UNPKG

voluptasmollitia

Version:

Monorepo for the Firebase JavaScript SDK

github.com/ReneeRussel/voluptasmollitia

ReneeRussel/voluptasmollitia

64 lines (57 loc) 2.13 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
/** * @license * Copyright 2019 Google LLC * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ import { OperationType } from '../../model/public_types'; import { _processCredentialSavingMfaContextIfNecessary } from '../../mfa/mfa_error'; import { UserInternal } from '../../model/user'; import { AuthCredential } from '../credentials'; import { AuthErrorCode } from '../errors'; import { _assert, _fail } from '../util/assert'; import { _parseToken } from './id_token_result'; import { _logoutIfInvalidated } from './invalidation'; import { UserCredentialImpl } from './user_credential_impl'; export async function _reauthenticate( user: UserInternal, credential: AuthCredential, bypassAuthState = false ): Promise<UserCredentialImpl> { const { auth } = user; const operationType = OperationType.REAUTHENTICATE; try { const response = await _logoutIfInvalidated( user, _processCredentialSavingMfaContextIfNecessary( auth, operationType, credential, user ), bypassAuthState ); _assert(response.idToken, auth, AuthErrorCode.INTERNAL_ERROR); const parsed = _parseToken(response.idToken); _assert(parsed, auth, AuthErrorCode.INTERNAL_ERROR); const { sub: localId } = parsed; _assert(user.uid === localId, auth, AuthErrorCode.USER_MISMATCH); return UserCredentialImpl._forOperation(user, operationType, response); } catch (e) { // Convert user deleted error into user mismatch if (e?.code === `auth/${AuthErrorCode.USER_DELETED}`) { _fail(auth, AuthErrorCode.USER_MISMATCH); } throw e; } }