refactor: move facebook sign-in to provider

russellwheatley · russellwheatley · commit 4ed2a742a2a6 · 2025-04-10T12:31:45.000+01:00
diff --git a/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AuthService.swift b/FirebaseSwiftUI/FirebaseAuthSwiftUI/Sources/Services/AuthService.swift
@@ -6,7 +6,9 @@ public protocol GoogleProviderProtocol {
   @MainActor func signInWithGoogle(clientID: String) async throws -> AuthCredential
 }
 
-public protocol FacebookProviderProtocol {}
+public protocol FacebookProviderProtocol {
+  @MainActor func signInWithFacebook(isLimitedLogin: Bool) async throws -> AuthCredential
+}
 
 public enum AuthenticationProvider {
   case email
@@ -66,14 +68,6 @@ final class AuthListenerManager {
 @MainActor
 @Observable
 public final class AuthService {
-  @ObservationIgnored @AppStorage("email-link") public var emailLink: String?
-  public let configuration: AuthConfiguration
-  public let auth: Auth
-  private var listenerManager: AuthListenerManager?
-  private let googleProvider: GoogleProviderProtocol?
-  private let facebookProvider: FacebookProviderProtocol?
-  public let string: StringUtils
-
   public init(configuration: AuthConfiguration = AuthConfiguration(), auth: Auth = Auth.auth(),
               googleProvider: GoogleProviderProtocol? = nil,
               facebookProvider: FacebookProviderProtocol? = nil) {
@@ -85,10 +79,19 @@ public final class AuthService {
     listenerManager = AuthListenerManager(auth: auth, authEnvironment: self)
   }
 
+  @ObservationIgnored @AppStorage("email-link") public var emailLink: String?
+  public let configuration: AuthConfiguration
+  public let auth: Auth
+
+  public let string: StringUtils
   public var currentUser: User?
   public var authenticationState: AuthenticationState = .unauthenticated
   public var authenticationFlow: AuthenticationFlow = .login
 
+  private var listenerManager: AuthListenerManager?
+  private let googleProvider: GoogleProviderProtocol?
+  private let facebookProvider: FacebookProviderProtocol?
+
   private var safeGoogleProvider: GoogleProviderProtocol {
     get throws {
       guard let provider = googleProvider else {
@@ -233,3 +236,20 @@ public extension AuthService {
     }
   }
 }
+
+// MARK: - Facebook Sign In
+
+public extension AuthService {
+  func signInWithFacebook(limitedLogin: Bool = true) async throws {
+    authenticationState = .authenticating
+    do {
+      let credential = try await safeFacebookProvider
+        .signInWithFacebook(isLimitedLogin: limitedLogin)
+      try await signIn(with: credential)
+      updateAuthenticationState()
+    } catch {
+      authenticationState = .unauthenticated
+      throw error
+    }
+  }
+}
diff --git a/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Services/FacebookProviderSwift.swift b/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Services/FacebookProviderSwift.swift
@@ -1,25 +1,115 @@
+import AppTrackingTransparency
 import FacebookCore
 import FacebookLogin
+import FirebaseAuth
 import FirebaseAuthSwiftUI
 
 let kFacebookEmailScope = "email"
 let kFacebookProfileScope = "public_profile"
 let kDefaultFacebookScopes = [kFacebookEmailScope, kFacebookProfileScope]
-// TODO: - need to think how to handle this
-let kFacebookProviderId = "facebook.com"
 
 public enum FacebookLoginType {
   case classic
   case limitedLogin
 }
 
+public enum FacebookProviderError: Error {
+  case signInCancelled(String)
+  case configurationInvalid(String)
+  case accessToken(String)
+  case authenticationToken(String)
+}
+
 public class FacebookProviderSwift: FacebookProviderProtocol {
   let scopes: [String]
   let shortName = "Facebook"
   let providerId = "facebook.com"
+  private let loginManager = LoginManager()
+  private var rawNonce: String
+  private var shaNonce: String
+
   public init(scopes: [String]? = nil) {
     self.scopes = scopes ?? kDefaultFacebookScopes
+    rawNonce = FacebookUtils.randomNonce()
+    shaNonce = FacebookUtils.sha256Hash(of: rawNonce)
   }
 
