Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: web authentication #335

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
148 changes: 108 additions & 40 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -228,56 +228,124 @@

### Web (not react-native-web, but that may come as a follow-on, this is pure web at the moment)

### WebView

#### 1. Initial set-up
- Ensure you follow the android steps above.
- Install the [web counterpart](https://github.com/A-Tokyo/react-apple-signin-auth) `yarn add react-apple-signin-auth` in your web project.
- Make sure to correctly configure your Apple developer account to allow for proper web based authentication.
- Install the [React Native WebView](https://github.com/react-native-webview/react-native-webview) `yarn add react-native-webview` (or) `npm i react-native-webview` in your project. [Link native dependencies](https://github.com/react-native-webview/react-native-webview/blob/master/docs/Getting-Started.md#2-link-native-dependencies).

Check warning on line 235 in README.md

View check run for this annotation

In Solidarity / Inclusive Language

Match Found

Please consider an alternative to `master`. Possibilities include: `primary`, `main`, `leader`, `active`, `writer`
Raw output
/master/gi
- Your backend needs to implement web based authentification

#### 2. Implement the login process on web
#### 2. Implement the login process
```js
import AppleSignin from 'react-apple-signin-auth';

/** Apple Signin button */
const MyAppleSigninButton = ({ ...rest }) => (
<AppleSignin
/** Auth options passed to AppleID.auth.init() */
authOptions={{
clientId: 'SAME AS ANDROID',
redirectURI: 'SAME AS ANDROID',
scope: 'email name',
state: 'state',
/** sha256 nonce before sending to apple to unify with native firebase behavior - https://github.com/invertase/react-native-apple-authentication/issues/28 */
nonce: sha256('nonce'),
/** We have to usePopup since we need clientSide authentication */
usePopup: true,
}}
onSuccess={(response) => {
console.log(response);
// {
// "authorization": {
// "state": "[STATE]",
// "code": "[CODE]",
// "id_token": "[ID_TOKEN]"
// },
// "user": {
// "email": "[EMAIL]",
// "name": {
// "firstName": "[FIRST_NAME]",
// "lastName": "[LAST_NAME]"
// }
// }
// }
}}
/>
);

export default MyAppleSigninButton;

// App.js
import React from "react";
import {
View,
TouchableWithoutFeedback,
Text
} from "react-native";
import {
appleAuth,
appleAuthAndroid,
AppleAuthWebView // Internaly using WebView
} from "@invertase/react-native-apple-authentication";

function onAppleLoginWebViewButtonPress() {

// https://developer.apple.com/documentation/sign_in_with_apple/sign_in_with_apple_js/incorporating_sign_in_with_apple_into_other_platforms
const appleAuthConfig = {
// The Service ID you registered with Apple
clientId: "com.example.client-web",

// Return URL added to your Apple dev console. It must still match the URL you provided to Apple.
redirectUri: "https://example.com/auth/callback",

// The type of response requested - code, id_token, or both.
responseType: "code id_token",

// The amount of user information requested from Apple.
scope: "name email"

// Random nonce value that will be SHA256 hashed before sending to Apple.
// nonce: nonce,

// Unique state value used to prevent CSRF attacks. A UUID will be generated if nothing is provided.
// state: state
};

this.setState(
{
appleAuthConfig: appleAuthConfig
}
);
}

function onAppleAuthResponse(responseContent) {

// Handle your server response (after login - apple redirects to your server url)
console.log("onAppleAuthResponse responseContent", responseContent);
}

// If no iOS or Android is supported than we use webView fallback with custom button
function App() {

render() {
const appleAuthConfig = this.state.appleAuthConfig;

if (appleAuthConfig) {
return (
<AppleAuthWebView
config={appleAuthConfig}
// optional loadingIndicator property
// loadingIndicator={
// () => {
// return (
// <Loading />
// );
// }
// }
onResponse={this.onAppleAuthResponse}
/>
);
}
}

return (
<View>


{
// It makes sense to show the native buttons in a real app,
// something like the code below, but we are just demonstrating web login here so it is commented out

// (appleAuth.isSupported || appleAuthAndroid.isSupported) ? (
// <AppleButton
// buttonStyle={AppleButton.Style.BLACK}
// buttonType={AppleButton.Type.SIGN_IN}
// onPress={this.onAppleLoginButtonPress}
// />
// ) // else add webView view button
}

<TouchableWithoutFeedback onPress={this.onAppleLoginWebViewButtonPress}>
<Text>
Sign in with Apple
</Text>
</TouchableWithoutFeedback>
</View>
);
}
```

#### 3. Verify serverside
- Send the apple response to your server.
- See [Serverside Verification](#serverside-verification)
- Ensure that you pass the clientID as the web service ID, not the native app bundle. Since the project utilizes the service ID for authenticating web and android.

