Cleanup

Author: jamesdaniels

package.json

@@ -48,6 +48,7 @@
     "@angular/platform-browser": "^9.0.0 || ^10.0.0 || ^11.0.0",
     "@angular/platform-browser-dynamic": "^9.0.0 || ^10.0.0 || ^11.0.0",
     "@angular/router": "^9.0.0 || ^10.0.0 || ^11.0.0",
+    "cookie": "^0.4.1",
     "firebase": "^7.0.0 || ^8.0.0",
     "firebase-admin": "^8.10.0",
     "firebase-functions": "^3.6.0",
@@ -57,6 +58,7 @@
     "husky": "^4.2.5",
     "inquirer": "^6.2.2",
     "inquirer-autocomplete-prompt": "^1.0.1",
+    "js-cookie": "^2.2.1",
     "open": "^7.0.3",
     "rxfire": "^3.9.7 || ^4.0.0",
     "rxjs": "^6.5.3",
@@ -79,10 +81,12 @@
     "@angular/platform-server": "^9.0.0 || ^10.0.0 || ^11.0.0",
     "@firebase/app-types": "^0.6.1",
     "@nguniversal/express-engine": "^11.0.0",
+    "@types/cookie": "^0.4.0",
     "@types/fs-extra": "^7.0.0",
     "@types/gzip-size": "^5.1.1",
     "@types/inquirer": "^0.0.44",
     "@types/jasmine": "^3.3.13",
+    "@types/js-cookie": "^2.2.6",
     "@types/node": "^12.6.2 < 12.12.42",
     "@types/request": "0.0.30",
     "@types/semver": "^7.1.0",

sample/package.json

@@ -32,7 +32,6 @@
     "core-js": "^3.6.5",
     "firebase": "^8.0.0",
     "first-input-delay": "^0.1.3",
-    "ngx-cookie-service": "^10.1.1",
     "proxy-polyfill": "^0.3.2",
     "rxjs": "~6.6.3",
     "tslib": "^2.0.1",

sample/src/app/app.component.ts

@@ -1,4 +1,4 @@
-import { ApplicationRef, Component } from '@angular/core';
+import { ApplicationRef, Component, isDevMode } from '@angular/core';
 import { FirebaseApp } from '@angular/fire';
 import { debounceTime } from 'rxjs/operators';
 
@@ -26,6 +26,8 @@ import { debounceTime } from 'rxjs/operators';
 })
 export class AppComponent {
   constructor(public readonly firebaseApp: FirebaseApp, appRef: ApplicationRef) {
-    appRef.isStable.pipe(debounceTime(200)).subscribe(it => console.log('isStable', it));
+    if (isDevMode()) {
+      appRef.isStable.pipe(debounceTime(200)).subscribe(it => console.log('isStable', it));
+    }
   }
 }

sample/src/app/app.module.ts

@@ -6,7 +6,7 @@ import { AppComponent } from './app.component';
 import { ServiceWorkerModule } from '@angular/service-worker';
 import { environment } from '../environments/environment';
 
-import { AngularFireModule } from '@angular/fire';
+import { AngularFireModule, FIREBASE_APP_NAME } from '@angular/fire';
 
 import {
   AngularFireAnalyticsModule,
@@ -44,7 +44,7 @@ import { FunctionsComponent } from './functions/functions.component';
 import { FirestoreOfflineComponent } from './firestore-offline/firestore-offline.component';
 import { FirestoreOfflineModule } from './firestore-offline/firestore-offline.module';
 import { UpboatsComponent } from './upboats/upboats.component';
-import { CookieService } from 'ngx-cookie-service';
+
 @NgModule({
   declarations: [
     AppComponent,
@@ -78,13 +78,12 @@ import { CookieService } from 'ngx-cookie-service';
     FirestoreOfflineModule
   ],
   providers: [
-    CookieService,
     UserTrackingService,
     ScreenTrackingService,
     PerformanceMonitoringService,
     { provide: EXPERIMENTAL_COOKIE_AUTH, useValue: true },
     { provide: FIRESTORE_SETTINGS, useValue: { ignoreUndefinedProperties: true } },
-    { provide: ANALYTICS_DEBUG_MODE, useValue: true },
+    { provide: ANALYTICS_DEBUG_MODE, useFactory: isDevMode },
     { provide: COLLECTION_ENABLED, useValue: true },
     { provide: USE_AUTH_EMULATOR, useValue: environment.useEmulators ? ['localhost', 9099] : undefined },
     { provide: USE_DATABASE_EMULATOR, useValue: environment.useEmulators ? ['localhost', 9000] : undefined },

