UNPKG

@firebase/auth/dist/index.webworker.esm5.js

Version:
353 kBJavaScriptView Raw
1import { SDK_VERSION, _getProvider, _registerComponent, registerVersion, getApp } from '@firebase/app';
2import { ErrorFactory, deepEqual, getUA, isBrowserExtension, isMobileCordova, isReactNative, FirebaseError, querystring, getModularInstance, base64Decode, createSubscribe, querystringDecode, extractQuerystring } from '@firebase/util';
3import { __spreadArray, __assign, __awaiter, __generator, __rest, __extends } from 'tslib';
4import { Logger, LogLevel } from '@firebase/logger';
5import { Component } from '@firebase/component';
6
7/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
23function _debugErrorMap() {
  var _a;
  return _a = {},
      _a["admin-restricted-operation" /* ADMIN_ONLY_OPERATION */] = 'This operation is restricted to administrators only.',
      _a["argument-error" /* ARGUMENT_ERROR */] = '',
      _a["app-not-authorized" /* APP_NOT_AUTHORIZED */] = "This app, identified by the domain where it's hosted, is not " +
          'authorized to use Firebase Authentication with the provided API key. ' +
          'Review your key configuration in the Google API console.',
      _a["app-not-installed" /* APP_NOT_INSTALLED */] = 'The requested mobile application corresponding to the identifier (' +
          'Android package name or iOS bundle ID) provided is not installed on ' +
          'this device.',
      _a["captcha-check-failed" /* CAPTCHA_CHECK_FAILED */] = 'The reCAPTCHA response token provided is either invalid, expired, ' +
          'already used or the domain associated with it does not match the list ' +
          'of whitelisted domains.',
      _a["code-expired" /* CODE_EXPIRED */] = 'The SMS code has expired. Please re-send the verification code to try ' +
          'again.',
      _a["cordova-not-ready" /* CORDOVA_NOT_READY */] = 'Cordova framework is not ready.',
      _a["cors-unsupported" /* CORS_UNSUPPORTED */] = 'This browser is not supported.',
      _a["credential-already-in-use" /* CREDENTIAL_ALREADY_IN_USE */] = 'This credential is already associated with a different user account.',
      _a["custom-token-mismatch" /* CREDENTIAL_MISMATCH */] = 'The custom token corresponds to a different audience.',
      _a["requires-recent-login" /* CREDENTIAL_TOO_OLD_LOGIN_AGAIN */] = 'This operation is sensitive and requires recent authentication. Log in ' +
          'again before retrying this request.',
      _a["dependent-sdk-initialized-before-auth" /* DEPENDENT_SDK_INIT_BEFORE_AUTH */] = 'Another Firebase SDK was initialized and is trying to use Auth before Auth is ' +
          'initialized. Please be sure to call `initializeAuth` or `getAuth` before ' +
          'starting any other Firebase SDK.',
      _a["dynamic-link-not-activated" /* DYNAMIC_LINK_NOT_ACTIVATED */] = 'Please activate Dynamic Links in the Firebase Console and agree to the terms and ' +
          'conditions.',
      _a["email-change-needs-verification" /* EMAIL_CHANGE_NEEDS_VERIFICATION */] = 'Multi-factor users must always have a verified email.',
      _a["email-already-in-use" /* EMAIL_EXISTS */] = 'The email address is already in use by another account.',
      _a["emulator-config-failed" /* EMULATOR_CONFIG_FAILED */] = 'Auth instance has already been used to make a network call. Auth can ' +
          'no longer be configured to use the emulator. Try calling ' +
          '"connectAuthEmulator()" sooner.',
      _a["expired-action-code" /* EXPIRED_OOB_CODE */] = 'The action code has expired.',
      _a["cancelled-popup-request" /* EXPIRED_POPUP_REQUEST */] = 'This operation has been cancelled due to another conflicting popup being opened.',
      _a["internal-error" /* INTERNAL_ERROR */] = 'An internal AuthError has occurred.',
      _a["invalid-app-credential" /* INVALID_APP_CREDENTIAL */] = 'The phone verification request contains an invalid application verifier.' +
          ' The reCAPTCHA token response is either invalid or expired.',
      _a["invalid-app-id" /* INVALID_APP_ID */] = 'The mobile app identifier is not registed for the current project.',
      _a["invalid-user-token" /* INVALID_AUTH */] = "This user's credential isn't valid for this project. This can happen " +
          "if the user's token has been tampered with, or if the user isn't for " +
          'the project associated with this API key.',
      _a["invalid-auth-event" /* INVALID_AUTH_EVENT */] = 'An internal AuthError has occurred.',
      _a["invalid-verification-code" /* INVALID_CODE */] = 'The SMS verification code used to create the phone auth credential is ' +
          'invalid. Please resend the verification code sms and be sure to use the ' +
          'verification code provided by the user.',
      _a["invalid-continue-uri" /* INVALID_CONTINUE_URI */] = 'The continue URL provided in the request is invalid.',
      _a["invalid-cordova-configuration" /* INVALID_CORDOVA_CONFIGURATION */] = 'The following Cordova plugins must be installed to enable OAuth sign-in: ' +
          'cordova-plugin-buildinfo, cordova-universal-links-plugin, ' +
          'cordova-plugin-browsertab, cordova-plugin-inappbrowser and ' +
          'cordova-plugin-customurlscheme.',
      _a["invalid-custom-token" /* INVALID_CUSTOM_TOKEN */] = 'The custom token format is incorrect. Please check the documentation.',
      _a["invalid-dynamic-link-domain" /* INVALID_DYNAMIC_LINK_DOMAIN */] = 'The provided dynamic link domain is not configured or authorized for the current project.',
      _a["invalid-email" /* INVALID_EMAIL */] = 'The email address is badly formatted.',
      _a["invalid-emulator-scheme" /* INVALID_EMULATOR_SCHEME */] = 'Emulator URL must start with a valid scheme (http:// or https://).',
      _a["invalid-api-key" /* INVALID_API_KEY */] = 'Your API key is invalid, please check you have copied it correctly.',
      _a["invalid-cert-hash" /* INVALID_CERT_HASH */] = 'The SHA-1 certificate hash provided is invalid.',
      _a["invalid-credential" /* INVALID_IDP_RESPONSE */] = 'The supplied auth credential is malformed or has expired.',
      _a["invalid-message-payload" /* INVALID_MESSAGE_PAYLOAD */] = 'The email template corresponding to this action contains invalid characters in its message. ' +
          'Please fix by going to the Auth email templates section in the Firebase Console.',
      _a["invalid-multi-factor-session" /* INVALID_MFA_SESSION */] = 'The request does not contain a valid proof of first factor successful sign-in.',
      _a["invalid-oauth-provider" /* INVALID_OAUTH_PROVIDER */] = 'EmailAuthProvider is not supported for this operation. This operation ' +
          'only supports OAuth providers.',
      _a["invalid-oauth-client-id" /* INVALID_OAUTH_CLIENT_ID */] = 'The OAuth client ID provided is either invalid or does not match the ' +
          'specified API key.',
      _a["unauthorized-domain" /* INVALID_ORIGIN */] = 'This domain is not authorized for OAuth operations for your Firebase ' +
          'project. Edit the list of authorized domains from the Firebase console.',
      _a["invalid-action-code" /* INVALID_OOB_CODE */] = 'The action code is invalid. This can happen if the code is malformed, ' +
          'expired, or has already been used.',
      _a["wrong-password" /* INVALID_PASSWORD */] = 'The password is invalid or the user does not have a password.',
      _a["invalid-persistence-type" /* INVALID_PERSISTENCE */] = 'The specified persistence type is invalid. It can only be local, session or none.',
      _a["invalid-phone-number" /* INVALID_PHONE_NUMBER */] = 'The format of the phone number provided is incorrect. Please enter the ' +
          'phone number in a format that can be parsed into E.164 format. E.164 ' +
          'phone numbers are written in the format [+][country code][subscriber ' +
          'number including area code].',
      _a["invalid-provider-id" /* INVALID_PROVIDER_ID */] = 'The specified provider ID is invalid.',
      _a["invalid-recipient-email" /* INVALID_RECIPIENT_EMAIL */] = 'The email corresponding to this action failed to send as the provided ' +
          'recipient email address is invalid.',
      _a["invalid-sender" /* INVALID_SENDER */] = 'The email template corresponding to this action contains an invalid sender email or name. ' +
          'Please fix by going to the Auth email templates section in the Firebase Console.',
      _a["invalid-verification-id" /* INVALID_SESSION_INFO */] = 'The verification ID used to create the phone auth credential is invalid.',
      _a["invalid-tenant-id" /* INVALID_TENANT_ID */] = "The Auth instance's tenant ID is invalid.",
      _a["login-blocked" /* LOGIN_BLOCKED */] = "Login blocked by user-provided method: {$originalMessage}",
      _a["missing-android-pkg-name" /* MISSING_ANDROID_PACKAGE_NAME */] = 'An Android Package Name must be provided if the Android App is required to be installed.',
      _a["auth-domain-config-required" /* MISSING_AUTH_DOMAIN */] = 'Be sure to include authDomain when calling firebase.initializeApp(), ' +
          'by following the instructions in the Firebase console.',
      _a["missing-app-credential" /* MISSING_APP_CREDENTIAL */] = 'The phone verification request is missing an application verifier ' +
          'assertion. A reCAPTCHA response token needs to be provided.',
      _a["missing-verification-code" /* MISSING_CODE */] = 'The phone auth credential was created with an empty SMS verification code.',
      _a["missing-continue-uri" /* MISSING_CONTINUE_URI */] = 'A continue URL must be provided in the request.',
      _a["missing-iframe-start" /* MISSING_IFRAME_START */] = 'An internal AuthError has occurred.',
      _a["missing-ios-bundle-id" /* MISSING_IOS_BUNDLE_ID */] = 'An iOS Bundle ID must be provided if an App Store ID is provided.',
      _a["missing-or-invalid-nonce" /* MISSING_OR_INVALID_NONCE */] = 'The request does not contain a valid nonce. This can occur if the ' +
          'SHA-256 hash of the provided raw nonce does not match the hashed nonce ' +
          'in the ID token payload.',
      _a["missing-multi-factor-info" /* MISSING_MFA_INFO */] = 'No second factor identifier is provided.',
      _a["missing-multi-factor-session" /* MISSING_MFA_SESSION */] = 'The request is missing proof of first factor successful sign-in.',