-  public func authenticateWithClassic() {}
+  @MainActor public func signInWithFacebook(isLimitedLogin: Bool) async throws -> AuthCredential {
+    let trackingStatus = ATTrackingManager.trackingAuthorizationStatus
+    let tracking: LoginTracking = trackingStatus != .authorized ? .limited :
+      (isLimitedLogin ? .limited : .enabled)
+
+    guard let configuration: LoginConfiguration = {
+      if tracking == .limited {
+        return LoginConfiguration(
+          permissions: scopes,
+          tracking: tracking,
+          nonce: shaNonce
+        )
+      } else {
+        return LoginConfiguration(
+          permissions: scopes,
+          tracking: tracking
+        )
+      }
+    }() else {
+      throw FacebookProviderError
+        .configurationInvalid("Failed to create Facebook login configuration")
+    }
+
+    let result = try await withCheckedThrowingContinuation { (continuation: CheckedContinuation<
+      Void,
+      Error
+    >) in
+      loginManager.logIn(
+        configuration: configuration
+      ) { result in
+        switch result {
+        case .cancelled:
+          continuation
+            .resume(throwing: FacebookProviderError.signInCancelled("User cancelled sign-in"))
+        //          showCanceledAlert = true
+        case let .failed(error):
+          continuation.resume(throwing: error)
+        //          errorMessage = authService.string.localizedErrorMessage(for: error)
+        case .success:
+          continuation.resume()
+        }
+      }
+    }
+    if isLimitedLogin {
+      return try limitedLogin()
+    } else {
+      return try classicLogin()
+    }
+  }
+
+  private func classicLogin() throws -> AuthCredential {
+    if let token = AccessToken.current,
+       !token.isExpired {
+      let credential = FacebookAuthProvider
+        .credential(withAccessToken: token.tokenString)
+
+      return credential
+    } else {
+      throw FacebookProviderError
+        .accessToken(
+          "Access token has expired or not available. Please sign-in with Facebook before attempting to create a Facebook provider credential"
+        )
+    }
+  }
+
+  private func limitedLogin() throws -> AuthCredential {
+    if let idToken = AuthenticationToken.current {
+      let credential = OAuthProvider.credential(withProviderID: providerId,
+                                                idToken: idToken.tokenString,
+                                                rawNonce: rawNonce)
+      return credential
+    } else {
+      throw FacebookProviderError
+        .authenticationToken(
+          "Authentication is not available. Please sign-in with Facebook before attempting to create a Facebook provider credential"
+        )
+    }
+  }
 }
diff --git a/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Views/FacebookButtonView.swift b/FirebaseSwiftUI/FirebaseFacebookSwiftUI/Sources/Views/FacebookButtonView.swift
@@ -5,119 +5,15 @@ import FirebaseAuth
 import FirebaseAuthSwiftUI
 import SwiftUI
 
-public enum FacebookError: Error {
-  case accessToken(String)
-  case authenticationToken(String)
-}
-
 @MainActor
 public struct FacebookButtonView {
   @Environment(AuthService.self) private var authService
   @State private var errorMessage = ""
-  @State private var limitedLogin: Bool = true
   @State private var showCanceledAlert = false
   @State private var showUserTrackingAlert = false
+  @State private var limitedLogin = true
 
-  private var rawNonce: String
-  private var shaNonce: String
-  private let loginManager = LoginManager()
-
-  public init() {
-    rawNonce = FacebookUtils.randomNonce()
-    shaNonce = FacebookUtils.sha256Hash(of: rawNonce)
-  }
-
-  private var trackingPreference: LoginTracking {
-    // if not authorized, Facebook will default to limited login and classic login will fail
-    let trackingStatus = ATTrackingManager.trackingAuthorizationStatus
-    if trackingStatus != .authorized {
-      return .limited
-    }
-
-    return limitedLogin ? .limited : .enabled
-  }
-
-  var configuration: LoginConfiguration? {
-    if trackingPreference == .limited {
-      return LoginConfiguration(
-        permissions: [.publicProfile, .email],
-        tracking: trackingPreference,
-        nonce: shaNonce
-      )
-    }
-    return LoginConfiguration(
-      permissions: [.publicProfile, .email],
-      tracking: trackingPreference
-    )
-  }
-
-  func invokeLoginMethod() {
-    let validConfiguration = configuration
-    if validConfiguration != nil {
-      loginManager.logIn(
-        configuration: validConfiguration
-      ) { result in
-        switch result {
-        case .cancelled:
-          showCanceledAlert = true
-        case let .failed(error):
-          errorMessage = authService.string.localizedErrorMessage(for: error)
-        case .success:
-          if trackingPreference == .limited {
-            Task {
-              await limitedLogin()
-            }
-          } else {
-            Task {
-              await classicLogin()
-            }
-          }
-        }
-      }
-    } else {
-      errorMessage = "Facebook configuration is invalid."
-    }
-  }
-
-  private func classicLogin() async {
-    do {
-      if let token = AccessToken.current,
-         !token.isExpired {
-        let credential = FacebookAuthProvider
-          .credential(withAccessToken: token.tokenString)
-        try await authService.signIn(with: credential)
-      } else {
-        throw FacebookError
-          .accessToken(
-            "Access token has expired or not available. Please sign-in with Facebook before attempting to create a Facebook provider credential"
-          )
-      }
-    } catch {
-      errorMessage = authService.string.localizedErrorMessage(
-        for: error
-      )
-    }
-  }
-
-  private func limitedLogin() async {
-    do {
-      if let idToken = AuthenticationToken.current {
-        let credential = OAuthProvider.credential(withProviderID: kFacebookProviderId,
-                                                  idToken: idToken.tokenString,
-                                                  rawNonce: rawNonce)
-        try await authService.signIn(with: credential)
-      } else {
-        throw FacebookError
-          .authenticationToken(
-            "Authentication is not available. Please sign-in with Facebook before attempting to create a Facebook provider credential"
-          )
-      }
-    } catch {
-      errorMessage = authService.string.localizedErrorMessage(
-        for: error
-      )
-    }
-  }
+  public init() {}
 
   private var limitedLoginBinding: Binding<Bool> {
     Binding(
@@ -150,7 +46,18 @@ public struct FacebookButtonView {
 extension FacebookButtonView: View {
   public var body: some View {
     Button(action: {
-      invokeLoginMethod()
+      Task {
+        do {
+          try await authService.signInWithFacebook(limitedLogin: limitedLogin)
+        } catch {
+          switch error {
+          case FacebookProviderError.signInCancelled:
+            showCanceledAlert = true
+          default:
+            errorMessage = authService.string.localizedErrorMessage(for: error)
+          }
+        }
+      }
     }) {
       HStack {
         Image(systemName: "f.circle.fill")