sample/src/app/auth/auth.component.ts

@@ -2,11 +2,9 @@ import { Component, OnInit, OnDestroy, PLATFORM_ID } from '@angular/core';
 import { AngularFireAuth } from '@angular/fire/auth';
 import firebase from 'firebase/app';
 import { Subscription } from 'rxjs';
-import { filter, map, pairwise, tap } from 'rxjs/operators';
 import { trace } from '@angular/fire/performance';
 import { Inject } from '@angular/core';
 import { isPlatformServer } from '@angular/common';
-import { CookieService } from 'ngx-cookie-service';
 
 @Component({
   selector: 'app-auth',
@@ -25,47 +23,24 @@ import { CookieService } from 'ngx-cookie-service';
 export class AuthComponent implements OnInit, OnDestroy {
 
   private readonly userDisposable: Subscription|undefined;
-  private readonly cookieExchangeDisposable: Subscription|undefined;
 
   showLoginButton = false;
   showLogoutButton = false;
 
   constructor(
     public readonly auth: AngularFireAuth,
     @Inject(PLATFORM_ID) platformId: object,
-    cookies: CookieService,
   ) {
 
     if (!isPlatformServer(platformId)) {
 
-
       this.userDisposable = auth.authState.pipe(
-        trace('auth'),
-        map(u => !!u)
+        trace('auth')
       ).subscribe(isLoggedIn => {
         this.showLoginButton = !isLoggedIn;
-        this.showLogoutButton = isLoggedIn;
-      });
-
-      this.cookieExchangeDisposable = auth.credential.pipe(
-        filter(it => !!it),
-        tap(it => console.log(it.credential)),
-      ).subscribe(userCredential => {
-        const json = userCredential.credential.toJSON() as any;
-        json._uid = userCredential.user.uid;
-        cookies.set('session', JSON.stringify(json));
+        this.showLogoutButton = !!isLoggedIn;
       });
 
-      auth.user.pipe(
-        pairwise(),
-        filter(([a, b]) => !!a && !b)
-      ).subscribe(() => {
-        cookies.delete('session');
-      });
-
-      auth.getRedirectResult().then(it => console.log('redirectResult', it));
-      auth.credential.subscribe(it => console.log('credential', it));
-
     }
   }
 
@@ -75,9 +50,6 @@ export class AuthComponent implements OnInit, OnDestroy {
     if (this.userDisposable) {
       this.userDisposable.unsubscribe();
     }
-    if (this.cookieExchangeDisposable) {
-      this.cookieExchangeDisposable.unsubscribe();
-    }
   }
 
   async login() {

sample/yarn.lock

@@ -8459,13 +8459,6 @@ next-tick@~1.0.0:
   resolved "https://registry.yarnpkg.com/next-tick/-/next-tick-1.0.0.tgz#ca86d1fe8828169b0120208e3dc8424b9db8342c"
   integrity sha1-yobR/ogoFpsBICCOPchCS524NCw=
 
-ngx-cookie-service@^10.1.1:
-  version "10.1.1"
-  resolved "https://registry.yarnpkg.com/ngx-cookie-service/-/ngx-cookie-service-10.1.1.tgz#4d7f41ba7d788896c59cb68283df3ae9d8ffcd37"
-  integrity sha512-HvBrYHdxMN1NvFJGEIF/8EuAg2fjxj8QwqTv9h6qZGqNLU+lUba8Pb2zRPw1YA+gqKkJawOy5dYNeH0kyPyipw==
-  dependencies:
-    tslib "^2.0.0"
-
 nice-try@^1.0.4:
   version "1.0.5"
   resolved "https://registry.yarnpkg.com/nice-try/-/nice-try-1.0.5.tgz#a3378a7696ce7d223e88fc9b764bd7ef1089e366"

