Adding unit test

mansisampat · mansisampat · commit 6ad7c8ff4ff1 · 2025-10-01T12:19:20.000+05:30
diff --git a/packages/auth/src/core/auth/auth_impl.test.ts b/packages/auth/src/core/auth/auth_impl.test.ts
@@ -353,7 +353,7 @@ describe('core/auth/auth_impl', () => {
     it('should return the existing token if it is valid', async () => {
       persistenceStub._get.withArgs(tokenKey).resolves(mockToken as any);
       const token = await auth.getFirebaseAccessToken();
-      expect(token).to.eql(mockToken);
+      expect(token).to.eql('test-token');
       expect(exchangeTokenStub).not.to.have.been.called;
     });
 
@@ -381,7 +381,7 @@ describe('core/auth/auth_impl', () => {
         'test-idp',
         'new-id-token'
       );
-      expect(token).to.eql(mockToken);
+      expect(token).to.eql('test-token');
     });
 
     it('should force refresh the token when forceRefresh is true', async () => {
@@ -449,7 +449,7 @@ describe('core/auth/auth_impl', () => {
       await regionalAuth._updateFirebaseToken(token);
       await regionalAuth.signOut();
       expect(persistenceStub._remove).to.have.been.called;
-      expect(regionalAuth.getFirebaseAccessToken()).to.be.null;
+      expect(await regionalAuth.getFirebaseAccessToken()).to.be.null;
     });
     it('is blocked if a beforeAuthStateChanged callback throws', async () => {
       await auth._updateCurrentUser(testUser(auth, 'test'));
diff --git a/packages/auth/src/core/auth/firebase_internal.test.ts b/packages/auth/src/core/auth/firebase_internal.test.ts
@@ -18,14 +18,18 @@
 import { FirebaseError } from '@firebase/util';
 import { expect, use } from 'chai';
 import * as sinon from 'sinon';
+import * as mockFetch from '../../../test/helpers/mock_fetch';
 import sinonChai from 'sinon-chai';
 import chaiAsPromised from 'chai-as-promised';
 
 import {
   regionalTestAuth,
+  regionalTestAuthWithTokenRefreshHandler,
   testAuth,
   testUser
 } from '../../../test/helpers/mock_auth';
+import { RegionalEndpoint } from '../../api';
+import { mockRegionalEndpointWithParent } from '../../../test/helpers/api/helper';
 import { AuthInternal } from '../../model/auth';
 import { UserInternal } from '../../model/user';
 import { AuthInterop } from './firebase_internal';
@@ -227,17 +231,32 @@ describe('core/auth/firebase_internal', () => {
 
 describe('core/auth/firebase_internal - Regional Firebase Auth', () => {
   let regionalAuth: AuthInternal;
+  let regionalAuthWithRefreshToken: AuthInternal;
   let regionalAuthInternal: AuthInterop;
+  let regionalAuthWithRefreshTokenInternal: AuthInterop;
   let now: number;
   beforeEach(async () => {
     regionalAuth = await regionalTestAuth();
     regionalAuthInternal = new AuthInterop(regionalAuth);
+    regionalAuthWithRefreshToken =
+      await regionalTestAuthWithTokenRefreshHandler();
+    regionalAuthWithRefreshTokenInternal = new AuthInterop(
+      regionalAuthWithRefreshToken
+    );
     now = Date.now();
     sinon.stub(Date, 'now').returns(now);
+    mockFetch.setUp();
+    mockRegionalEndpointWithParent(
+      RegionalEndpoint.EXCHANGE_TOKEN,
+      'projects/test-project-id/locations/us/tenants/tenant-1/idpConfigs/idp-config',
+      'test-api-key',
+      { accessToken: 'access-token-new', expiresIn: 10_000 }
+    );
   });
 
   afterEach(() => {
     sinon.restore();
+    mockFetch.tearDown();
   });
 
   context('getFirebaseToken', () => {
@@ -265,7 +284,8 @@ describe('core/auth/firebase_internal - Regional Firebase Auth', () => {
         expirationTime: now - 5_000
       });
       expect(await regionalAuthInternal.getToken()).to.null;
-      expect(regionalAuth.firebaseToken).to.null;
+      const firebaseToken = await regionalAuth.getFirebaseAccessToken();
+      expect(firebaseToken).to.null;
     });
 
     it('logs out if token is expiring in next 5 seconds', async () => {
@@ -274,24 +294,36 @@ describe('core/auth/firebase_internal - Regional Firebase Auth', () => {
         expirationTime: now + 5_000
       });
       expect(await regionalAuthInternal.getToken()).to.null;
-      expect(regionalAuth.firebaseToken).to.null;
+      const firebaseToken = await regionalAuth.getFirebaseAccessToken();
+      expect(firebaseToken).to.null;
     });
 
