Add API to link/unlink provider info to/from user record.

nrsim · nrsim · commit ecd05253da6c · 2020-01-09T14:32:48.000-05:00
diff --git a/src/main/java/com/google/firebase/auth/UserRecord.java b/src/main/java/com/google/firebase/auth/UserRecord.java
@@ -190,9 +190,9 @@ public UserInfo[] getProviderData() {
   }
 
   /**
-   * Returns a timestamp in milliseconds since epoch, truncated down to the closest second. 
+   * Returns a timestamp in milliseconds since epoch, truncated down to the closest second.
    * Tokens minted before this timestamp are considered invalid.
-   * 
+   *
    * @return Timestamp in milliseconds since the epoch. Tokens minted before this timestamp are
    *     considered invalid.
    */
@@ -261,6 +261,10 @@ private static void checkPassword(String password) {
     checkArgument(password.length() >= 6, "password must be at least 6 characters long");
   }
 
+  private static void checkProviderId(String providerId) {
+    checkArgument(!Strings.isNullOrEmpty(providerId), "providerId cannot be null or empty");
+  }
+
   static void checkCustomClaims(Map<String,Object> customClaims) {
     if (customClaims == null) {
       return;
@@ -528,6 +532,17 @@ UpdateRequest setValidSince(long epochSeconds) {
       return this;
     }
 
+    UpdateRequest linkProvider(@NonNull UserProvider userProvider) {
+      properties.put("linkProviderUserInfo", userProvider);
+      return this;
+    }
+
+    UpdateRequest deleteProvider(String providerId) {
+      checkProviderId(providerId);
+      properties.put("deleteProvider", ImmutableList.of(providerId));
+      return this;
+    }
+
     Map<String, Object> getProperties(JsonFactory jsonFactory) {
       Map<String, Object> copy = new HashMap<>(properties);
       List<String> remove = new ArrayList<>();
diff --git a/src/test/java/com/google/firebase/auth/FirebaseAuthIT.java b/src/test/java/com/google/firebase/auth/FirebaseAuthIT.java
@@ -18,6 +18,7 @@
 