      _a["missing-phone-number" /* MISSING_PHONE_NUMBER */] = 'To send verification codes, provide a phone number for the recipient.',
      _a["missing-verification-id" /* MISSING_SESSION_INFO */] = 'The phone auth credential was created with an empty verification ID.',
      _a["app-deleted" /* MODULE_DESTROYED */] = 'This instance of FirebaseApp has been deleted.',
      _a["multi-factor-info-not-found" /* MFA_INFO_NOT_FOUND */] = 'The user does not have a second factor matching the identifier provided.',
      _a["multi-factor-auth-required" /* MFA_REQUIRED */] = 'Proof of ownership of a second factor is required to complete sign-in.',
      _a["account-exists-with-different-credential" /* NEED_CONFIRMATION */] = 'An account already exists with the same email address but different ' +
          'sign-in credentials. Sign in using a provider associated with this ' +
          'email address.',
      _a["network-request-failed" /* NETWORK_REQUEST_FAILED */] = 'A network AuthError (such as timeout, interrupted connection or unreachable host) has occurred.',
      _a["no-auth-event" /* NO_AUTH_EVENT */] = 'An internal AuthError has occurred.',
      _a["no-such-provider" /* NO_SUCH_PROVIDER */] = 'User was not linked to an account with the given provider.',
      _a["null-user" /* NULL_USER */] = 'A null user object was provided as the argument for an operation which ' +
          'requires a non-null user object.',
      _a["operation-not-allowed" /* OPERATION_NOT_ALLOWED */] = 'The given sign-in provider is disabled for this Firebase project. ' +
          'Enable it in the Firebase console, under the sign-in method tab of the ' +
          'Auth section.',
      _a["operation-not-supported-in-this-environment" /* OPERATION_NOT_SUPPORTED */] = 'This operation is not supported in the environment this application is ' +
          'running on. "location.protocol" must be http, https or chrome-extension' +
          ' and web storage must be enabled.',
      _a["popup-blocked" /* POPUP_BLOCKED */] = 'Unable to establish a connection with the popup. It may have been blocked by the browser.',
      _a["popup-closed-by-user" /* POPUP_CLOSED_BY_USER */] = 'The popup has been closed by the user before finalizing the operation.',
      _a["provider-already-linked" /* PROVIDER_ALREADY_LINKED */] = 'User can only be linked to one identity for the given provider.',
      _a["quota-exceeded" /* QUOTA_EXCEEDED */] = "The project's quota for this operation has been exceeded.",
      _a["redirect-cancelled-by-user" /* REDIRECT_CANCELLED_BY_USER */] = 'The redirect operation has been cancelled by the user before finalizing.',
      _a["redirect-operation-pending" /* REDIRECT_OPERATION_PENDING */] = 'A redirect sign-in operation is already pending.',
      _a["rejected-credential" /* REJECTED_CREDENTIAL */] = 'The request contains malformed or mismatching credentials.',
      _a["second-factor-already-in-use" /* SECOND_FACTOR_ALREADY_ENROLLED */] = 'The second factor is already enrolled on this account.',
      _a["maximum-second-factor-count-exceeded" /* SECOND_FACTOR_LIMIT_EXCEEDED */] = 'The maximum allowed number of second factors on a user has been exceeded.',
      _a["tenant-id-mismatch" /* TENANT_ID_MISMATCH */] = "The provided tenant ID does not match the Auth instance's tenant ID",
      _a["timeout" /* TIMEOUT */] = 'The operation has timed out.',
      _a["user-token-expired" /* TOKEN_EXPIRED */] = "The user's credential is no longer valid. The user must sign in again.",
      _a["too-many-requests" /* TOO_MANY_ATTEMPTS_TRY_LATER */] = 'We have blocked all requests from this device due to unusual activity. ' +
          'Try again later.',
      _a["unauthorized-continue-uri" /* UNAUTHORIZED_DOMAIN */] = 'The domain of the continue URL is not whitelisted.  Please whitelist ' +
          'the domain in the Firebase console.',
      _a["unsupported-first-factor" /* UNSUPPORTED_FIRST_FACTOR */] = 'Enrolling a second factor or signing in with a multi-factor account requires sign-in with a supported first factor.',
      _a["unsupported-persistence-type" /* UNSUPPORTED_PERSISTENCE */] = 'The current environment does not support the specified persistence type.',
      _a["unsupported-tenant-operation" /* UNSUPPORTED_TENANT_OPERATION */] = 'This operation is not supported in a multi-tenant context.',
      _a["unverified-email" /* UNVERIFIED_EMAIL */] = 'The operation requires a verified email.',
      _a["user-cancelled" /* USER_CANCELLED */] = 'The user did not grant your application the permissions it requested.',
      _a["user-not-found" /* USER_DELETED */] = 'There is no user record corresponding to this identifier. The user may ' +
          'have been deleted.',
      _a["user-disabled" /* USER_DISABLED */] = 'The user account has been disabled by an administrator.',
      _a["user-mismatch" /* USER_MISMATCH */] = 'The supplied credentials do not correspond to the previously signed in user.',
      _a["user-signed-out" /* USER_SIGNED_OUT */] = '',
      _a["weak-password" /* WEAK_PASSWORD */] = 'The password must be 6 characters long or more.',
      _a["web-storage-unsupported" /* WEB_STORAGE_UNSUPPORTED */] = 'This browser is not supported or 3rd party cookies and data may be disabled.',
      _a["already-initialized" /* ALREADY_INITIALIZED */] = 'initializeAuth() has already been called with ' +
          'different options. To avoid this error, call initializeAuth() with the ' +
          'same options as when it was originally called, or call getAuth() to return the' +
          ' already initialized instance.',
      _a;
171}
172function _prodErrorMap() {
  var _a;
  // We will include this one message in the prod error map since by the very
  // nature of this error, developers will never be able to see the message
  // using the debugErrorMap (which is installed during auth initialization).
  return _a = {},
      _a["dependent-sdk-initialized-before-auth" /* DEPENDENT_SDK_INIT_BEFORE_AUTH */] = 'Another Firebase SDK was initialized and is trying to use Auth before Auth is ' +
          'initialized. Please be sure to call `initializeAuth` or `getAuth` before ' +
          'starting any other Firebase SDK.',
      _a;
182}
183/**
* A verbose error map with detailed descriptions for most error codes.
*
* See discussion at {@link AuthErrorMap}
*
* @public
*/
190var debugErrorMap = _debugErrorMap;
191/**
* A minimal error map with all verbose error messages stripped.
*
* See discussion at {@link AuthErrorMap}
*
* @public
*/
198var prodErrorMap = _prodErrorMap;
199var _DEFAULT_AUTH_ERROR_FACTORY = new ErrorFactory('auth', 'Firebase', _prodErrorMap());
200/**
* A map of potential `Auth` error codes, for easier comparison with errors
* thrown by the SDK.
*
* @remarks
* Note that you can't tree-shake individual keys
* in the map, so by using the map you might substantially increase your
* bundle size.
*
* @public
*/
211var AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY = {
  ADMIN_ONLY_OPERATION: 'auth/admin-restricted-operation',
  ARGUMENT_ERROR: 'auth/argument-error',
  APP_NOT_AUTHORIZED: 'auth/app-not-authorized',
  APP_NOT_INSTALLED: 'auth/app-not-installed',
  CAPTCHA_CHECK_FAILED: 'auth/captcha-check-failed',
  CODE_EXPIRED: 'auth/code-expired',
  CORDOVA_NOT_READY: 'auth/cordova-not-ready',
  CORS_UNSUPPORTED: 'auth/cors-unsupported',
  CREDENTIAL_ALREADY_IN_USE: 'auth/credential-already-in-use',
  CREDENTIAL_MISMATCH: 'auth/custom-token-mismatch',
  CREDENTIAL_TOO_OLD_LOGIN_AGAIN: 'auth/requires-recent-login',
  DEPENDENT_SDK_INIT_BEFORE_AUTH: 'auth/dependent-sdk-initialized-before-auth',
  DYNAMIC_LINK_NOT_ACTIVATED: 'auth/dynamic-link-not-activated',
  EMAIL_CHANGE_NEEDS_VERIFICATION: 'auth/email-change-needs-verification',
  EMAIL_EXISTS: 'auth/email-already-in-use',
  EMULATOR_CONFIG_FAILED: 'auth/emulator-config-failed',
  EXPIRED_OOB_CODE: 'auth/expired-action-code',
  EXPIRED_POPUP_REQUEST: 'auth/cancelled-popup-request',
  INTERNAL_ERROR: 'auth/internal-error',
  INVALID_API_KEY: 'auth/invalid-api-key',
  INVALID_APP_CREDENTIAL: 'auth/invalid-app-credential',
  INVALID_APP_ID: 'auth/invalid-app-id',
  INVALID_AUTH: 'auth/invalid-user-token',
  INVALID_AUTH_EVENT: 'auth/invalid-auth-event',
  INVALID_CERT_HASH: 'auth/invalid-cert-hash',
  INVALID_CODE: 'auth/invalid-verification-code',
  INVALID_CONTINUE_URI: 'auth/invalid-continue-uri',
  INVALID_CORDOVA_CONFIGURATION: 'auth/invalid-cordova-configuration',
  INVALID_CUSTOM_TOKEN: 'auth/invalid-custom-token',
  INVALID_DYNAMIC_LINK_DOMAIN: 'auth/invalid-dynamic-link-domain',
  INVALID_EMAIL: 'auth/invalid-email',
  INVALID_EMULATOR_SCHEME: 'auth/invalid-emulator-scheme',
  INVALID_IDP_RESPONSE: 'auth/invalid-credential',
  INVALID_MESSAGE_PAYLOAD: 'auth/invalid-message-payload',
  INVALID_MFA_SESSION: 'auth/invalid-multi-factor-session',
  INVALID_OAUTH_CLIENT_ID: 'auth/invalid-oauth-client-id',
  INVALID_OAUTH_PROVIDER: 'auth/invalid-oauth-provider',
  INVALID_OOB_CODE: 'auth/invalid-action-code',
  INVALID_ORIGIN: 'auth/unauthorized-domain',
  INVALID_PASSWORD: 'auth/wrong-password',
  INVALID_PERSISTENCE: 'auth/invalid-persistence-type',
  INVALID_PHONE_NUMBER: 'auth/invalid-phone-number',
  INVALID_PROVIDER_ID: 'auth/invalid-provider-id',
  INVALID_RECIPIENT_EMAIL: 'auth/invalid-recipient-email',
  INVALID_SENDER: 'auth/invalid-sender',
  INVALID_SESSION_INFO: 'auth/invalid-verification-id',
  INVALID_TENANT_ID: 'auth/invalid-tenant-id',
  MFA_INFO_NOT_FOUND: 'auth/multi-factor-info-not-found',
  MFA_REQUIRED: 'auth/multi-factor-auth-required',
  MISSING_ANDROID_PACKAGE_NAME: 'auth/missing-android-pkg-name',
  MISSING_APP_CREDENTIAL: 'auth/missing-app-credential',
  MISSING_AUTH_DOMAIN: 'auth/auth-domain-config-required',
  MISSING_CODE: 'auth/missing-verification-code',
  MISSING_CONTINUE_URI: 'auth/missing-continue-uri',
  MISSING_IFRAME_START: 'auth/missing-iframe-start',
  MISSING_IOS_BUNDLE_ID: 'auth/missing-ios-bundle-id',
  MISSING_OR_INVALID_NONCE: 'auth/missing-or-invalid-nonce',
  MISSING_MFA_INFO: 'auth/missing-multi-factor-info',
  MISSING_MFA_SESSION: 'auth/missing-multi-factor-session',
  MISSING_PHONE_NUMBER: 'auth/missing-phone-number',
  MISSING_SESSION_INFO: 'auth/missing-verification-id',
  MODULE_DESTROYED: 'auth/app-deleted',
