the user, if any. virtual std::string photo_url() const = 0; /// Gets the provider ID for the user (For example, "Facebook"). virtual std::string provider_id() const = 0; /// Gets the phone number for the user, in E.164 format. virtual std::string phone_number() const = 0; }; /// @brief Additional user data returned from an identity provider. struct AdditionalUserInfo { /// The provider identifier. std::string provider_id; /// The name of the user. std::string user_name; /// Additional identity-provider specific information. /// Most likely a hierarchical key-value mapping, like a parsed JSON file. /// Note we use map instead of unordered_map to support older compilers. std::map profile; }; /// @brief Metadata corresponding to a Firebase user. struct UserMetadata { UserMetadata() : last_sign_in_timestamp(0), creation_timestamp(0) {} /// The last sign in UTC timestamp in milliseconds. /// See https://en.wikipedia.org/wiki/Unix_time for details of UTC. uint64_t last_sign_in_timestamp; /// The Firebase user creation UTC timestamp in milliseconds. uint64_t creation_timestamp; }; /// @brief Result of operations that can affect authentication state. struct SignInResult { SignInResult() : user(NULL) {} /// The currently signed-in @ref User, or NULL if there isn't any (i.e. the /// user is signed out). User* user; /// Identity-provider specific information for the user, if the provider is /// one of Facebook, GitHub, Google, or Twitter. AdditionalUserInfo info; /// Metadata associated with the Firebase user. UserMetadata meta; }; /// @brief Firebase user account object. /// /// This class allows you to manipulate the profile of a user, link to and /// unlink from authentication providers, and refresh authentication tokens. class User : public UserInfoInterface { public: /// Parameters to the UpdateUserProfile() function. /// /// For fields you don't want to update, pass NULL. /// For fields you want to reset, pass "". struct UserProfile { /// Construct a UserProfile with no display name or photo URL. UserProfile() : display_name(NULL), photo_url(NULL) {} /// User display name. const char* display_name; /// User photo URI. const char* photo_url; }; ~User(); /// The Java Web Token (JWT) that can be used to identify the user to /// the backend. /// /// If a current ID token is still believed to be valid (i.e. it has not yet /// expired), that token will be returned immediately. /// A developer may set the optional force_refresh flag to get a new ID token, /// whether or not the existing token has expired. For example, a developer /// may use this when they have discovered that the token is invalid for some /// other reason. Future GetToken(bool force_refresh); /// Get results of the most recent call to @ref GetToken. Future GetTokenLastResult() const; /// Gets the third party profile data associated with this user returned by /// the authentication server, if any. const std::vector& provider_data() const; /// Sets the email address for the user. /// /// May fail if there is already an email/password-based account for the same /// email address. Future UpdateEmail(const char* email); /// Get results of the most recent call to @ref UpdateEmail. Future UpdateEmailLastResult() const; /// Attempts to change the password for the current user. /// /// For an account linked to an Identity Provider (IDP) with no password, /// this will result in the account becoming an email/password-based account /// while maintaining the IDP link. May fail if the password is invalid, /// if there is a conflicting email/password-based account, or if the token /// has expired. /// To retrieve fresh tokens, /// @if cpp_examples /// call @ref Reauthenticate. /// @endif Future UpdatePassword(const char* password); /// Get results of the most recent call to @ref UpdatePassword. Future UpdatePasswordLastResult() const; /// Convenience function for @ref ReauthenticateAndRetrieveData that discards /// the returned AdditionalUserInfo data. Future Reauthenticate(const Credential& credential); /// Get results of the most recent call to @ref Reauthenticate. Future ReauthenticateLastResult() const; /// Reauthenticate using a credential. /// /// @if cpp_examples /// Some APIs (for example, @ref UpdatePassword, @ref Delete) require that /// the token used to invoke them be from a recent login attempt. /// This API takes an existing credential for the user and retrieves fresh /// tokens, ensuring that the operation can proceed. Developers can call /// this method prior to calling @ref UpdatePassword() to ensure success. /// @endif /// /// Data from the Identity Provider used to sign-in is returned in the /// AdditionalUserInfo inside the returned SignInResult. /// /// Returns an error if the existing credential is not for this user /// or if sign-in with that credential failed. The user should remain /// signed in even if this method failed. If the