 import static org.junit.Assert.assertEquals;
 import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotEquals;
 import static org.junit.Assert.assertNotNull;
 import static org.junit.Assert.assertNull;
 import static org.junit.Assert.assertTrue;
@@ -234,72 +235,134 @@ public void testLookupUserByFederatedId() throws Exception {
   public void testUserLifecycle() throws Exception {
     // Create user
     UserRecord userRecord = auth.createUserAsync(new CreateRequest()).get();
-    String uid = userRecord.getUid();
-
-    // Get user
-    userRecord = auth.getUserAsync(userRecord.getUid()).get();
-    assertEquals(uid, userRecord.getUid());
-    assertNull(userRecord.getDisplayName());
-    assertNull(userRecord.getEmail());
-    assertNull(userRecord.getPhoneNumber());
-    assertNull(userRecord.getPhotoUrl());
-    assertFalse(userRecord.isEmailVerified());
-    assertFalse(userRecord.isDisabled());
-    assertTrue(userRecord.getUserMetadata().getCreationTimestamp() > 0);
-    assertEquals(0, userRecord.getUserMetadata().getLastSignInTimestamp());
-    assertEquals(0, userRecord.getProviderData().length);
-    assertTrue(userRecord.getCustomClaims().isEmpty());
-
-    // Update user
-    RandomUser randomUser = RandomUser.create();
-    UpdateRequest request = userRecord.updateRequest()
-        .setDisplayName("Updated Name")
-        .setEmail(randomUser.email)
-        .setPhoneNumber(randomUser.phone)
-        .setPhotoUrl("https://example.com/photo.png")
-        .setEmailVerified(true)
-        .setPassword("secret");
-    userRecord = auth.updateUserAsync(request).get();
-    assertEquals(uid, userRecord.getUid());
-    assertEquals("Updated Name", userRecord.getDisplayName());
-    assertEquals(randomUser.email, userRecord.getEmail());
-    assertEquals(randomUser.phone, userRecord.getPhoneNumber());
-    assertEquals("https://example.com/photo.png", userRecord.getPhotoUrl());
-    assertTrue(userRecord.isEmailVerified());
-    assertFalse(userRecord.isDisabled());
-    assertEquals(2, userRecord.getProviderData().length);
-    assertTrue(userRecord.getCustomClaims().isEmpty());
-
-    // Get user by email
-    userRecord = auth.getUserByEmailAsync(userRecord.getEmail()).get();
-    assertEquals(uid, userRecord.getUid());
-
-    // Disable user and remove properties
-    request = userRecord.updateRequest()
-        .setPhotoUrl(null)
-        .setDisplayName(null)
-        .setPhoneNumber(null)
-        .setDisabled(true);
-    userRecord = auth.updateUserAsync(request).get();
-    assertEquals(uid, userRecord.getUid());
-    assertNull(userRecord.getDisplayName());
-    assertEquals(randomUser.email, userRecord.getEmail());
-    assertNull(userRecord.getPhoneNumber());
-    assertNull(userRecord.getPhotoUrl());
-    assertTrue(userRecord.isEmailVerified());
-    assertTrue(userRecord.isDisabled());
-    assertEquals(1, userRecord.getProviderData().length);
-    assertTrue(userRecord.getCustomClaims().isEmpty());
-
-    // Delete user
-    auth.deleteUserAsync(userRecord.getUid()).get();
     try {
-      auth.getUserAsync(userRecord.getUid()).get();
-      fail("No error thrown for deleted user");
-    } catch (ExecutionException e) {
-      assertTrue(e.getCause() instanceof FirebaseAuthException);
-      assertEquals(FirebaseUserManager.USER_NOT_FOUND_ERROR,
-          ((FirebaseAuthException) e.getCause()).getErrorCode());
+      String uid = userRecord.getUid();
+
+      // Get user
+      userRecord = auth.getUserAsync(userRecord.getUid()).get();
+      assertEquals(uid, userRecord.getUid());
+      assertNull(userRecord.getDisplayName());
+      assertNull(userRecord.getEmail());
+      assertNull(userRecord.getPhoneNumber());
+      assertNull(userRecord.getPhotoUrl());
+      assertFalse(userRecord.isEmailVerified());
+      assertFalse(userRecord.isDisabled());
+      assertTrue(userRecord.getUserMetadata().getCreationTimestamp() > 0);
+      assertEquals(0, userRecord.getUserMetadata().getLastSignInTimestamp());
+      assertEquals(0, userRecord.getProviderData().length);
+      assertTrue(userRecord.getCustomClaims().isEmpty());
+
+      // Update user
+      RandomUser randomUser = RandomUser.create();
+      UpdateRequest request = userRecord.updateRequest()
+          .setDisplayName("Updated Name")
+          .setEmail(randomUser.email)
+          .setPhoneNumber(randomUser.phone)
+          .setPhotoUrl("https://example.com/photo.png")
+          .setEmailVerified(true)
+          .setPassword("secret");
+      userRecord = auth.updateUserAsync(request).get();
+      assertEquals(uid, userRecord.getUid());
+      assertEquals("Updated Name", userRecord.getDisplayName());
+      assertEquals(randomUser.email, userRecord.getEmail());
+      assertEquals(randomUser.phone, userRecord.getPhoneNumber());
+      assertEquals("https://example.com/photo.png", userRecord.getPhotoUrl());
+      assertTrue(userRecord.isEmailVerified());
+      assertFalse(userRecord.isDisabled());
+      assertEquals(2, userRecord.getProviderData().length);
+      assertTrue(userRecord.getCustomClaims().isEmpty());
+
+      // Link user to IDP providers
+      request = userRecord.updateRequest()
+          .linkProvider(
+              UserProvider
+                  .builder()
+                  .setUid("testuid")
+                  .setProviderId("google.com")
+                  .setEmail("test@example.com")
+                  .setDisplayName("Test User")
+                  .setPhotoUrl("https://test.com/user.png")
+                  .build());
+      userRecord = auth.updateUserAsync(request).get();
+      assertEquals(uid, userRecord.getUid());
+      assertEquals("Updated Name", userRecord.getDisplayName());
+      assertEquals(randomUser.email, userRecord.getEmail());
+      assertEquals(randomUser.phone, userRecord.getPhoneNumber());
+      assertEquals("https://example.com/photo.png", userRecord.getPhotoUrl());
+      assertTrue(userRecord.isEmailVerified());
+      assertFalse(userRecord.isDisabled());
+      assertEquals(3, userRecord.getProviderData().length);
+      List<String> providers = new ArrayList<>();
+      for (UserInfo provider : userRecord.getProviderData()) {
+        providers.add(provider.getProviderId());
+      }
+      assertTrue(providers.contains("google.com"));
+      assertTrue(userRecord.getCustomClaims().isEmpty());
+
+      // Unlink phone provider
+      request = userRecord.updateRequest().deleteProvider("phone");
+      userRecord = auth.updateUserAsync(request).get();
+      assertNull(userRecord.getPhoneNumber());
+      assertEquals(2, userRecord.getProviderData().length);
+      providers.clear();
+      for (UserInfo provider : userRecord.getProviderData()) {
+        providers.add(provider.getProviderId());
+      }
+      assertFalse(providers.contains("phone"));
+      assertEquals(uid, userRecord.getUid());
+      assertEquals("Updated Name", userRecord.getDisplayName());
+      assertEquals(randomUser.email, userRecord.getEmail());
+      assertEquals("https://example.com/photo.png", userRecord.getPhotoUrl());
+      assertTrue(userRecord.isEmailVerified());
+      assertFalse(userRecord.isDisabled());
+      assertTrue(userRecord.getCustomClaims().isEmpty());
+
+      // Unlink IDP provider
+      request = userRecord.updateRequest().deleteProvider("google.com");
+      userRecord = auth.updateUserAsync(request).get();
+      assertEquals(1, userRecord.getProviderData().length);
+      assertNotEquals("google.com", userRecord.getProviderData()[0].getProviderId());
+      assertEquals(uid, userRecord.getUid());
+      assertEquals("Updated Name", userRecord.getDisplayName());
+      assertEquals(randomUser.email, userRecord.getEmail());
+      assertNull(userRecord.getPhoneNumber());
+      assertEquals("https://example.com/photo.png", userRecord.getPhotoUrl());
+      assertTrue(userRecord.isEmailVerified());
+      assertFalse(userRecord.isDisabled());
+      assertTrue(userRecord.getCustomClaims().isEmpty());
+
+      // Get user by email
+      userRecord = auth.getUserByEmailAsync(userRecord.getEmail()).get();
+      assertEquals(uid, userRecord.getUid());
+
+      // Disable user and remove properties
+      request = userRecord.updateRequest()
+          .setPhotoUrl(null)
+          .setDisplayName(null)
+          .setPhoneNumber(null)
+          .setDisabled(true);
+      userRecord = auth.updateUserAsync(request).get();
+      assertEquals(uid, userRecord.getUid());
+      assertNull(userRecord.getDisplayName());
+      assertEquals(randomUser.email, userRecord.getEmail());
+      assertNull(userRecord.getPhoneNumber());
+      assertNull(userRecord.getPhotoUrl());
+      assertTrue(userRecord.isEmailVerified());
+      assertTrue(userRecord.isDisabled());
+      assertEquals(1, userRecord.getProviderData().length);
+      assertTrue(userRecord.getCustomClaims().isEmpty());
+
+    } finally {
+      // Delete user
+      auth.deleteUserAsync(userRecord.getUid()).get();
+      try {
+        auth.getUserAsync(userRecord.getUid()).get();
+        fail("No error thrown for deleted user");
+      } catch (ExecutionException e) {
+        assertTrue(e.getCause() instanceof FirebaseAuthException);
+        assertEquals(FirebaseUserManager.USER_NOT_FOUND_ERROR,
+            ((FirebaseAuthException) e.getCause()).getErrorCode());
+      }
     }
   }
 