  NEED_CONFIRMATION: 'auth/account-exists-with-different-credential',
  NETWORK_REQUEST_FAILED: 'auth/network-request-failed',
  NULL_USER: 'auth/null-user',
  NO_AUTH_EVENT: 'auth/no-auth-event',
  NO_SUCH_PROVIDER: 'auth/no-such-provider',
  OPERATION_NOT_ALLOWED: 'auth/operation-not-allowed',
  OPERATION_NOT_SUPPORTED: 'auth/operation-not-supported-in-this-environment',
  POPUP_BLOCKED: 'auth/popup-blocked',
  POPUP_CLOSED_BY_USER: 'auth/popup-closed-by-user',
  PROVIDER_ALREADY_LINKED: 'auth/provider-already-linked',
  QUOTA_EXCEEDED: 'auth/quota-exceeded',
  REDIRECT_CANCELLED_BY_USER: 'auth/redirect-cancelled-by-user',
  REDIRECT_OPERATION_PENDING: 'auth/redirect-operation-pending',
  REJECTED_CREDENTIAL: 'auth/rejected-credential',
  SECOND_FACTOR_ALREADY_ENROLLED: 'auth/second-factor-already-in-use',
  SECOND_FACTOR_LIMIT_EXCEEDED: 'auth/maximum-second-factor-count-exceeded',
  TENANT_ID_MISMATCH: 'auth/tenant-id-mismatch',
  TIMEOUT: 'auth/timeout',
  TOKEN_EXPIRED: 'auth/user-token-expired',
  TOO_MANY_ATTEMPTS_TRY_LATER: 'auth/too-many-requests',
  UNAUTHORIZED_DOMAIN: 'auth/unauthorized-continue-uri',
  UNSUPPORTED_FIRST_FACTOR: 'auth/unsupported-first-factor',
  UNSUPPORTED_PERSISTENCE: 'auth/unsupported-persistence-type',
  UNSUPPORTED_TENANT_OPERATION: 'auth/unsupported-tenant-operation',
  UNVERIFIED_EMAIL: 'auth/unverified-email',
  USER_CANCELLED: 'auth/user-cancelled',
  USER_DELETED: 'auth/user-not-found',
  USER_DISABLED: 'auth/user-disabled',
  USER_MISMATCH: 'auth/user-mismatch',
  USER_SIGNED_OUT: 'auth/user-signed-out',
  WEAK_PASSWORD: 'auth/weak-password',
  WEB_STORAGE_UNSUPPORTED: 'auth/web-storage-unsupported',
  ALREADY_INITIALIZED: 'auth/already-initialized'
307};
308
309/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
325var logClient = new Logger('@firebase/auth');
326function _logError(msg) {
  var args = [];
  for (var _i = 1; _i < arguments.length; _i++) {
      args[_i - 1] = arguments[_i];
  }
  if (logClient.logLevel <= LogLevel.ERROR) {
      logClient.error.apply(logClient, __spreadArray(["Auth (" + SDK_VERSION + "): " + msg], args));
  }
334}
335
336/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
352function _fail(authOrCode) {
  var rest = [];
  for (var _i = 1; _i < arguments.length; _i++) {
      rest[_i - 1] = arguments[_i];
  }
  throw createErrorInternal.apply(void 0, __spreadArray([authOrCode], rest));
358}
359function _createError(authOrCode) {
  var rest = [];
  for (var _i = 1; _i < arguments.length; _i++) {
      rest[_i - 1] = arguments[_i];
  }
  return createErrorInternal.apply(void 0, __spreadArray([authOrCode], rest));
365}
366function _errorWithCustomMessage(auth, code, message) {
  var _a;
  var errorMap = __assign(__assign({}, prodErrorMap()), (_a = {}, _a[code] = message, _a));
  var factory = new ErrorFactory('auth', 'Firebase', errorMap);
  return factory.create(code, {
      appName: auth.name,
  });
373}
374function createErrorInternal(authOrCode) {
  var _a;
  var rest = [];
  for (var _i = 1; _i < arguments.length; _i++) {
      rest[_i - 1] = arguments[_i];
  }
  if (typeof authOrCode !== 'string') {
      var code = rest[0];
      var fullParams = __spreadArray([], rest.slice(1));
      if (fullParams[0]) {
          fullParams[0].appName = authOrCode.name;
      }
      return (_a = authOrCode._errorFactory).create.apply(_a, __spreadArray([code], fullParams));
  }
  return _DEFAULT_AUTH_ERROR_FACTORY.create.apply(_DEFAULT_AUTH_ERROR_FACTORY, __spreadArray([authOrCode], rest));
389}
390function _assert(assertion, authOrCode) {
  var rest = [];
  for (var _i = 2; _i < arguments.length; _i++) {
      rest[_i - 2] = arguments[_i];
  }
  if (!assertion) {
      throw createErrorInternal.apply(void 0, __spreadArray([authOrCode], rest));
  }
398}
399/**
* Unconditionally fails, throwing an internal error with the given message.
*
* @param failure type of failure encountered
* @throws Error
*/
405function debugFail(failure) {
  // Log the failure in addition to throw an exception, just in case the
  // exception is swallowed.
  var message = "INTERNAL ASSERTION FAILED: " + failure;
  _logError(message);
  // NOTE: We don't use FirebaseError here because these are internal failures
  // that cannot be handled by the user. (Also it would create a circular
  // dependency between the error and assert modules which doesn't work.)
  throw new Error(message);
414}
415/**
* Fails if the given assertion condition is false, throwing an Error with the
* given message if it did.
*
* @param assertion
* @param message
*/
422function debugAssert(assertion, message) {
  if (!assertion) {
      debugFail(message);
  }
426}
427
428/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
444var instanceCache = new Map();
445function _getInstance(cls) {
  debugAssert(cls instanceof Function, 'Expected a class definition');
  var instance = instanceCache.get(cls);
  if (instance) {
      debugAssert(instance instanceof cls, 'Instance stored in cache mismatched with class');
      return instance;
  }
  instance = new cls();
  instanceCache.set(cls, instance);
  return instance;
455}
456
457/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
473/**
* Initializes an {@link Auth} instance with fine-grained control over
* {@link Dependencies}.
*
* @remarks
*
* This function allows more control over the {@link Auth} instance than
* {@link getAuth}. `getAuth` uses platform-specific defaults to supply
* the {@link Dependencies}. In general, `getAuth` is the easiest way to
* initialize Auth and works for most use cases. Use `initializeAuth` if you
* need control over which persistence layer is used, or to minimize bundle
* size if you're not using either `signInWithPopup` or `signInWithRedirect`.
*
* For example, if your app only uses anonymous accounts and you only want
* accounts saved for the current session, initialize `Auth` with:
*
* ```js
* const auth = initializeAuth(app, {
*   persistence: browserSessionPersistence,
*   popupRedirectResolver: undefined,
* });
* ```
*
* @public
*/
498function initializeAuth(app, deps) {
  var provider = _getProvider(app, 'auth');
  if (provider.isInitialized()) {
      var auth_1 = provider.getImmediate();
      var initialOptions = provider.getOptions();
      if (deepEqual(initialOptions, deps !== null && deps !== void 0 ? deps : {})) {
          return auth_1;
      }
      else {
          _fail(auth_1, "already-initialized" /* ALREADY_INITIALIZED */);
      }
  }
  var auth = provider.initialize({ options: deps });
  return auth;
512}
513function _initializeAuthInstance(auth, deps) {
  var persistence = (deps === null || deps === void 0 ? void 0 : deps.persistence) || [];
  var hierarchy = (Array.isArray(persistence) ? persistence : [persistence]).map(_getInstance);
  if (deps === null || deps === void 0 ? void 0 : deps.errorMap) {
      auth._updateErrorMap(deps.errorMap);
  }
  // This promise is intended to float; auth initialization happens in the
  // background, meanwhile the auth object may be used by the app.
  // eslint-disable-next-line @typescript-eslint/no-floating-promises
  auth._initializeWithPersistence(hierarchy, deps === null || deps === void 0 ? void 0 : deps.popupRedirectResolver);
523}
524
525var name = "@firebase/auth";
526var version = "0.20.1";
527
528/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
544/**
* Determine the browser for the purposes of reporting usage to the API
*/
547function _getBrowserName(userAgent) {
  var ua = userAgent.toLowerCase();
  if (ua.includes('opera/') || ua.includes('opr/') || ua.includes('opios/')) {
      return "Opera" /* OPERA */;
  }
  else if (_isIEMobile(ua)) {
      // Windows phone IEMobile browser.
      return "IEMobile" /* IEMOBILE */;
  }
  else if (ua.includes('msie') || ua.includes('trident/')) {
      return "IE" /* IE */;
  }
  else if (ua.includes('edge/')) {
      return "Edge" /* EDGE */;
  }
  else if (_isFirefox(ua)) {
      return "Firefox" /* FIREFOX */;
  }
  else if (ua.includes('silk/')) {
      return "Silk" /* SILK */;
  }
  else if (_isBlackBerry(ua)) {
      // Blackberry browser.
      return "Blackberry" /* BLACKBERRY */;
  }
  else if (_isWebOS(ua)) {
      // WebOS default browser.
      return "Webos" /* WEBOS */;
  }
  else if (_isSafari(ua)) {
      return "Safari" /* SAFARI */;
  }
  else if ((ua.includes('chrome/') || _isChromeIOS(ua)) &&
      !ua.includes('edge/')) {
      return "Chrome" /* CHROME */;
  }
  else if (_isAndroid(ua)) {
      // Android stock browser.
      return "Android" /* ANDROID */;
  }
  else {
      // Most modern browsers have name/version at end of user agent string.
      var re = /([a-zA-Z\d\.]+)\/[a-zA-Z\d\.]*$/;
      var matches = userAgent.match(re);
      if ((matches === null || matches === void 0 ? void 0 : matches.length) === 2) {
          return matches[1];
      }
  }
  return "Other" /* OTHER */;
596}
597function _isFirefox(ua) {
  if (ua === void 0) { ua = getUA(); }
  return /firefox\//i.test(ua);
600}
601function _isSafari(userAgent) {
  if (userAgent === void 0) { userAgent = getUA(); }
  var ua = userAgent.toLowerCase();
  return (ua.includes('safari/') &&
      !ua.includes('chrome/') &&
      !ua.includes('crios/') &&
      !ua.includes('android'));
608}
609function _isChromeIOS(ua) {
  if (ua === void 0) { ua = getUA(); }
  return /crios\//i.test(ua);
612}
613function _isIEMobile(ua) {
  if (ua === void 0) { ua = getUA(); }
  return /iemobile/i.test(ua);
616}
617function _isAndroid(ua) {
  if (ua === void 0) { ua = getUA(); }
  return /android/i.test(ua);
620}
621function _isBlackBerry(ua) {
  if (ua === void 0) { ua = getUA(); }
  return /blackberry/i.test(ua);
624}
625function _isWebOS(ua) {
  if (ua === void 0) { ua = getUA(); }
  return /webos/i.test(ua);
628}
629
630/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
646/*
* Determine the SDK version string
*/
649function _getClientVersion(clientPlatform, frameworks) {
  if (frameworks === void 0) { frameworks = []; }
  var reportedPlatform;
  switch (clientPlatform) {
      case "Browser" /* BROWSER */:
          // In a browser environment, report the browser name.
          reportedPlatform = _getBrowserName(getUA());
          break;
      case "Worker" /* WORKER */:
          // Technically a worker runs from a browser but we need to differentiate a
          // worker from a browser.