src/auth/auth.ts

@@ -1,6 +1,6 @@
-import { Injectable, Inject, Optional, NgZone, PLATFORM_ID, InjectionToken } from '@angular/core';
-import { Observable, of, from, merge, Subject, Subscriber } from 'rxjs';
-import { switchMap, map, observeOn, shareReplay, first, filter, switchMapTo, subscribeOn, tap, take, mapTo } from 'rxjs/operators';
+import { Injectable, Inject, Optional, NgZone, PLATFORM_ID, InjectionToken, OnDestroy } from '@angular/core';
+import { Observable, of, from, merge, Subject, Subscriber, SubscriptionLike } from 'rxjs';
+import { switchMap, map, observeOn, shareReplay, filter, switchMapTo, subscribeOn, tap, pairwise, take } from 'rxjs/operators';
 import {
   FIREBASE_OPTIONS,
   FIREBASE_APP_NAME,
@@ -18,7 +18,8 @@ import { isPlatformServer } from '@angular/common';
 import { proxyPolyfillCompat } from './base';
 import { ɵfetchInstance } from '@angular/fire';
 import { REQUEST } from '@nguniversal/express-engine/tokens';
-import { experimental } from '@angular-devkit/core';
+import { get as getCookie, set as setCookie, remove as removeCookie } from 'js-cookie';
+import { parse as parseCookies } from 'cookie';
 
 export interface AngularFireAuth extends ɵPromiseProxy<firebase.auth.Auth> {}
 
@@ -35,7 +36,9 @@ export const EXPERIMENTAL_COOKIE_AUTH = new InjectionToken<boolean>('angularfire
 @Injectable({
   providedIn: 'any'
 })
-export class AngularFireAuth {
+export class AngularFireAuth implements OnDestroy {
+
+  private disposables: SubscriptionLike[] = [];
 
   /**
    * Observable of authentication state; as of Firebase 4.0 this is only triggered via sign-in/out
@@ -76,7 +79,7 @@ export class AngularFireAuth {
     @Optional() @Inject(LANGUAGE_CODE) languageCode: string | null,
     @Optional() @Inject(USE_DEVICE_LANGUAGE) useDeviceLanguage: boolean | null,
     @Optional() @Inject(PERSISTENCE) persistence: string | null,
-    @Optional() @Inject(EXPERIMENTAL_COOKIE_AUTH) experimentalCookieAuth: boolean | null,
+    @Optional() @Inject(EXPERIMENTAL_COOKIE_AUTH) private experimentalCookieAuth: boolean | null,
     @Optional() @Inject(REQUEST) request: any,
   ) {
     const schedulers = new ɵAngularFireSchedulers(zone);
@@ -120,27 +123,25 @@ export class AngularFireAuth {
       shareReplay({ bufferSize: 1, refCount: false }),
     );
 
+    // HACK, as we're exporting auth.Auth, rather than auth, developers importing firebase.auth
+    //       (e.g, `import { auth } from 'firebase/app'`) are getting an undefined auth object unexpectedly
+    //       as we're completely lazy. Let's eagerly load the Auth SDK here.
+    //       There could potentially be race conditions still... but this greatly decreases the odds while
+    //       we reevaluate the API.
+    this.disposables.push(auth.pipe(take(1)).subscribe());
+
     const cookieAuthCredential = auth.pipe(
       switchMap(auth => {
-        // grabbed from ngx-cookie-service, they don't support universal
-        const getCookieRegExp = (name: string): RegExp => {
-          const escapedName: string = name.replace(/([\[\]\{\}\(\)\|\=\;\+\?\,\.\*\^\$])/gi, '\\$1');
-          return new RegExp('(?:^' + escapedName + '|;\\s*' + escapedName + ')=(.*?)(?:;|$)', 'g');
-        };
-        const cookie = isPlatformServer(platformId) ? request.headers.cookie : document.cookie;
-        const session = getCookieRegExp('session').exec(cookie)?.[1];
-        if (session) {
-          const authCredentialJSON = JSON.parse(decodeURIComponent(session));
-          const credentialUid = authCredentialJSON._uid;
-          delete authCredentialJSON._uid;
-          const authCredential = firebase.auth.AuthCredential.fromJSON(authCredentialJSON);
-          // TODO investigate, this is likely a security concern but is there a way we could utilize this property
-          //      perhaps we can build the _uid into the application name?
-          if (auth.currentUser?.uid === credentialUid) {
-            return of({ user: auth.currentUser, additionalUserInfo: null, credential: authCredential, operationType: null });
-          } else {
-            return auth.signInWithCredential(authCredential);
-          }
+        const encodedSession = isPlatformServer(platformId) ?
+          request.headers.cookie && parseCookies(request.headers.cookie).__session :
+          getCookie('__session');
+        if (encodedSession) {
+          const session = JSON.parse(decodeURIComponent(encodedSession));
+          const authCredential = firebase.auth.AuthCredential.fromJSON(session.credential);
+          return auth.signInWithCredential(authCredential).then(it => it, (e) => {
+            console.warn(e);
+            return null;
+          });
         } else {
           return of(null);
         }
@@ -149,13 +150,6 @@ export class AngularFireAuth {
       shareReplay({ bufferSize: 1, refCount: false }),
     );
 