diff --git a/src/test/java/com/google/firebase/auth/FirebaseUserManagerTest.java b/src/test/java/com/google/firebase/auth/FirebaseUserManagerTest.java
@@ -74,6 +74,13 @@ public class FirebaseUserManagerTest {
           .build();
   private static final Map<String, Object> ACTION_CODE_SETTINGS_MAP =
           ACTION_CODE_SETTINGS.getProperties();
+  private static final UserProvider USER_PROVIDER = UserProvider.builder()
+        .setUid("testuid")
+        .setProviderId("facebook.com")
+        .setEmail("test@example.com")
+        .setDisplayName("Test User")
+        .setPhotoUrl("https://test.com/user.png")
+        .build();
 
   @After
   public void tearDown() {
@@ -826,8 +833,10 @@ public void testUserUpdater() throws IOException {
         .setEmailVerified(true)
         .setPassword("secret")
         .setCustomClaims(claims)
+        .linkProvider(USER_PROVIDER)
+        .deleteProvider("google.com")
         .getProperties(Utils.getDefaultJsonFactory());
-    assertEquals(8, map.size());
+    assertEquals(10, map.size());
     assertEquals(update.getUid(), map.get("localId"));
     assertEquals("Display Name", map.get("displayName"));
     assertEquals("http://test.com/example.png", map.get("photoUrl"));
@@ -836,6 +845,8 @@ public void testUserUpdater() throws IOException {
     assertTrue((Boolean) map.get("emailVerified"));
     assertEquals("secret", map.get("password"));
     assertEquals(Utils.getDefaultJsonFactory().toString(claims), map.get("customAttributes"));
+    assertEquals(USER_PROVIDER, map.get("linkProviderUserInfo"));
+    assertEquals(ImmutableList.of("google.com"), map.get("deleteProvider"));
   }
 
   @Test
@@ -873,6 +884,28 @@ public void testEmptyCustomClaims() {
     assertEquals("{}", map.get("customAttributes"));
   }
 
+  @Test
+  public void testLinkProvider() {
+    UpdateRequest update = new UpdateRequest("test");
+    Map<String, Object> map = update
+        .linkProvider(USER_PROVIDER)
+        .getProperties(Utils.getDefaultJsonFactory());
+    assertEquals(2, map.size());
+    assertEquals(update.getUid(), map.get("localId"));
+    assertEquals(USER_PROVIDER, map.get("linkProviderUserInfo"));
+  }
+
+  @Test
+  public void testDeleteProvider() {
+    UpdateRequest update = new UpdateRequest("test");
+    Map<String, Object> map = update
+        .deleteProvider("google.com")
+        .getProperties(Utils.getDefaultJsonFactory());
+    assertEquals(2, map.size());
+    assertEquals(update.getUid(), map.get("localId"));
+    assertEquals(ImmutableList.of("google.com"), map.get("deleteProvider"));
+  }
+
   @Test
   public void testDeleteDisplayName() {
     Map<String, Object> map = new UpdateRequest("test")
