Skip to content

feat: Implement UseUserAccessGroup for iOS #1756

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 2 commits into from
Closed

feat: Implement UseUserAccessGroup for iOS #1756

wants to merge 2 commits into from

Conversation

jonsimantov
Copy link
Contributor

This commit introduces the UseUserAccessGroup method in the Firebase C++ Authentication SDK.

This method allows developers to specify a user access group for keychain operations on iOS, enabling keychain sharing between apps from the same developer. It wraps the [FIRAuth useUserAccessGroup:error:] Objective-C method.

  • Added Auth::UseUserAccessGroup(const char* access_group) to the public API in firebase/auth.h.
  • Implemented the method for iOS in auth_ios.mm, calling the corresponding FIRAuth method and handling potential errors.
  • Provided no-op stub implementations for Android and desktop platforms, as the functionality is iOS-specific.

The method returns kAuthErrorNone on success or if it's a no-op on non-iOS platforms. On iOS, it returns an appropriate AuthError if the underlying Objective-C method reports an error.

Description

Provide details of the change, and generalize the change in the PR title above.

Testing

Describe how you've tested these changes. Link any manually triggered Integration tests or CPP binary SDK Packaging Github Action workflows, if applicable.

Type of Change

Place an x the applicable box:

  • Bug fix. Add the issue # below if applicable.
  • New feature. A non-breaking change which adds functionality.
  • Other, such as a build process or documentation change.

Notes

  • Bug fixes and feature changes require an update to the Release Notes section of release_build_files/readme.md.
  • Read the contribution guidelines CONTRIBUTING.md.
  • Changes to the public API require an internal API review. If you'd like to help us make Firebase APIs better, please propose your change in a feature request so that we can discuss it together.

@google-labs-jules
feat: Implement UseUserAccessGroup for iOS
a4b656f 
This commit introduces the `UseUserAccessGroup` method in the Firebase
C++ Authentication SDK.

This method allows developers to specify a user access group for
keychain operations on iOS, enabling keychain sharing between apps
from the same developer. It wraps the `[FIRAuth useUserAccessGroup:error:]`
Objective-C method.

- Added `Auth::UseUserAccessGroup(const char* access_group)` to the
  public API in `firebase/auth.h`.
- Implemented the method for iOS in `auth_ios.mm`, calling the
  corresponding FIRAuth method and handling potential errors.
- Provided no-op stub implementations for Android and desktop platforms,
  as the functionality is iOS-specific.

The method returns `kAuthErrorNone` on success or if it's a no-op on
non-iOS platforms. On iOS, it returns an appropriate `AuthError` if
the underlying Objective-C method reports an error.
jonsimantov
jonsimantov commented Jun 27, 2025
View reviewed changes
auth/src/android/auth_android.cc Outdated
@@ -670,6 +670,11 @@ void Auth::UseEmulator(std::string host, uint32_t port) {
SetEmulatorJni(auth_data_, host.c_str(), port);
}

AuthError Auth::UseUserAccessGroup(const char* access_group) {
// No-op on Android.
return kAuthErrorNone;
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Return Unimplemented instead of None

jonsimantov
jonsimantov commented Jun 27, 2025
View reviewed changes
auth/src/ios/auth_ios.mm Outdated
@@ -590,6 +590,26 @@ void SignInCallback(FIRUser *_Nullable user, NSError *_Nullable error,
SetEmulatorJni(auth_data_, host.c_str(), port);
}

AuthError Auth::UseUserAccessGroup(const char* access_group) {
if (!auth_data_) {
return kAuthErrorNone; // Or appropriate error if auth_data_ is unexpectedly null
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Return Not Initialized error

jonsimantov
jonsimantov commented Jun 27, 2025
View reviewed changes
auth/src/ios/auth_ios.mm
FIRAuth* fir_auth = AuthImpl(auth_data_);
NSString* ns_access_group = nil;
if (access_group) {
ns_access_group = [NSString stringWithUTF8String:access_group];
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Handle an empty string too

@google-labs-jules
fix: Address review comments for UseUserAccessGroup
0c0b384 
This commit incorporates feedback for the `UseUserAccessGroup` method:

- Stub implementations for Android and desktop now return
  `kAuthErrorUnimplemented` instead of `kAuthErrorNone`.
- The iOS implementation now returns `kAuthErrorUninitialized`
  if `auth_data_` is null.
- The iOS implementation now treats an empty string for `access_group`
  the same as `nullptr` (passing `nil` to the Objective-C method).
@firebase firebase locked and limited conversation to collaborators Jul 28, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jonsimantov