### WebView Config
- https://developer.apple.com/documentation/sign_in_with_apple/sign_in_with_apple_js/incorporating_sign_in_with_apple_into_other_platforms

## Serverside verification

#### Nonce
Expand Down
181 changes: 110 additions & 71 deletions example/app.android.js
Original file line number Diff line number Diff line change
Expand Up @@ -16,21 +16,22 @@
*
*/

import React from 'react';
import { StyleSheet, View, Image, Text } from 'react-native';
import { AppleButton, appleAuthAndroid } from '@invertase/react-native-apple-authentication';
import React, { useState } from 'react';
import { StyleSheet, View, Image, TouchableOpacity, Text } from 'react-native';
import { AppleButton, appleAuthAndroid, AppleAuthWebView } from '@invertase/react-native-apple-authentication';
import 'react-native-get-random-values';
import { v4 as uuid } from 'uuid'
import appleLogoWhite from './images/apple_logo_white.png';
import appleLogoBlack from './images/apple_logo_black.png';
import { getAppleAuthConfig, parseAppleAuthResponse } from './app.shared';


export default RootComponent = () => {
export default function RootComponent() {
const [appleAuthConfig, setAppleAuthConfig] = useState(null);

const doAppleLogin = async () => {
// Generate secure, random values for state and nonce
const rawNonce = uuid();
const state = uuid();
const rawState = uuid();

try {
// Initialize the module
Expand Down Expand Up @@ -63,7 +64,7 @@ export default RootComponent = () => {

// [OPTIONAL]
// Unique state value used to prevent CSRF attacks. A UUID will be generated if nothing is provided.
state,
state: rawState,
});

const response = await appleAuthAndroid.signIn();
Expand Down Expand Up @@ -96,70 +97,85 @@ export default RootComponent = () => {
}
};

if (appleAuthConfig) {
return (
<AppleAuthWebView
config={appleAuthConfig}
onResponse={
(responseContent) => {
setAppleAuthConfig(null);
parseAppleAuthResponse(responseContent);
}
}
/>
);
}

return (
<View style={[styles.container, styles.horizontal]}>
{appleAuthAndroid.isSupported && (
<View>
<Text style={styles.header}>Buttons</Text>
{
appleAuthAndroid.isSupported && (
<View>
<Text style={styles.header}>Buttons</Text>

<Text style={{ marginBottom: 8 }}>Continue Styles</Text>
<AppleButton
style={{ marginBottom: 10 }}
cornerRadius={5}
buttonStyle={AppleButton.Style.WHITE}
buttonType={AppleButton.Type.CONTINUE}
onPress={() => doAppleLogin()}
leftView={(
<Image
style={{
alignSelf: 'center',
width: 14,
height: 14,
marginRight: 7,
resizeMode: 'contain',
}}
source={appleLogoBlack}
/>
)}
/>
<AppleButton
style={{ marginBottom: 10 }}
cornerRadius={0}
buttonStyle={AppleButton.Style.WHITE_OUTLINE}
buttonType={AppleButton.Type.CONTINUE}
onPress={() => doAppleLogin()}
leftView={(
<Image
style={{
alignSelf: 'center',
width: 14,
height: 14,
marginRight: 7,
resizeMode: 'contain',
}}
source={appleLogoBlack}
/>
)}
/>
<AppleButton
style={{ marginBottom: 16 }}
cornerRadius={30}
buttonStyle={AppleButton.Style.BLACK}
buttonType={AppleButton.Type.CONTINUE}
onPress={() => doAppleLogin()}
leftView={(
<Image
style={{
alignSelf: 'center',
width: 14,
height: 14,
marginRight: 7,
resizeMode: 'contain',
}}
source={appleLogoWhite}
/>
)}
/>
<Text style={{ marginBottom: 8 }}>Continue Styles</Text>
<AppleButton
style={{ marginBottom: 10 }}
cornerRadius={5}
buttonStyle={AppleButton.Style.WHITE}
buttonType={AppleButton.Type.CONTINUE}
onPress={() => doAppleLogin()}
leftView={(
<Image
style={{
alignSelf: 'center',
width: 14,
height: 14,
marginRight: 7,
resizeMode: 'contain',
}}
source={appleLogoBlack}
/>
)}
/>
<AppleButton
style={{ marginBottom: 10 }}
cornerRadius={0}
buttonStyle={AppleButton.Style.WHITE_OUTLINE}
buttonType={AppleButton.Type.CONTINUE}
onPress={() => doAppleLogin()}
leftView={(
<Image
style={{
alignSelf: 'center',
width: 14,
height: 14,
marginRight: 7,
resizeMode: 'contain',
}}
source={appleLogoBlack}
/>
)}
/>
<AppleButton
style={{ marginBottom: 16 }}
cornerRadius={30}
buttonStyle={AppleButton.Style.BLACK}
buttonType={AppleButton.Type.CONTINUE}
onPress={() => doAppleLogin()}
leftView={(
<Image
style={{
alignSelf: 'center',
width: 14,
height: 14,
marginRight: 7,
resizeMode: 'contain',
}}
source={appleLogoWhite}
/>
)}
/>

<Text style={{ marginBottom: 8 }}>Sign-in Styles</Text>
<AppleButton
Expand Down Expand Up @@ -222,9 +238,32 @@ export default RootComponent = () => {
</View>
)}

{!appleAuthAndroid.isSupported && (
<Text>Sign In with Apple requires Android 4.4 (API 19) or higher.</Text>
)}
{
!appleAuthAndroid.isSupported && (
<View>
<Text>
Sign In with Apple requires Android 4.4 (API 19) or higher.
</Text>
<Text>
But in such cases you can always use apple webView sign in!
</Text>
</View>
)
}

{
<TouchableOpacity onPress={
() => {
setAppleAuthConfig(getAppleAuthConfig());
}
}>
<View style={styles.button}>
<Text style={styles.label}>
WebView sign in with Apple
</Text>
</View>
</TouchableOpacity>
}
</View>
);
}
Expand Down
Loading
Loading