          // For example: Chrome-Worker/JsCore/4.9.1/FirebaseCore-web.
          reportedPlatform = _getBrowserName(getUA()) + "-" + clientPlatform;
          break;
      default:
          reportedPlatform = clientPlatform;
  }
  var reportedFrameworks = frameworks.length
      ? frameworks.join(',')
      : 'FirebaseCore-web'; /* default value if no other framework is used */
  return reportedPlatform + "/" + "JsCore" /* CORE */ + "/" + SDK_VERSION + "/" + reportedFrameworks;
670}
671
672/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
688function _getCurrentUrl() {
  var _a;
  return (typeof self !== 'undefined' && ((_a = self.location) === null || _a === void 0 ? void 0 : _a.href)) || '';
691}
692function _isHttpOrHttps() {
  return _getCurrentScheme() === 'http:' || _getCurrentScheme() === 'https:';
694}
695function _getCurrentScheme() {
  var _a;
  return (typeof self !== 'undefined' && ((_a = self.location) === null || _a === void 0 ? void 0 : _a.protocol)) || null;
698}
699
700/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
716/**
* Determine whether the browser is working online
*/
719function _isOnline() {
  if (typeof navigator !== 'undefined' &&
      navigator &&
      'onLine' in navigator &&
      typeof navigator.onLine === 'boolean' &&
      // Apply only for traditional web apps and Chrome extensions.
      // This is especially true for Cordova apps which have unreliable
      // navigator.onLine behavior unless cordova-plugin-network-information is
      // installed which overwrites the native navigator.onLine value and
      // defines navigator.connection.
      (_isHttpOrHttps() || isBrowserExtension() || 'connection' in navigator)) {
      return navigator.onLine;
  }
  // If we can't determine the state, assume it is online.
  return true;
734}
735function _getUserLanguage() {
  if (typeof navigator === 'undefined') {
      return null;
  }
  var navigatorLanguage = navigator;
  return (
  // Most reliable, but only supported in Chrome/Firefox.
  (navigatorLanguage.languages && navigatorLanguage.languages[0]) ||
      // Supported in most browsers, but returns the language of the browser
      // UI, not the language set in browser settings.
      navigatorLanguage.language ||
      // Couldn't determine language.
      null);
748}
749
750/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
766/**
* A structure to help pick between a range of long and short delay durations
* depending on the current environment. In general, the long delay is used for
* mobile environments whereas short delays are used for desktop environments.
*/
771var Delay = /** @class */ (function () {
  function Delay(shortDelay, longDelay) {
      this.shortDelay = shortDelay;
      this.longDelay = longDelay;
      // Internal error when improperly initialized.
      debugAssert(longDelay > shortDelay, 'Short delay should be less than long delay!');
      this.isMobile = isMobileCordova() || isReactNative();
  }
  Delay.prototype.get = function () {
      if (!_isOnline()) {
          // Pick the shorter timeout.
          return Math.min(5000 /* OFFLINE */, this.shortDelay);
      }
      // If running in a mobile environment, return the long delay, otherwise
      // return the short delay.
      // This could be improved in the future to dynamically change based on other
      // variables instead of just reading the current environment.
      return this.isMobile ? this.longDelay : this.shortDelay;
  };
  return Delay;
791}());
792
793/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
809function _emulatorUrl(config, path) {
  debugAssert(config.emulator, 'Emulator should always be set here');
  var url = config.emulator.url;
  if (!path) {
      return url;
  }
  return "" + url + (path.startsWith('/') ? path.slice(1) : path);
816}
817
818/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
834var FetchProvider = /** @class */ (function () {
  function FetchProvider() {
  }
  FetchProvider.initialize = function (fetchImpl, headersImpl, responseImpl) {
      this.fetchImpl = fetchImpl;
      if (headersImpl) {
          this.headersImpl = headersImpl;
      }
      if (responseImpl) {
          this.responseImpl = responseImpl;
      }
  };
  FetchProvider.fetch = function () {
      if (this.fetchImpl) {
          return this.fetchImpl;
      }
      if (typeof self !== 'undefined' && 'fetch' in self) {
          return self.fetch;
      }
      debugFail('Could not find fetch implementation, make sure you call FetchProvider.initialize() with an appropriate polyfill');
  };
  FetchProvider.headers = function () {
      if (this.headersImpl) {
          return this.headersImpl;
      }
      if (typeof self !== 'undefined' && 'Headers' in self) {
          return self.Headers;
      }
      debugFail('Could not find Headers implementation, make sure you call FetchProvider.initialize() with an appropriate polyfill');
  };
  FetchProvider.response = function () {
      if (this.responseImpl) {
          return this.responseImpl;
      }
      if (typeof self !== 'undefined' && 'Response' in self) {
          return self.Response;
      }
      debugFail('Could not find Response implementation, make sure you call FetchProvider.initialize() with an appropriate polyfill');
  };
  return FetchProvider;
874}());
875
876/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
892var _a$1;
893/**
* Map from errors returned by the server to errors to developer visible errors
*/
896var SERVER_ERROR_MAP = (_a$1 = {},
  // Custom token errors.
  _a$1["CREDENTIAL_MISMATCH" /* CREDENTIAL_MISMATCH */] = "custom-token-mismatch" /* CREDENTIAL_MISMATCH */,
  // This can only happen if the SDK sends a bad request.
  _a$1["MISSING_CUSTOM_TOKEN" /* MISSING_CUSTOM_TOKEN */] = "internal-error" /* INTERNAL_ERROR */,
  // Create Auth URI errors.
  _a$1["INVALID_IDENTIFIER" /* INVALID_IDENTIFIER */] = "invalid-email" /* INVALID_EMAIL */,
  // This can only happen if the SDK sends a bad request.
  _a$1["MISSING_CONTINUE_URI" /* MISSING_CONTINUE_URI */] = "internal-error" /* INTERNAL_ERROR */,
  // Sign in with email and password errors (some apply to sign up too).
  _a$1["INVALID_PASSWORD" /* INVALID_PASSWORD */] = "wrong-password" /* INVALID_PASSWORD */,
  // This can only happen if the SDK sends a bad request.
  _a$1["MISSING_PASSWORD" /* MISSING_PASSWORD */] = "internal-error" /* INTERNAL_ERROR */,
  // Sign up with email and password errors.
  _a$1["EMAIL_EXISTS" /* EMAIL_EXISTS */] = "email-already-in-use" /* EMAIL_EXISTS */,
  _a$1["PASSWORD_LOGIN_DISABLED" /* PASSWORD_LOGIN_DISABLED */] = "operation-not-allowed" /* OPERATION_NOT_ALLOWED */,
  // Verify assertion for sign in with credential errors:
  _a$1["INVALID_IDP_RESPONSE" /* INVALID_IDP_RESPONSE */] = "invalid-credential" /* INVALID_IDP_RESPONSE */,
  _a$1["INVALID_PENDING_TOKEN" /* INVALID_PENDING_TOKEN */] = "invalid-credential" /* INVALID_IDP_RESPONSE */,
  _a$1["FEDERATED_USER_ID_ALREADY_LINKED" /* FEDERATED_USER_ID_ALREADY_LINKED */] = "credential-already-in-use" /* CREDENTIAL_ALREADY_IN_USE */,
  // This can only happen if the SDK sends a bad request.
  _a$1["MISSING_REQ_TYPE" /* MISSING_REQ_TYPE */] = "internal-error" /* INTERNAL_ERROR */,
  // Send Password reset email errors:
  _a$1["EMAIL_NOT_FOUND" /* EMAIL_NOT_FOUND */] = "user-not-found" /* USER_DELETED */,
  _a$1["RESET_PASSWORD_EXCEED_LIMIT" /* RESET_PASSWORD_EXCEED_LIMIT */] = "too-many-requests" /* TOO_MANY_ATTEMPTS_TRY_LATER */,
  _a$1["EXPIRED_OOB_CODE" /* EXPIRED_OOB_CODE */] = "expired-action-code" /* EXPIRED_OOB_CODE */,
  _a$1["INVALID_OOB_CODE" /* INVALID_OOB_CODE */] = "invalid-action-code" /* INVALID_OOB_CODE */,
  // This can only happen if the SDK sends a bad request.
  _a$1["MISSING_OOB_CODE" /* MISSING_OOB_CODE */] = "internal-error" /* INTERNAL_ERROR */,
  // Operations that require ID token in request:
  _a$1["CREDENTIAL_TOO_OLD_LOGIN_AGAIN" /* CREDENTIAL_TOO_OLD_LOGIN_AGAIN */] = "requires-recent-login" /* CREDENTIAL_TOO_OLD_LOGIN_AGAIN */,
  _a$1["INVALID_ID_TOKEN" /* INVALID_ID_TOKEN */] = "invalid-user-token" /* INVALID_AUTH */,
  _a$1["TOKEN_EXPIRED" /* TOKEN_EXPIRED */] = "user-token-expired" /* TOKEN_EXPIRED */,
  _a$1["USER_NOT_FOUND" /* USER_NOT_FOUND */] = "user-token-expired" /* TOKEN_EXPIRED */,
  // Other errors.
  _a$1["TOO_MANY_ATTEMPTS_TRY_LATER" /* TOO_MANY_ATTEMPTS_TRY_LATER */] = "too-many-requests" /* TOO_MANY_ATTEMPTS_TRY_LATER */,
  // Phone Auth related errors.
  _a$1["INVALID_CODE" /* INVALID_CODE */] = "invalid-verification-code" /* INVALID_CODE */,
  _a$1["INVALID_SESSION_INFO" /* INVALID_SESSION_INFO */] = "invalid-verification-id" /* INVALID_SESSION_INFO */,
  _a$1["INVALID_TEMPORARY_PROOF" /* INVALID_TEMPORARY_PROOF */] = "invalid-credential" /* INVALID_IDP_RESPONSE */,
  _a$1["MISSING_SESSION_INFO" /* MISSING_SESSION_INFO */] = "missing-verification-id" /* MISSING_SESSION_INFO */,
  _a$1["SESSION_EXPIRED" /* SESSION_EXPIRED */] = "code-expired" /* CODE_EXPIRED */,
  // Other action code errors when additional settings passed.