-    // HACK, as we're exporting auth.Auth, rather than auth, developers importing firebase.auth
-    //       (e.g, `import { auth } from 'firebase/app'`) are getting an undefined auth object unexpectedly
-    //       as we're completely lazy. Let's eagerly load the Auth SDK here.
-    //       There could potentially be race conditions still... but this greatly decreases the odds while
-    //       we reevaluate the API.
-    const _ = auth.pipe(first()).subscribe();
-
     const cookieAuthUser = cookieAuthCredential.pipe(
       map(it => it?.user)
     );
@@ -220,33 +214,6 @@ export class AngularFireAuth {
         observeOn(schedulers.insideAngular),
       );
 
-      if (experimentalCookieAuth) {
-
-        /* TODO add the side-effects
-           it's now seeming like this should be a service instead
-
-          this.cookieExchangeDisposable = this.credential.pipe(
-            filter(it => !!it),
-            tap(it => console.log(it.credential)),
-          ).subscribe(userCredential => {
-            const json = userCredential.credential.toJSON();
-            // TODO do we want to put the instanceId on here too?
-            //      any other properties that we can use from the server side?
-            json['_uid'] = userCredential.user.uid;
-            // are we taking on ngx-cookie?
-            cookies.set('session', JSON.stringify(json));
-          });
-
-          this.user.pipe(
-            pairwise(),
-            filter(([a,b]) => !!a && !b)
-          ).subscribe(() => {
-            cookies.delete('session');
-          });
-        */
-
-      }
-
     }
 
     this.idToken = this.user.pipe(
@@ -257,6 +224,33 @@ export class AngularFireAuth {
       switchMap(user => user ? from(user.getIdTokenResult()) : of(null))
     );
 
+
+    if (this.experimentalCookieAuth) {
+
+      this.disposables.push(
+        this.credential.pipe(
+          filter(it => !!it)
+        ).subscribe(userCredential => {
+          const session = {
+            uid: userCredential.user.uid,
+            credential: userCredential.credential.toJSON(),
+          };
+          // TODO look at security
+          setCookie('__session', JSON.stringify(session));
+        })
+      );
+
+      this.disposables.push(
+          this.user.pipe(
+          pairwise(),
+          filter(([a, b]) => !!a && !b),
+        ).subscribe(() => {
+          removeCookie('__session');
+        })
+      );
+
+    }
+
     return ɵlazySDKProxy(this, auth, zone, { spy: {
       apply: (name, _, val) => {
         // If they call a signIn or createUser function listen into the promise
@@ -271,6 +265,11 @@ export class AngularFireAuth {
 
   }
 
+  ngOnDestroy() {
+    this.disposables.forEach(it => it.unsubscribe());
+    firebase.apps.forEach(app => app.auth().signOut());
+  }
+
 }
 
 ɵapplyMixins(AngularFireAuth, [proxyPolyfillCompat]);

yarn.lock

@@ -1784,6 +1784,11 @@
   dependencies:
     "@types/node" "*"
 
