firebase · maksymmalyhin · Jun 1, 2021 · Apr 26, 2021 · May 3, 2021 · May 4, 2021
diff --git a/FirebaseAppCheck/Apps/FIRAppCheckTestApp/FIRAppCheckTestApp/AppDelegate.swift b/FirebaseAppCheck/Apps/FIRAppCheckTestApp/FIRAppCheckTestApp/AppDelegate.swift
@@ -26,32 +26,12 @@ class AppDelegate: UIResponder, UIApplicationDelegate {
                      .LaunchOptionsKey: Any]?) -> Bool {
     FirebaseApp.configure()
 
-    guard let firebaseApp = FirebaseApp.app() else {
-      return true
-    }
-
-    FIRDeviceCheckProvider(app: firebaseApp)?.getToken(completion: { token, error in
-      if let token = token {
-        print("DeviceCheck token: \(token.token), expiration date: \(token.expirationDate)")
-      }
-
-      if let error = error {
-        print("DeviceCheck error: \((error as NSError).userInfo)")
-      }
-    })
-
-    if let debugProvider = FIRAppCheckDebugProvider(app: firebaseApp) {
-      print("Debug token: \(debugProvider.currentDebugToken())")
+    requestDeviceCheckToken()
 
-      debugProvider.getToken(completion: { token, error in
-        if let token = token {
-          print("Debug FAC token: \(token.token), expiration date: \(token.expirationDate)")
-        }
+    requestDebugToken()
 
-        if let error = error {
-          print("Debug error: \(error)")
-        }
-      })
+    if #available(iOS 14.0, *) {
+      requestAppAttestToken()
     }
 
     return true
@@ -76,4 +56,64 @@ class AppDelegate: UIResponder, UIApplicationDelegate {
     // If any sessions were discarded while the application was not running, this will be called shortly after application:didFinishLaunchingWithOptions.
     // Use this method to release any resources that were specific to the discarded scenes, as they will not return.
   }
+
+  // MARK: App Check providers
+
+  func requestDeviceCheckToken() {
+    guard let firebaseApp = FirebaseApp.app() else {
+      return
+    }
+
+    DeviceCheckProvider(app: firebaseApp)?.getToken { token, error in
+      if let token = token {
+        print("DeviceCheck token: \(token.token), expiration date: \(token.expirationDate)")
+      }
+
+      if let error = error {
+        print("DeviceCheck error: \((error as NSError).userInfo)")
+      }
+    }
+  }
+
+  func requestDebugToken() {
+    guard let firebaseApp = FirebaseApp.app() else {
+      return
+    }
+
+    if let debugProvider = AppCheckDebugProvider(app: firebaseApp) {
+      print("Debug token: \(debugProvider.currentDebugToken())")
+
+      debugProvider.getToken { token, error in
+        if let token = token {
+          print("Debug FAC token: \(token.token), expiration date: \(token.expirationDate)")
+        }
+
+        if let error = error {
+          print("Debug error: \(error)")
+        }
+      }
+    }
+  }
+
+  @available(iOS 14.0, *)
+  func requestAppAttestToken() {
+    guard let firebaseApp = FirebaseApp.app() else {
+      return
+    }
+
+    guard let appAttestProvider = AppAttestProvider(app: firebaseApp) else {
+      print("Failed to instantiate AppAttestProvider")
+      return
+    }
+
+    appAttestProvider.getToken { token, error in
+      if let token = token {
+        print("App Attest FAC token: \(token.token), expiration date: \(token.expirationDate)")
+      }
+
+      if let error = error {
+        print("App Attest error: \(error)")
+      }
+    }
+  }
 }
diff --git a/FirebaseAppCheck/Apps/FIRAppCheckTestApp/Podfile b/FirebaseAppCheck/Apps/FIRAppCheckTestApp/Podfile
@@ -11,7 +11,5 @@ target 'FIRAppCheckTestApp' do
   pod 'FirebaseAppCheck', :path => '../../../'
 
   pod 'FirebaseCore', :path => '../../../'
-  pod 'GoogleUtilities', :path => '../../../'
   pod 'FirebaseCoreDiagnostics', :path => '../../../'
-  pod 'GoogleDataTransport', :path => '../../../'
 end
diff --git a/FirebaseAppCheck/CHANGELOG.md b/FirebaseAppCheck/CHANGELOG.md
@@ -1,2 +1,4 @@
+# 8.1.0 -- M97
+- [added] Apple's App Attest attestation provider support. (#8133)
 # v8.0.0 -- M95
 - [added] Firebase abuse reduction support SDK. (#7928, #7937, #7948)
diff --git a/FirebaseAppCheck/Sources/AppAttestProvider/API/FIRAppAttestAPIService.h b/FirebaseAppCheck/Sources/AppAttestProvider/API/FIRAppAttestAPIService.h
@@ -0,0 +1,65 @@
+/*
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+#import <Foundation/Foundation.h>
+
+@class FBLPromise<Result>;
+@class FIRAppAttestAttestationResponse;
+@class FIRAppCheckToken;
+@protocol FIRAppCheckAPIServiceProtocol;
+
+NS_ASSUME_NONNULL_BEGIN
+
+/// Methods to send API requests required for App Attest based attestation sequence.
+@protocol FIRAppAttestAPIServiceProtocol <NSObject>
+
+/// Request a random challenge from server.
+- (FBLPromise<NSData *> *)getRandomChallenge;
+
+/// Sends attestation data to Firebase backend for validation.
+/// @param attestation The App Attest key attestation data obtained from the method
+/// `-[DCAppAttestService attestKey:clientDataHash:completionHandler:]` using the random challenge
+/// received from Firebase backend.
+/// @param keyID The key ID used to generate the attestation.
+/// @param challenge The challenge used to generate the attestation.
+/// @return A promise that is fulfilled with a response object with an encrypted attestation
+/// artifact and an Firebase App Check token or rejected with an error.
+- (FBLPromise<FIRAppAttestAttestationResponse *> *)attestKeyWithAttestation:(NSData *)attestation
+                                                                      keyID:(NSString *)keyID
+                                                                  challenge:(NSData *)challenge;
+
+/// Exchanges attestation data (artifact & assertion) and a challenge for a FAC token.
+- (FBLPromise<FIRAppCheckToken *> *)getAppCheckTokenWithArtifact:(NSData *)artifact
+                                                       challenge:(NSData *)challenge
+                                                       assertion:(NSData *)assertion;
+
+@end
+
+/// A default implementation of `FIRAppAttestAPIServiceProtocol`.
+@interface FIRAppAttestAPIService : NSObject <FIRAppAttestAPIServiceProtocol>
+
+/// Default initializer.
+/// @param APIService An instance implementing `FIRAppCheckAPIServiceProtocol` to be used to send
+/// network requests to Firebase App Check backend.
+/// @param projectID A Firebase project ID for the requests (`FIRApp.options.projectID`).
+/// @param appID A Firebase app ID for the requests (`FIRApp.options.googleAppID`).
+- (instancetype)initWithAPIService:(id<FIRAppCheckAPIServiceProtocol>)APIService
+                         projectID:(NSString *)projectID
+                             appID:(NSString *)appID;
+
+@end
+
+NS_ASSUME_NONNULL_END