  // MISSING_CONTINUE_URI is getting mapped to INTERNAL_ERROR above.
  // This is OK as this error will be caught by client side validation.
  _a$1["MISSING_ANDROID_PACKAGE_NAME" /* MISSING_ANDROID_PACKAGE_NAME */] = "missing-android-pkg-name" /* MISSING_ANDROID_PACKAGE_NAME */,
  _a$1["UNAUTHORIZED_DOMAIN" /* UNAUTHORIZED_DOMAIN */] = "unauthorized-continue-uri" /* UNAUTHORIZED_DOMAIN */,
  // getProjectConfig errors when clientId is passed.
  _a$1["INVALID_OAUTH_CLIENT_ID" /* INVALID_OAUTH_CLIENT_ID */] = "invalid-oauth-client-id" /* INVALID_OAUTH_CLIENT_ID */,
  // User actions (sign-up or deletion) disabled errors.
  _a$1["ADMIN_ONLY_OPERATION" /* ADMIN_ONLY_OPERATION */] = "admin-restricted-operation" /* ADMIN_ONLY_OPERATION */,
  // Multi factor related errors.
  _a$1["INVALID_MFA_PENDING_CREDENTIAL" /* INVALID_MFA_PENDING_CREDENTIAL */] = "invalid-multi-factor-session" /* INVALID_MFA_SESSION */,
  _a$1["MFA_ENROLLMENT_NOT_FOUND" /* MFA_ENROLLMENT_NOT_FOUND */] = "multi-factor-info-not-found" /* MFA_INFO_NOT_FOUND */,
  _a$1["MISSING_MFA_ENROLLMENT_ID" /* MISSING_MFA_ENROLLMENT_ID */] = "missing-multi-factor-info" /* MISSING_MFA_INFO */,
  _a$1["MISSING_MFA_PENDING_CREDENTIAL" /* MISSING_MFA_PENDING_CREDENTIAL */] = "missing-multi-factor-session" /* MISSING_MFA_SESSION */,
  _a$1["SECOND_FACTOR_EXISTS" /* SECOND_FACTOR_EXISTS */] = "second-factor-already-in-use" /* SECOND_FACTOR_ALREADY_ENROLLED */,
  _a$1["SECOND_FACTOR_LIMIT_EXCEEDED" /* SECOND_FACTOR_LIMIT_EXCEEDED */] = "maximum-second-factor-count-exceeded" /* SECOND_FACTOR_LIMIT_EXCEEDED */,
  // Blocking functions related errors.
  _a$1["BLOCKING_FUNCTION_ERROR_RESPONSE" /* BLOCKING_FUNCTION_ERROR_RESPONSE */] = "internal-error" /* INTERNAL_ERROR */,
  _a$1);
957
958/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
974var DEFAULT_API_TIMEOUT_MS = new Delay(30000, 60000);
975function _addTidIfNecessary(auth, request) {
  if (auth.tenantId && !request.tenantId) {
      return __assign(__assign({}, request), { tenantId: auth.tenantId });
  }
  return request;
980}
981function _performApiRequest(auth, method, path, request, customErrorMap) {
  if (customErrorMap === void 0) { customErrorMap = {}; }
  return __awaiter(this, void 0, void 0, function () {
      var _this = this;
      return __generator(this, function (_a) {
          return [2 /*return*/, _performFetchWithErrorHandling(auth, customErrorMap, function () { return __awaiter(_this, void 0, void 0, function () {
                  var body, params, query, headers;
                  return __generator(this, function (_a) {
                      switch (_a.label) {
                          case 0:
                              body = {};
                              params = {};
                              if (request) {
                                  if (method === "GET" /* GET */) {
                                      params = request;
                                  }
                                  else {
                                      body = {
                                          body: JSON.stringify(request)
                                      };
                                  }
                              }
                              query = querystring(__assign({ key: auth.config.apiKey }, params)).slice(1);
                              return [4 /*yield*/, auth._getAdditionalHeaders()];
                          case 1:
                              headers = _a.sent();
                              headers["Content-Type" /* CONTENT_TYPE */] = 'application/json';
                              if (auth.languageCode) {
                                  headers["X-Firebase-Locale" /* X_FIREBASE_LOCALE */] = auth.languageCode;
                              }
                              return [2 /*return*/, FetchProvider.fetch()(_getFinalTarget(auth, auth.config.apiHost, path, query), __assign({ method: method,
                                      headers: headers, referrerPolicy: 'no-referrer' }, body))];
                      }
                  });
              }); })];
      });
  });
1018}
1019function _performFetchWithErrorHandling(auth, customErrorMap, fetchFn) {
  return __awaiter(this, void 0, void 0, function () {
      var errorMap, networkTimeout, response, json, errorMessage, _a, serverErrorCode, serverErrorMessage, authError, e_1;
      return __generator(this, function (_b) {
          switch (_b.label) {
              case 0:
                  auth._canInitEmulator = false;
                  errorMap = __assign(__assign({}, SERVER_ERROR_MAP), customErrorMap);
                  _b.label = 1;
              case 1:
                  _b.trys.push([1, 4, , 5]);
                  networkTimeout = new NetworkTimeout(auth);
                  return [4 /*yield*/, Promise.race([
                          fetchFn(),
                          networkTimeout.promise
                      ])];
              case 2:
                  response = _b.sent();
                  // If we've reached this point, the fetch succeeded and the networkTimeout
                  // didn't throw; clear the network timeout delay so that Node won't hang
                  networkTimeout.clearNetworkTimeout();
                  return [4 /*yield*/, response.json()];
              case 3:
                  json = _b.sent();
                  if ('needConfirmation' in json) {
                      throw _makeTaggedError(auth, "account-exists-with-different-credential" /* NEED_CONFIRMATION */, json);
                  }
                  if (response.ok && !('errorMessage' in json)) {
                      return [2 /*return*/, json];
                  }
                  else {
                      errorMessage = response.ok ? json.errorMessage : json.error.message;
                      _a = errorMessage.split(' : '), serverErrorCode = _a[0], serverErrorMessage = _a[1];
                      if (serverErrorCode === "FEDERATED_USER_ID_ALREADY_LINKED" /* FEDERATED_USER_ID_ALREADY_LINKED */) {
                          throw _makeTaggedError(auth, "credential-already-in-use" /* CREDENTIAL_ALREADY_IN_USE */, json);
                      }
                      else if (serverErrorCode === "EMAIL_EXISTS" /* EMAIL_EXISTS */) {
                          throw _makeTaggedError(auth, "email-already-in-use" /* EMAIL_EXISTS */, json);
                      }
                      authError = errorMap[serverErrorCode] ||
                          serverErrorCode
                              .toLowerCase()
                              .replace(/[_\s]+/g, '-');
                      if (serverErrorMessage) {
                          throw _errorWithCustomMessage(auth, authError, serverErrorMessage);
                      }
                      else {
                          _fail(auth, authError);
                      }
                  }
                  return [3 /*break*/, 5];
              case 4:
                  e_1 = _b.sent();
                  if (e_1 instanceof FirebaseError) {
                      throw e_1;
                  }
                  _fail(auth, "network-request-failed" /* NETWORK_REQUEST_FAILED */);
                  return [3 /*break*/, 5];
              case 5: return [2 /*return*/];
          }
      });
  });
1081}
1082function _performSignInRequest(auth, method, path, request, customErrorMap) {
  if (customErrorMap === void 0) { customErrorMap = {}; }
  return __awaiter(this, void 0, void 0, function () {
      var serverResponse;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, _performApiRequest(auth, method, path, request, customErrorMap)];
              case 1:
                  serverResponse = (_a.sent());
                  if ('mfaPendingCredential' in serverResponse) {
                      _fail(auth, "multi-factor-auth-required" /* MFA_REQUIRED */, {
                          _serverResponse: serverResponse
                      });
                  }
                  return [2 /*return*/, serverResponse];
          }
      });
  });
1100}
1101function _getFinalTarget(auth, host, path, query) {
  var base = "" + host + path + "?" + query;
  if (!auth.config.emulator) {
      return auth.config.apiScheme + "://" + base;
  }
  return _emulatorUrl(auth.config, base);
1107}
1108var NetworkTimeout = /** @class */ (function () {
  function NetworkTimeout(auth) {
      var _this = this;
      this.auth = auth;
      // Node timers and browser timers are fundamentally incompatible, but we
      // don't care about the value here
      // eslint-disable-next-line @typescript-eslint/no-explicit-any
      this.timer = null;
      this.promise = new Promise(function (_, reject) {
          _this.timer = setTimeout(function () {
              return reject(_createError(_this.auth, "network-request-failed" /* NETWORK_REQUEST_FAILED */));
          }, DEFAULT_API_TIMEOUT_MS.get());
      });
  }
  NetworkTimeout.prototype.clearNetworkTimeout = function () {
      clearTimeout(this.timer);
  };
  return NetworkTimeout;
1126}());
1127function _makeTaggedError(auth, code, response) {
  var errorParams = {
      appName: auth.name
  };
  if (response.email) {
      errorParams.email = response.email;
  }
  if (response.phoneNumber) {
      errorParams.phoneNumber = response.phoneNumber;
  }
  var error = _createError(auth, code, errorParams);
  // We know customData is defined on error because errorParams is defined
  error.customData._tokenResponse = response;
  return error;
1141}
1142
1143/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1159function deleteAccount(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:delete" /* DELETE_ACCOUNT */, request)];
      });
  });
1165}
1166function deleteLinkedAccounts(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:update" /* SET_ACCOUNT_INFO */, request)];
      });
  });
1172}
1173function getAccountInfo(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:lookup" /* GET_ACCOUNT_INFO */, request)];
      });
  });
1179}
1180
1181/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1197function utcTimestampToDateString(utcTimestamp) {
  if (!utcTimestamp) {
      return undefined;
  }
  try {
      // Convert to date object.
      var date = new Date(Number(utcTimestamp));
      // Test date is valid.
      if (!isNaN(date.getTime())) {
          // Convert to UTC date string.
          return date.toUTCString();
      }
  }
  catch (e) {
      // Do nothing. undefined will be returned.
  }
  return undefined;
1214}
1215
1216/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1232/**
* Returns a JSON Web Token (JWT) used to identify the user to a Firebase service.
*
* @remarks
* Returns the current token if it has not expired or if it will not expire in the next five
* minutes. Otherwise, this will refresh the token and return a new one.
*
* @param user - The user.
* @param forceRefresh - Force refresh regardless of token expiration.
*
* @public
*/
1244function getIdToken(user, forceRefresh) {
  if (forceRefresh === void 0) { forceRefresh = false; }
  return getModularInstance(user).getIdToken(forceRefresh);
1247}
1248/**
* Returns a deserialized JSON Web Token (JWT) used to identitfy the user to a Firebase service.