+"@types/cookie@^0.4.0":
+  version "0.4.0"
+  resolved "https://registry.yarnpkg.com/@types/cookie/-/cookie-0.4.0.tgz#14f854c0f93d326e39da6e3b6f34f7d37513d108"
+  integrity sha512-y7mImlc/rNkvCRmg8gC3/lj87S7pTUIJ6QGjwHR9WQJcFs+ZMTOaoPrkdFA/YdbuqVEmEbb5RdhVxMkAcgOnpg==
+
 "@types/duplexify@^3.6.0":
   version "3.6.0"
   resolved "https://registry.yarnpkg.com/@types/duplexify/-/duplexify-3.6.0.tgz#dfc82b64bd3a2168f5bd26444af165bf0237dcd8"
@@ -1868,6 +1873,11 @@
   resolved "https://registry.yarnpkg.com/@types/jasmine/-/jasmine-3.6.1.tgz#f8b95def0016411c58c7adb4791dff29bc62992c"
   integrity sha512-eeSCVhBsgwHNS1FmaMu4zrLxfykCTWJMLFZv7lmyrZQjw7foUUXoPu4GukSN9v7JvUw7X+/aDH3kCaymirBSTg==
 
+"@types/js-cookie@^2.2.6":
+  version "2.2.6"
+  resolved "https://registry.yarnpkg.com/@types/js-cookie/-/js-cookie-2.2.6.tgz#f1a1cb35aff47bc5cfb05cb0c441ca91e914c26f"
+  integrity sha512-+oY0FDTO2GYKEV0YPvSshGq9t7YozVkgvXLty7zogQNuCxBhT9/3INX9Q7H1aRZ4SUDRXAKlJuA4EA5nTt7SNw==
+
 "@types/json-schema@^7.0.5", "@types/json-schema@^7.0.6":
   version "7.0.6"
   resolved "https://registry.yarnpkg.com/@types/json-schema/-/json-schema-7.0.6.tgz#f4c7ec43e81b319a9815115031709f26987891f0"
@@ -4384,6 +4394,11 @@ cookie@0.4.0:
   resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.4.0.tgz#beb437e7022b3b6d49019d088665303ebe9c14ba"
   integrity sha512-+Hp8fLp57wnUSt0tY0tHEXh4voZRDnoIrZPqlo3DPiI4y9lwg/jqx+1Om94/W6ZaPDOUbnjOt/99w66zk+l1Xg==
 
+cookie@^0.4.1:
+  version "0.4.1"
+  resolved "https://registry.yarnpkg.com/cookie/-/cookie-0.4.1.tgz#afd713fe26ebd21ba95ceb61f9a8116e50a537d1"
+  integrity sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA==
+
 copy-concurrently@^1.0.0:
   version "1.0.5"
   resolved "https://registry.yarnpkg.com/copy-concurrently/-/copy-concurrently-1.0.5.tgz#92297398cae34937fcafd6ec8139c18051f0b5e0"
@@ -8006,6 +8021,11 @@ jquery@^3.4.1:
   resolved "https://registry.yarnpkg.com/jquery/-/jquery-3.5.1.tgz#d7b4d08e1bfdb86ad2f1a3d039ea17304717abb5"
   integrity sha512-XwIBPqcMn57FxfT+Go5pzySnm4KWkT1Tv7gjrpT1srtf8Weynl6R273VJ5GjkRb51IzMp5nbaPjJXMWeju2MKg==
 
+js-cookie@^2.2.1:
+  version "2.2.1"
+  resolved "https://registry.yarnpkg.com/js-cookie/-/js-cookie-2.2.1.tgz#69e106dc5d5806894562902aa5baec3744e9b2b8"
+  integrity sha512-HvdH2LzI/EAZcUwA8+0nKNtWHqS+ZmijLA30RwZA0bo7ToCckjK5MkGhjED9KoRcXO6BaGI3I9UIzSA1FKFPOQ==
+
 "js-tokens@^3.0.0 || ^4.0.0", js-tokens@^4.0.0:
   version "4.0.0"
   resolved "https://registry.yarnpkg.com/js-tokens/-/js-tokens-4.0.0.tgz#19203fb59991df98e3a287050d4647cdeaf32499"