developer had held /// a reference to that user, the reference will continue to be valid /// after this operation. Future ReauthenticateAndRetrieveData( const Credential& credential); /// Get results of the most recent call to @ref ReauthenticateAndRetrieveData. Future ReauthenticateAndRetrieveDataLastResult() const; /// Initiates email verification for the user. Future SendEmailVerification(); /// Get results of the most recent call to @ref SendEmailVerification. Future SendEmailVerificationLastResult() const; /// Updates a subset of user profile information. Future UpdateUserProfile(const UserProfile& profile); /// Get results of the most recent call to @ref UpdateUserProfile. Future UpdateUserProfileLastResult() const; /// Convenience function for @ref ReauthenticateAndRetrieveData that discards /// the returned @ref AdditionalUserInfo in @ref SignInResult. Future LinkWithCredential(const Credential& credential); /// Get results of the most recent call to @ref LinkWithCredential. Future LinkWithCredentialLastResult() const; /// Links the user with the given 3rd party credentials. /// /// For example, a Facebook login access token, a Twitter token/token-secret /// pair. /// Status will be an error if the token is invalid, expired, or otherwise /// not accepted by the server as well as if the given 3rd party /// user id is already linked with another user account or if the current user /// is already linked with another id from the same provider. /// /// Data from the Identity Provider used to sign-in is returned in the /// @ref AdditionalUserInfo inside @ref SignInResult. Future LinkAndRetrieveDataWithCredential( const Credential& credential); /// Get results of the most recent call to /// @ref LinkAndRetrieveDataWithCredential. Future LinkAndRetrieveDataWithCredentialLastResult() const; /// Unlinks the current user from the provider specified. /// Status will be an error if the user is not linked to the given provider. Future Unlink(const char* provider); /// Get results of the most recent call to @ref Unlink. Future UnlinkLastResult() const; /// Updates the currently linked phone number on the user. /// This is useful when a user wants to change their phone number. It is a /// shortcut to calling Unlink(phone_credential.provider().c_str()) and then /// LinkWithCredential(phone_credential). /// `credential` must have been created with @ref PhoneAuthProvider. Future UpdatePhoneNumberCredential(const Credential& credential); /// Get results of the most recent call to @ref UpdatePhoneNumberCredential. Future UpdatePhoneNumberCredentialLastResult() const; /// Refreshes the data for this user. /// /// For example, the attached providers, email address, display name, etc. Future Reload(); /// Get results of the most recent call to @ref Reload. Future ReloadLastResult() const; /// Deletes the user account. Future Delete(); /// Get results of the most recent call to @ref Delete. Future DeleteLastResult() const; /// Gets the metadata for this user account. UserMetadata metadata() const; /// Returns true if the email address associated with this user has been /// verified. bool is_email_verified() const; /// Returns true if user signed in anonymously. bool is_anonymous() const; /// Gets the unique Firebase user ID for the user. /// /// @note The user's ID, unique to the Firebase project. /// Do NOT use this value to authenticate with your backend server, if you /// have one. /// @if cpp_examples /// Use User::GetToken() instead. /// @endif virtual std::string uid() const; /// Gets email associated with the user, if any. virtual std::string email() const; /// Gets the display name associated with the user, if any. virtual std::string display_name() const; /// Gets the photo url associated with the user, if any. virtual std::string photo_url() const; /// Gets the provider ID for the user (For example, "Facebook"). virtual std::string provider_id() const; /// Gets the phone number for the user, in E.164 format. virtual std::string phone_number() const; private: /// @cond FIREBASE_APP_INTERNAL friend struct AuthData; // Only exists in AuthData. Access via @ref Auth::CurrentUser(). explicit User(AuthData* auth_data) : auth_data_(auth_data) {} // Disable copy constructor. User(const User&) = delete; // Disable copy operator. User& operator=(const User&) = delete; /// @endcond #if defined(INTERNAL_EXPERIMENTAL) // Doxygen should not make docs for this function. /// @cond FIREBASE_APP_INTERNAL friend class IdTokenRefreshThread; friend class IdTokenRefreshListener; friend class Auth; Future GetTokenInternal(const bool force_refresh, const int future_identifier); /// @endcond #endif // defined(INTERNAL_EXPERIMENTAL) // Use the pimpl mechanism to hide data details in the cpp files. AuthData* auth_data_; }; } // namespace auth } // namespace firebase #endif // FIREBASE_AUTH_CLIENT_CPP_SRC_INCLUDE_FIREBASE_AUTH_USER_H_