*
* @remarks
* Returns the current token if it has not expired or if it will not expire in the next five
* minutes. Otherwise, this will refresh the token and return a new one.
*
* @param user - The user.
* @param forceRefresh - Force refresh regardless of token expiration.
*
* @public
*/
1260function getIdTokenResult(user, forceRefresh) {
  if (forceRefresh === void 0) { forceRefresh = false; }
  return __awaiter(this, void 0, void 0, function () {
      var userInternal, token, claims, firebase, signInProvider;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, userInternal.getIdToken(forceRefresh)];
              case 1:
                  token = _a.sent();
                  claims = _parseToken(token);
                  _assert(claims && claims.exp && claims.auth_time && claims.iat, userInternal.auth, "internal-error" /* INTERNAL_ERROR */);
                  firebase = typeof claims.firebase === 'object' ? claims.firebase : undefined;
                  signInProvider = firebase === null || firebase === void 0 ? void 0 : firebase['sign_in_provider'];
                  return [2 /*return*/, {
                          claims: claims,
                          token: token,
                          authTime: utcTimestampToDateString(secondsStringToMilliseconds(claims.auth_time)),
                          issuedAtTime: utcTimestampToDateString(secondsStringToMilliseconds(claims.iat)),
                          expirationTime: utcTimestampToDateString(secondsStringToMilliseconds(claims.exp)),
                          signInProvider: signInProvider || null,
                          signInSecondFactor: (firebase === null || firebase === void 0 ? void 0 : firebase['sign_in_second_factor']) || null
                      }];
          }
      });
  });
1287}
1288function secondsStringToMilliseconds(seconds) {
  return Number(seconds) * 1000;
1290}
1291function _parseToken(token) {
  var _a = token.split('.'), algorithm = _a[0], payload = _a[1], signature = _a[2];
  if (algorithm === undefined ||
      payload === undefined ||
      signature === undefined) {
      _logError('JWT malformed, contained fewer than 3 sections');
      return null;
  }
  try {
      var decoded = base64Decode(payload);
      if (!decoded) {
          _logError('Failed to decode base64 JWT payload');
          return null;
      }
      return JSON.parse(decoded);
  }
  catch (e) {
      _logError('Caught error parsing JWT payload as JSON', e);
      return null;
  }
1311}
1312/**
* Extract expiresIn TTL from a token by subtracting the expiration from the issuance.
*/
1315function _tokenExpiresIn(token) {
  var parsedToken = _parseToken(token);
  _assert(parsedToken, "internal-error" /* INTERNAL_ERROR */);
  _assert(typeof parsedToken.exp !== 'undefined', "internal-error" /* INTERNAL_ERROR */);
  _assert(typeof parsedToken.iat !== 'undefined', "internal-error" /* INTERNAL_ERROR */);
  return Number(parsedToken.exp) - Number(parsedToken.iat);
1321}
1322
1323/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1339function _logoutIfInvalidated(user, promise, bypassAuthState) {
  if (bypassAuthState === void 0) { bypassAuthState = false; }
  return __awaiter(this, void 0, void 0, function () {
      var e_1;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  if (bypassAuthState) {
                      return [2 /*return*/, promise];
                  }
                  _a.label = 1;
              case 1:
                  _a.trys.push([1, 3, , 6]);
                  return [4 /*yield*/, promise];
              case 2: return [2 /*return*/, _a.sent()];
              case 3:
                  e_1 = _a.sent();
                  if (!(e_1 instanceof FirebaseError && isUserInvalidated(e_1))) return [3 /*break*/, 5];
                  if (!(user.auth.currentUser === user)) return [3 /*break*/, 5];
                  return [4 /*yield*/, user.auth.signOut()];
              case 4:
                  _a.sent();
                  _a.label = 5;
              case 5: throw e_1;
              case 6: return [2 /*return*/];
          }
      });
  });
1367}
1368function isUserInvalidated(_a) {
  var code = _a.code;
  return (code === "auth/" + "user-disabled" /* USER_DISABLED */ ||
      code === "auth/" + "user-token-expired" /* TOKEN_EXPIRED */);
1372}
1373
1374/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1390var ProactiveRefresh = /** @class */ (function () {
  function ProactiveRefresh(user) {
      this.user = user;
      this.isRunning = false;
      // Node timers and browser timers return fundamentally different types.
      // We don't actually care what the value is but TS won't accept unknown and
      // we can't cast properly in both environments.
      // eslint-disable-next-line @typescript-eslint/no-explicit-any
      this.timerId = null;
      this.errorBackoff = 30000 /* RETRY_BACKOFF_MIN */;
  }
  ProactiveRefresh.prototype._start = function () {
      if (this.isRunning) {
          return;
      }
      this.isRunning = true;
      this.schedule();
  };
  ProactiveRefresh.prototype._stop = function () {
      if (!this.isRunning) {
          return;
      }
      this.isRunning = false;
      if (this.timerId !== null) {
          clearTimeout(this.timerId);
      }
  };
  ProactiveRefresh.prototype.getInterval = function (wasError) {
      var _a;
      if (wasError) {
          var interval = this.errorBackoff;
          this.errorBackoff = Math.min(this.errorBackoff * 2, 960000 /* RETRY_BACKOFF_MAX */);
          return interval;
      }
      else {
          // Reset the error backoff
          this.errorBackoff = 30000 /* RETRY_BACKOFF_MIN */;
          var expTime = (_a = this.user.stsTokenManager.expirationTime) !== null && _a !== void 0 ? _a : 0;
          var interval = expTime - Date.now() - 300000 /* OFFSET */;
          return Math.max(0, interval);
      }
  };
  ProactiveRefresh.prototype.schedule = function (wasError) {
      var _this = this;
      if (wasError === void 0) { wasError = false; }
      if (!this.isRunning) {
          // Just in case...
          return;
      }
      var interval = this.getInterval(wasError);
      this.timerId = setTimeout(function () { return __awaiter(_this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, this.iteration()];
                  case 1:
                      _a.sent();
                      return [2 /*return*/];
              }
          });
      }); }, interval);
  };
  ProactiveRefresh.prototype.iteration = function () {
      return __awaiter(this, void 0, void 0, function () {
          var e_1;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      _a.trys.push([0, 2, , 3]);
                      return [4 /*yield*/, this.user.getIdToken(true)];
                  case 1:
                      _a.sent();
                      return [3 /*break*/, 3];
                  case 2:
                      e_1 = _a.sent();
                      // Only retry on network errors
                      if (e_1.code === "auth/" + "network-request-failed" /* NETWORK_REQUEST_FAILED */) {
                          this.schedule(/* wasError */ true);
                      }
                      return [2 /*return*/];
                  case 3:
                      this.schedule();
                      return [2 /*return*/];
              }
          });
      });
  };
  return ProactiveRefresh;
1477}());
1478
1479/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1495var UserMetadata = /** @class */ (function () {
  function UserMetadata(createdAt, lastLoginAt) {
      this.createdAt = createdAt;
      this.lastLoginAt = lastLoginAt;
      this._initializeTime();
  }
  UserMetadata.prototype._initializeTime = function () {
      this.lastSignInTime = utcTimestampToDateString(this.lastLoginAt);
      this.creationTime = utcTimestampToDateString(this.createdAt);
  };
  UserMetadata.prototype._copy = function (metadata) {
      this.createdAt = metadata.createdAt;
      this.lastLoginAt = metadata.lastLoginAt;
      this._initializeTime();
  };
  UserMetadata.prototype.toJSON = function () {
      return {
          createdAt: this.createdAt,
          lastLoginAt: this.lastLoginAt
      };
  };
  return UserMetadata;
1517}());
1518
1519/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1535function _reloadWithoutSaving(user) {
  var _a;
  return __awaiter(this, void 0, void 0, function () {
      var auth, idToken, response, coreAccount, newProviderData, providerData, oldIsAnonymous, newIsAnonymous, isAnonymous, updates;
      return __generator(this, function (_b) {
          switch (_b.label) {
              case 0:
                  auth = user.auth;
                  return [4 /*yield*/, user.getIdToken()];
              case 1:
                  idToken = _b.sent();
                  return [4 /*yield*/, _logoutIfInvalidated(user, getAccountInfo(auth, { idToken: idToken }))];
              case 2:
                  response = _b.sent();
                  _assert(response === null || response === void 0 ? void 0 : response.users.length, auth, "internal-error" /* INTERNAL_ERROR */);
                  coreAccount = response.users[0];
                  user._notifyReloadListener(coreAccount);
                  newProviderData = ((_a = coreAccount.providerUserInfo) === null || _a === void 0 ? void 0 : _a.length)
                      ? extractProviderData(coreAccount.providerUserInfo)
                      : [];
                  providerData = mergeProviderData(user.providerData, newProviderData);
                  oldIsAnonymous = user.isAnonymous;
                  newIsAnonymous = !(user.email && coreAccount.passwordHash) && !(providerData === null || providerData === void 0 ? void 0 : providerData.length);
                  isAnonymous = !oldIsAnonymous ? false : newIsAnonymous;
                  updates = {
                      uid: coreAccount.localId,
                      displayName: coreAccount.displayName || null,
                      photoURL: coreAccount.photoUrl || null,
                      email: coreAccount.email || null,
                      emailVerified: coreAccount.emailVerified || false,
                      phoneNumber: coreAccount.phoneNumber || null,
                      tenantId: coreAccount.tenantId || null,
                      providerData: providerData,
                      metadata: new UserMetadata(coreAccount.createdAt, coreAccount.lastLoginAt),
                      isAnonymous: isAnonymous
                  };
                  Object.assign(user, updates);
                  return [2 /*return*/];
          }
      });
  });
1576}
1577/**
* Reloads user account data, if signed in.
*
* @param user - The user.
*
* @public
*/
1584function reload(user) {
  return __awaiter(this, void 0, void 0, function () {
      var userInternal;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, _reloadWithoutSaving(userInternal)];
              case 1:
                  _a.sent();
                  // Even though the current user hasn't changed, update
                  // current user will trigger a persistence update w/ the
                  // new info.
                  return [4 /*yield*/, userInternal.auth._persistUserIfCurrent(userInternal)];
              case 2:
                  // Even though the current user hasn't changed, update
                  // current user will trigger a persistence update w/ the
                  // new info.