-    it('logs warning if getToken is called with forceRefresh true', async () => {
-      sinon.stub(console, 'warn');
-      await regionalAuth._updateFirebaseToken({
+    it('returns refreshIdToken if getToken is called with forceRefresh true', async () => {
+      await regionalAuthWithRefreshToken._updateFirebaseToken({
         token: 'access-token',
-        expirationTime: now + 300_000
+        expirationTime: now + 30_000
       });
-      expect(await regionalAuthInternal.getToken(true)).to.eql({
-        accessToken: 'access-token'
+      expect(await regionalAuthWithRefreshTokenInternal.getToken(true)).to.eql({
+        accessToken: 'access-token-new'
       });
-      expect(console.warn).to.have.been.calledWith(
-        sinon.match.string,
-        sinon.match(
-          /Refresh token is not a valid operation for Regional Auth instance initialized\./
-        )
-      );
+    });
+
+    it('returns refreshIdToken if current idToken is expired', async () => {
+      await regionalAuthWithRefreshToken._updateFirebaseToken({
+        token: 'access-token',
+        expirationTime: now - 5_000
+      });
+      expect(await regionalAuthWithRefreshTokenInternal.getToken()).to.eql({
+        accessToken: 'access-token-new'
+      });
+    });
+
+    it('returns null if current idToken is expired and tokenRefreshHandler is not implemented', async () => {
+      await regionalAuth._updateFirebaseToken({
+        token: 'access-token',
+        expirationTime: now - 5_000
+      });
+      expect(await regionalAuthInternal.getToken()).to.eql(null);
     });
   });
 });
diff --git a/packages/auth/src/core/auth/firebase_internal.ts b/packages/auth/src/core/auth/firebase_internal.ts
@@ -22,7 +22,6 @@ import { AuthInternal } from '../../model/auth';
 import { UserInternal } from '../../model/user';
 import { _assert } from '../util/assert';
 import { AuthErrorCode } from '../errors';
-import { _logWarn } from '../util/log';
 
 interface TokenListener {
   (tok: string | null): unknown;
@@ -46,11 +45,6 @@ export class AuthInterop implements FirebaseAuthInternal {
     this.assertAuthConfigured();
     await this.auth._initializationPromise;
     if (this.auth.tenantConfig) {
-      if (forceRefresh) {
-        _logWarn(
-          'Refresh token is not a valid operation for Regional Auth instance initialized.'
-        );
-      }
       const accessToken = await this.getTokenForRegionalAuth(forceRefresh);
       return accessToken ? { accessToken } : null;
     }
diff --git a/packages/auth/src/core/strategies/exchange_token.test.ts b/packages/auth/src/core/strategies/exchange_token.test.ts
@@ -53,7 +53,7 @@ describe('core/strategies/exchangeToken', () => {
       RegionalEndpoint.EXCHANGE_TOKEN,
       'projects/test-project-id/locations/us/tenants/tenant-1/idpConfigs/idp-config',
       'test-api-key',
-      { accessToken: 'outbound-token', expiresIn: 10 }
+      { accessToken: 'outbound-token', expiresIn: 10_000 }
     );
 
     const accessToken = await exchangeToken(
@@ -72,8 +72,8 @@ describe('core/strategies/exchangeToken', () => {
     expect(mock.calls[0].headers!.get(HttpHeader.CONTENT_TYPE)).to.eq(
       'application/json'
     );
-    expect(regionalAuth.firebaseToken?.token).to.equal('outbound-token');
-    expect(regionalAuth.firebaseToken?.expirationTime).to.equal(now + 10_000);
+    const firebaseToken = await regionalAuth.getFirebaseAccessToken();
+    expect(firebaseToken).to.equal('outbound-token');
   });
 
   it('throws exception for default Auth', async () => {
@@ -117,6 +117,7 @@ describe('core/strategies/exchangeToken', () => {
     expect(mock.calls[0].headers!.get(HttpHeader.CONTENT_TYPE)).to.eq(
       'application/json'
     );
-    expect(regionalAuth.firebaseToken).is.null;
+    const accessToken = await regionalAuth.getFirebaseAccessToken();
+    expect(accessToken).is.null;
   });
 });
diff --git a/packages/auth/test/helpers/mock_auth.ts b/packages/auth/test/helpers/mock_auth.ts
@@ -18,7 +18,11 @@
 import { FirebaseApp } from '@firebase/app';
 import { Provider } from '@firebase/component';
 import { AppCheckTokenResult } from '@firebase/app-check-interop-types';
-import { PopupRedirectResolver } from '../../src/model/public_types';
+import {
+  PopupRedirectResolver,
+  TokenRefreshHandler,
+  RefreshIdpTokenResult
+} from '../../src/model/public_types';
 import { debugErrorMap } from '../../src';
 
 import { AuthImpl } from '../../src/core/auth/auth_impl';
@@ -118,6 +122,30 @@ export async function testAuth(
   return auth;
 }
 
+class TokenRefreshHandlerImpl implements TokenRefreshHandler {
+  async refreshIdpToken(): Promise<RefreshIdpTokenResult> {
+    // Fetch the token for their custom Idp configured...
+    return {
+      idToken: 'new-token', // The new token string
+      idpConfigId: 'idp-config' // The ID for your IdP
+    };
+  }
+}
+
+export async function regionalTestAuthWithTokenRefreshHandler(
+  popupRedirectResolver?: PopupRedirectResolver,
+  persistence = new MockPersistenceLayer(),
+  skipAwaitOnInit?: boolean
+): Promise<TestAuth> {
+  const regionalAuth = await regionalTestAuth(
+    popupRedirectResolver,
+    persistence,
+    skipAwaitOnInit
+  );
+  regionalAuth.setTokenRefreshHandler(new TokenRefreshHandlerImpl());
+  return regionalAuth;
+}
+
 export async function regionalTestAuth(
   popupRedirectResolver?: PopupRedirectResolver,
   persistence = new MockPersistenceLayer(),
