Implements all refresh token revocation APIs. by bojeil-google · Pull Request #149 · firebase/firebase-admin-node

bojeil-google · 2017-12-01T04:31:52Z

This includes:
admin.auth.UserRecord.prototype.tokensValidAfterTime:?string (readonly)
admin.auth.Auth.prototype.verifyIdToken(idToken:string, checkRevoked:boolean=):!Promise<!admin.auth.DecodedIdToken>
admin.auth.Auth.prototype.revokeRefreshTokens(uid: string): Promise

Unit and integration tests also included.

This includes: admin.auth.UserRecord.prototype.tokensValidAfterTime:?string (readonly) admin.auth.Auth.prototype.verifyIdToken(idToken:string, checkRevoked:boolean=}:!Promise<!admin.auth.DecodedIdToken> admin.auth.Auth.prototype.revokeRefreshTokens(uid: string): Promise<void>

hiranya911

Looks pretty solid. Just a a few minor nits, and then I can LGTM.

hiranya911 · 2017-12-01T18:44:04Z

test/unit/auth/auth-api-request.spec.ts

Minor readability nit: Consider using 5000 as the offset here, as in the previous test case.

hiranya911 · 2017-12-01T18:46:04Z

test/unit/auth/auth-api-request.spec.ts

Consider adding the line:

let invalidUid: any = {'localId': uid};

And then pass invalidUid to the method being tested.

hiranya911 · 2017-12-01T18:48:37Z

src/auth/auth.ts

-    return this.tokenGenerator_.verifyIdToken(idToken);
+    return this.tokenGenerator_.verifyIdToken(idToken)
+      .then((decodedIdToken: DecodedIdToken) => {
+        // Whether to check if the token was revoked.


Do a check for !checkRevoked at the top, and remove the large if block:

if (!checkRevoked) { return decodedIdToken; } return this.getUser(decodedIdToken.sub) ...

hiranya911 · 2017-12-01T18:49:40Z

test/unit/auth/auth.spec.ts

Can we declare the return type to be DecodedIdToken in the signature?

hiranya911 · 2017-12-01T18:55:19Z

test/unit/auth/auth.spec.ts

-      return auth.verifyIdToken(mockIdToken).then(() => {
+      return auth.verifyIdToken(mockIdToken).then((result) => {
+        expect(result).to.deep.equal(decodedIdToken);
        expect(stub).to.have.been.calledOnce.and.calledWith(mockIdToken);


Perhaps also include a test to check that getUser() is never called.

Good idea. Done.

hiranya911 · 2017-12-01T19:06:39Z

src/auth/user-record.ts

It took a while for me to realize what's going on here. Can we expand this a bit?

let validAfterTime: string = null; if (typeof response.validSince !== 'undefined') { validAfterTime = parseDate(...); } utils.addReadOnlyGetter(this, 'tokensValidAfterTime', validAfterTime);

bojeil-google · 2017-12-06T04:48:01Z

Thanks for the prompt review. I think I addressed all the comments. Let me know if I missed anything.

hiranya911

LGTM 👍

bojeil-google requested a review from hiranya911 December 1, 2017 06:46

bojeil-google assigned hiranya911 Dec 1, 2017

hiranya911 suggested changes Dec 1, 2017

View reviewed changes

hiranya911 assigned bojeil-google and unassigned hiranya911 Dec 1, 2017

Addresses all review comments.

22d7642

bojeil-google assigned hiranya911 and unassigned bojeil-google Dec 6, 2017

hiranya911 approved these changes Dec 6, 2017

View reviewed changes

hiranya911 assigned bojeil-google and unassigned hiranya911 Dec 6, 2017

Merge branch 'master' into refresh-token-revocation

f973dee

bojeil-google merged commit 471581e into master Jan 4, 2018

bojeil-google deleted the refresh-token-revocation branch June 9, 2018 01:22

snyk-bot mentioned this pull request Nov 12, 2020

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#15

Open

snyk-bot mentioned this pull request May 4, 2021

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#16

Open

snyk-bot mentioned this pull request Aug 5, 2021

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#18

Open

snyk-bot mentioned this pull request Aug 12, 2021

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#19

Open

snyk-bot mentioned this pull request Sep 1, 2021

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#20

Open

snyk-bot mentioned this pull request Jun 30, 2022

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#26

Open

takeratta mentioned this pull request Mar 23, 2024

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#37

Open

takeratta mentioned this pull request May 23, 2024

[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1 takeratta/firebase-admin-node#38

Open

Conversation

bojeil-google commented Dec 1, 2017 • edited by avishalom Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

hiranya911 left a comment

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

bojeil-google commented Dec 6, 2017

Uh oh!

hiranya911 left a comment

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Comments

bojeil-google commented Dec 1, 2017 •

edited by avishalom

Loading