                  _a.sent();
                  userInternal.auth._notifyListenersIfCurrent(userInternal);
                  return [2 /*return*/];
          }
      });
  });
1608}
1609function mergeProviderData(original, newData) {
  var deduped = original.filter(function (o) { return !newData.some(function (n) { return n.providerId === o.providerId; }); });
  return __spreadArray(__spreadArray([], deduped), newData);
1612}
1613function extractProviderData(providers) {
  return providers.map(function (_a) {
      var providerId = _a.providerId, provider = __rest(_a, ["providerId"]);
      return {
          providerId: providerId,
          uid: provider.rawId || '',
          displayName: provider.displayName || null,
          email: provider.email || null,
          phoneNumber: provider.phoneNumber || null,
          photoURL: provider.photoUrl || null
      };
  });
1625}
1626
1627/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1643function requestStsToken(auth, refreshToken) {
  return __awaiter(this, void 0, void 0, function () {
      var response;
      var _this = this;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, _performFetchWithErrorHandling(auth, {}, function () { return __awaiter(_this, void 0, void 0, function () {
                      var body, _a, tokenApiHost, apiKey, url, headers;
                      return __generator(this, function (_b) {
                          switch (_b.label) {
                              case 0:
                                  body = querystring({
                                      'grant_type': 'refresh_token',
                                      'refresh_token': refreshToken
                                  }).slice(1);
                                  _a = auth.config, tokenApiHost = _a.tokenApiHost, apiKey = _a.apiKey;
                                  url = _getFinalTarget(auth, tokenApiHost, "/v1/token" /* TOKEN */, "key=" + apiKey);
                                  return [4 /*yield*/, auth._getAdditionalHeaders()];
                              case 1:
                                  headers = _b.sent();
                                  headers["Content-Type" /* CONTENT_TYPE */] = 'application/x-www-form-urlencoded';
                                  return [2 /*return*/, FetchProvider.fetch()(url, {
                                          method: "POST" /* POST */,
                                          headers: headers,
                                          body: body
                                      })];
                          }
                      });
                  }); })];
              case 1:
                  response = _a.sent();
                  // The response comes back in snake_case. Convert to camel:
                  return [2 /*return*/, {
                          accessToken: response.access_token,
                          expiresIn: response.expires_in,
                          refreshToken: response.refresh_token
                      }];
          }
      });
  });
1683}
1684
1685/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1701/**
* We need to mark this class as internal explicitly to exclude it in the public typings, because
* it references AuthInternal which has a circular dependency with UserInternal.
*
* @internal
*/
1707var StsTokenManager = /** @class */ (function () {
  function StsTokenManager() {
      this.refreshToken = null;
      this.accessToken = null;
      this.expirationTime = null;
  }
  Object.defineProperty(StsTokenManager.prototype, "isExpired", {
      get: function () {
          return (!this.expirationTime ||
              Date.now() > this.expirationTime - 30000 /* TOKEN_REFRESH */);
      },
      enumerable: false,
      configurable: true
  });
  StsTokenManager.prototype.updateFromServerResponse = function (response) {
      _assert(response.idToken, "internal-error" /* INTERNAL_ERROR */);
      _assert(typeof response.idToken !== 'undefined', "internal-error" /* INTERNAL_ERROR */);
      _assert(typeof response.refreshToken !== 'undefined', "internal-error" /* INTERNAL_ERROR */);
      var expiresIn = 'expiresIn' in response && typeof response.expiresIn !== 'undefined'
          ? Number(response.expiresIn)
          : _tokenExpiresIn(response.idToken);
      this.updateTokensAndExpiration(response.idToken, response.refreshToken, expiresIn);
  };
  StsTokenManager.prototype.getToken = function (auth, forceRefresh) {
      if (forceRefresh === void 0) { forceRefresh = false; }
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      _assert(!this.accessToken || this.refreshToken, auth, "user-token-expired" /* TOKEN_EXPIRED */);
                      if (!forceRefresh && this.accessToken && !this.isExpired) {
                          return [2 /*return*/, this.accessToken];
                      }
                      if (!this.refreshToken) return [3 /*break*/, 2];
                      return [4 /*yield*/, this.refresh(auth, this.refreshToken)];
                  case 1:
                      _a.sent();
                      return [2 /*return*/, this.accessToken];
                  case 2: return [2 /*return*/, null];
              }
          });
      });
  };
  StsTokenManager.prototype.clearRefreshToken = function () {
      this.refreshToken = null;
  };
  StsTokenManager.prototype.refresh = function (auth, oldToken) {
      return __awaiter(this, void 0, void 0, function () {
          var _a, accessToken, refreshToken, expiresIn;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0: return [4 /*yield*/, requestStsToken(auth, oldToken)];
                  case 1:
                      _a = _b.sent(), accessToken = _a.accessToken, refreshToken = _a.refreshToken, expiresIn = _a.expiresIn;
                      this.updateTokensAndExpiration(accessToken, refreshToken, Number(expiresIn));
                      return [2 /*return*/];
              }
          });
      });
  };
  StsTokenManager.prototype.updateTokensAndExpiration = function (accessToken, refreshToken, expiresInSec) {
      this.refreshToken = refreshToken || null;
      this.accessToken = accessToken || null;
      this.expirationTime = Date.now() + expiresInSec * 1000;
  };
  StsTokenManager.fromJSON = function (appName, object) {
      var refreshToken = object.refreshToken, accessToken = object.accessToken, expirationTime = object.expirationTime;
      var manager = new StsTokenManager();
      if (refreshToken) {
          _assert(typeof refreshToken === 'string', "internal-error" /* INTERNAL_ERROR */, {
              appName: appName
          });
          manager.refreshToken = refreshToken;
      }
      if (accessToken) {
          _assert(typeof accessToken === 'string', "internal-error" /* INTERNAL_ERROR */, {
              appName: appName
          });
          manager.accessToken = accessToken;
      }
      if (expirationTime) {
          _assert(typeof expirationTime === 'number', "internal-error" /* INTERNAL_ERROR */, {
              appName: appName
          });
          manager.expirationTime = expirationTime;
      }
      return manager;
  };
  StsTokenManager.prototype.toJSON = function () {
      return {
          refreshToken: this.refreshToken,
          accessToken: this.accessToken,
          expirationTime: this.expirationTime
      };
  };
  StsTokenManager.prototype._assign = function (stsTokenManager) {
      this.accessToken = stsTokenManager.accessToken;
      this.refreshToken = stsTokenManager.refreshToken;
      this.expirationTime = stsTokenManager.expirationTime;
  };
  StsTokenManager.prototype._clone = function () {
      return Object.assign(new StsTokenManager(), this.toJSON());
  };
  StsTokenManager.prototype._performRefresh = function () {
      return debugFail('not implemented');
  };
  return StsTokenManager;
1814}());
1815
1816/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
1832function assertStringOrUndefined(assertion, appName) {
  _assert(typeof assertion === 'string' || typeof assertion === 'undefined', "internal-error" /* INTERNAL_ERROR */, { appName: appName });
1834}
1835var UserImpl = /** @class */ (function () {
  function UserImpl(_a) {
      var uid = _a.uid, auth = _a.auth, stsTokenManager = _a.stsTokenManager, opt = __rest(_a, ["uid", "auth", "stsTokenManager"]);
      // For the user object, provider is always Firebase.
      this.providerId = "firebase" /* FIREBASE */;
      this.proactiveRefresh = new ProactiveRefresh(this);
      this.reloadUserInfo = null;
      this.reloadListener = null;
      this.uid = uid;
      this.auth = auth;
      this.stsTokenManager = stsTokenManager;
      this.accessToken = stsTokenManager.accessToken;
      this.displayName = opt.displayName || null;
      this.email = opt.email || null;
      this.emailVerified = opt.emailVerified || false;
      this.phoneNumber = opt.phoneNumber || null;
      this.photoURL = opt.photoURL || null;
      this.isAnonymous = opt.isAnonymous || false;
      this.tenantId = opt.tenantId || null;
      this.providerData = opt.providerData ? __spreadArray([], opt.providerData) : [];
      this.metadata = new UserMetadata(opt.createdAt || undefined, opt.lastLoginAt || undefined);
  }
  UserImpl.prototype.getIdToken = function (forceRefresh) {
      return __awaiter(this, void 0, void 0, function () {
          var accessToken;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, _logoutIfInvalidated(this, this.stsTokenManager.getToken(this.auth, forceRefresh))];
                  case 1:
                      accessToken = _a.sent();
                      _assert(accessToken, this.auth, "internal-error" /* INTERNAL_ERROR */);
                      if (!(this.accessToken !== accessToken)) return [3 /*break*/, 3];
                      this.accessToken = accessToken;
                      return [4 /*yield*/, this.auth._persistUserIfCurrent(this)];
                  case 2:
                      _a.sent();
                      this.auth._notifyListenersIfCurrent(this);
                      _a.label = 3;
                  case 3: return [2 /*return*/, accessToken];
              }
          });
      });
  };
  UserImpl.prototype.getIdTokenResult = function (forceRefresh) {
      return getIdTokenResult(this, forceRefresh);
  };
  UserImpl.prototype.reload = function () {
      return reload(this);
  };
  UserImpl.prototype._assign = function (user) {
      if (this === user) {
          return;
      }
      _assert(this.uid === user.uid, this.auth, "internal-error" /* INTERNAL_ERROR */);
      this.displayName = user.displayName;
      this.photoURL = user.photoURL;
      this.email = user.email;
      this.emailVerified = user.emailVerified;
      this.phoneNumber = user.phoneNumber;
      this.isAnonymous = user.isAnonymous;
      this.tenantId = user.tenantId;
      this.providerData = user.providerData.map(function (userInfo) { return (__assign({}, userInfo)); });
      this.metadata._copy(user.metadata);
      this.stsTokenManager._assign(user.stsTokenManager);
  };
  UserImpl.prototype._clone = function (auth) {
      return new UserImpl(__assign(__assign({}, this), { auth: auth, stsTokenManager: this.stsTokenManager._clone() }));
  };
  UserImpl.prototype._onReload = function (callback) {
      // There should only ever be one listener, and that is a single instance of MultiFactorUser
      _assert(!this.reloadListener, this.auth, "internal-error" /* INTERNAL_ERROR */);
      this.reloadListener = callback;
      if (this.reloadUserInfo) {
          this._notifyReloadListener(this.reloadUserInfo);
          this.reloadUserInfo = null;
      }
  };
  UserImpl.prototype._notifyReloadListener = function (userInfo) {
      if (this.reloadListener) {
          this.reloadListener(userInfo);
      }
      else {
          // If no listener is subscribed yet, save the result so it's available when they do subscribe
          this.reloadUserInfo = userInfo;
      }
  };
  UserImpl.prototype._startProactiveRefresh = function () {
      this.proactiveRefresh._start();
  };
  UserImpl.prototype._stopProactiveRefresh = function () {
      this.proactiveRefresh._stop();
  };
  UserImpl.prototype._updateTokensIfNecessary = function (response, reload) {
      if (reload === void 0) { reload = false; }
      return __awaiter(this, void 0, void 0, function () {
          var tokensRefreshed;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      tokensRefreshed = false;
                      if (response.idToken &&
                          response.idToken !== this.stsTokenManager.accessToken) {
                          this.stsTokenManager.updateFromServerResponse(response);
                          tokensRefreshed = true;
                      }
                      if (!reload) return [3 /*break*/, 2];
                      return [4 /*yield*/, _reloadWithoutSaving(this)];
                  case 1:
                      _a.sent();
                      _a.label = 2;
                  case 2: return [4 /*yield*/, this.auth._persistUserIfCurrent(this)];
                  case 3:
                      _a.sent();
                      if (tokensRefreshed) {
                          this.auth._notifyListenersIfCurrent(this);
                      }
                      return [2 /*return*/];
              }
          });
      });
  };
  UserImpl.prototype.delete = function () {
      return __awaiter(this, void 0, void 0, function () {
          var idToken;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, this.getIdToken()];
                  case 1:
                      idToken = _a.sent();
                      return [4 /*yield*/, _logoutIfInvalidated(this, deleteAccount(this.auth, { idToken: idToken }))];
                  case 2:
                      _a.sent();
                      this.stsTokenManager.clearRefreshToken();
                      // TODO: Determine if cancellable-promises are necessary to use in this class so that delete()
                      //       cancels pending actions...
                      return [2 /*return*/, this.auth.signOut()];
              }
          });
      });
  };
  UserImpl.prototype.toJSON = function () {
      return __assign(__assign({ uid: this.uid, email: this.email || undefined, emailVerified: this.emailVerified, displayName: this.displayName || undefined, isAnonymous: this.isAnonymous, photoURL: this.photoURL || undefined, phoneNumber: this.phoneNumber || undefined, tenantId: this.tenantId || undefined, providerData: this.providerData.map(function (userInfo) { return (__assign({}, userInfo)); }), stsTokenManager: this.stsTokenManager.toJSON(), 
          // Redirect event ID must be maintained in case there is a pending
          // redirect event.
          _redirectEventId: this._redirectEventId }, this.metadata.toJSON()), { 
          // Required for compatibility with the legacy SDK (go/firebase-auth-sdk-persistence-parsing):
          apiKey: this.auth.config.apiKey, appName: this.auth.name });
  };
  Object.defineProperty(UserImpl.prototype, "refreshToken", {
      get: function () {
          return this.stsTokenManager.refreshToken || '';
      },
      enumerable: false,
      configurable: true
  });
  UserImpl._fromJSON = function (auth, object) {
      var _a, _b, _c, _d, _e, _f, _g, _h;
      var displayName = (_a = object.displayName) !== null && _a !== void 0 ? _a : undefined;
      var email = (_b = object.email) !== null && _b !== void 0 ? _b : undefined;
      var phoneNumber = (_c = object.phoneNumber) !== null && _c !== void 0 ? _c : undefined;
      var photoURL = (_d = object.photoURL) !== null && _d !== void 0 ? _d : undefined;
      var tenantId = (_e = object.tenantId) !== null && _e !== void 0 ? _e : undefined;
      var _redirectEventId = (_f = object._redirectEventId) !== null && _f !== void 0 ? _f : undefined;
      var createdAt = (_g = object.createdAt) !== null && _g !== void 0 ? _g : undefined;
      var lastLoginAt = (_h = object.lastLoginAt) !== null && _h !== void 0 ? _h : undefined;
      var uid = object.uid, emailVerified = object.emailVerified, isAnonymous = object.isAnonymous, providerData = object.providerData, plainObjectTokenManager = object.stsTokenManager;
      _assert(uid && plainObjectTokenManager, auth, "internal-error" /* INTERNAL_ERROR */);
      var stsTokenManager = StsTokenManager.fromJSON(this.name, plainObjectTokenManager);
      _assert(typeof uid === 'string', auth, "internal-error" /* INTERNAL_ERROR */);
      assertStringOrUndefined(displayName, auth.name);
      assertStringOrUndefined(email, auth.name);
      _assert(typeof emailVerified === 'boolean', auth, "internal-error" /* INTERNAL_ERROR */);
      _assert(typeof isAnonymous === 'boolean', auth, "internal-error" /* INTERNAL_ERROR */);
      assertStringOrUndefined(phoneNumber, auth.name);
      assertStringOrUndefined(photoURL, auth.name);
      assertStringOrUndefined(tenantId, auth.name);
      assertStringOrUndefined(_redirectEventId, auth.name);
      assertStringOrUndefined(createdAt, auth.name);
      assertStringOrUndefined(lastLoginAt, auth.name);
      var user = new UserImpl({
          uid: uid,
          auth: auth,
          email: email,
          emailVerified: emailVerified,
          displayName: displayName,
          isAnonymous: isAnonymous,
          photoURL: photoURL,
          phoneNumber: phoneNumber,
          tenantId: tenantId,
          stsTokenManager: stsTokenManager,
          createdAt: createdAt,
          lastLoginAt: lastLoginAt
      });
      if (providerData && Array.isArray(providerData)) {
          user.providerData = providerData.map(function (userInfo) { return (__assign({}, userInfo)); });
      }
      if (_redirectEventId) {
          user._redirectEventId = _redirectEventId;
      }
      return user;
  };
  /**
   * Initialize a User from an idToken server response
   * @param auth
   * @param idTokenResponse
   */
  UserImpl._fromIdTokenResponse = function (auth, idTokenResponse, isAnonymous) {
      if (isAnonymous === void 0) { isAnonymous = false; }
      return __awaiter(this, void 0, void 0, function () {
          var stsTokenManager, user;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      stsTokenManager = new StsTokenManager();
                      stsTokenManager.updateFromServerResponse(idTokenResponse);
                      user = new UserImpl({
                          uid: idTokenResponse.localId,
                          auth: auth,
                          stsTokenManager: stsTokenManager,
                          isAnonymous: isAnonymous
                      });
                      // Updates the user info and data and resolves with a user instance.
                      return [4 /*yield*/, _reloadWithoutSaving(user)];
                  case 1:
                      // Updates the user info and data and resolves with a user instance.
                      _a.sent();
                      return [2 /*return*/, user];
              }
          });
      });
  };
  return UserImpl;
2067}());
2068
2069/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
2085var InMemoryPersistence = /** @class */ (function () {
  function InMemoryPersistence() {
      this.type = "NONE" /* NONE */;
      this.storage = {};
  }
  InMemoryPersistence.prototype._isAvailable = function () {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              return [2 /*return*/, true];
          });
      });
  };
  InMemoryPersistence.prototype._set = function (key, value) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              this.storage[key] = value;
              return [2 /*return*/];
          });
      });
  };
  InMemoryPersistence.prototype._get = function (key) {
      return __awaiter(this, void 0, void 0, function () {
          var value;
          return __generator(this, function (_a) {
              value = this.storage[key];
              return [2 /*return*/, value === undefined ? null : value];
          });
      });
  };
  InMemoryPersistence.prototype._remove = function (key) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              delete this.storage[key];
              return [2 /*return*/];
          });
      });
  };
  InMemoryPersistence.prototype._addListener = function (_key, _listener) {
      // Listeners are not supported for in-memory storage since it cannot be shared across windows/workers
      return;
  };
  InMemoryPersistence.prototype._removeListener = function (_key, _listener) {
      // Listeners are not supported for in-memory storage since it cannot be shared across windows/workers
      return;
  };
  InMemoryPersistence.type = 'NONE';
  return InMemoryPersistence;
2132}());
2133/**
* An implementation of {@link Persistence} of type 'NONE'.
*
* @public
*/
2138var inMemoryPersistence = InMemoryPersistence;
2139
2140/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
2156function _persistenceKeyName(key, apiKey, appName) {
  return "firebase" /* PERSISTENCE */ + ":" + key + ":" + apiKey + ":" + appName;
2158}
2159var PersistenceUserManager = /** @class */ (function () {
  function PersistenceUserManager(persistence, auth, userKey) {
      this.persistence = persistence;
      this.auth = auth;
      this.userKey = userKey;
      var _a = this.auth, config = _a.config, name = _a.name;
      this.fullUserKey = _persistenceKeyName(this.userKey, config.apiKey, name);
      this.fullPersistenceKey = _persistenceKeyName("persistence" /* PERSISTENCE_USER */, config.apiKey, name);
      this.boundEventHandler = auth._onStorageEvent.bind(auth);
      this.persistence._addListener(this.fullUserKey, this.boundEventHandler);
  }
  PersistenceUserManager.prototype.setCurrentUser = function (user) {
      return this.persistence._set(this.fullUserKey, user.toJSON());
  };
  PersistenceUserManager.prototype.getCurrentUser = function () {
      return __awaiter(this, void 0, void 0, function () {
          var blob;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, this.persistence._get(this.fullUserKey)];
                  case 1:
                      blob = _a.sent();
                      return [2 /*return*/, blob ? UserImpl._fromJSON(this.auth, blob) : null];
              }
          });
      });
  };
  PersistenceUserManager.prototype.removeCurrentUser = function () {
      return this.persistence._remove(this.fullUserKey);
  };
  PersistenceUserManager.prototype.savePersistenceForRedirect = function () {
      return this.persistence._set(this.fullPersistenceKey, this.persistence.type);
  };
  PersistenceUserManager.prototype.setPersistence = function (newPersistence) {
      return __awaiter(this, void 0, void 0, function () {
          var currentUser;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      if (this.persistence === newPersistence) {
                          return [2 /*return*/];
                      }
                      return [4 /*yield*/, this.getCurrentUser()];
                  case 1:
                      currentUser = _a.sent();
                      return [4 /*yield*/, this.removeCurrentUser()];
                  case 2:
                      _a.sent();
                      this.persistence = newPersistence;
                      if (currentUser) {
                          return [2 /*return*/, this.setCurrentUser(currentUser)];
                      }
                      return [2 /*return*/];
              }
          });
      });
  };
  PersistenceUserManager.prototype.delete = function () {
      this.persistence._removeListener(this.fullUserKey, this.boundEventHandler);
  };
  PersistenceUserManager.create = function (auth, persistenceHierarchy, userKey) {
      if (userKey === void 0) { userKey = "authUser" /* AUTH_USER */; }
      return __awaiter(this, void 0, void 0, function () {
          var availablePersistences, selectedPersistence, key, userToMigrate, _i, persistenceHierarchy_1, persistence, blob, user, migrationHierarchy;
          var _this = this;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0:
                      if (!persistenceHierarchy.length) {
                          return [2 /*return*/, new PersistenceUserManager(_getInstance(inMemoryPersistence), auth, userKey)];
                      }
                      return [4 /*yield*/, Promise.all(persistenceHierarchy.map(function (persistence) { return __awaiter(_this, void 0, void 0, function () {
                              return __generator(this, function (_a) {
                                  switch (_a.label) {
                                      case 0: return [4 /*yield*/, persistence._isAvailable()];
                                      case 1:
                                          if (_a.sent()) {
                                              return [2 /*return*/, persistence];
                                          }
                                          return [2 /*return*/, undefined];
                                  }
                              });
                          }); }))];
                  case 1:
                      availablePersistences = (_b.sent()).filter(function (persistence) { return persistence; });
                      selectedPersistence = availablePersistences[0] ||
                          _getInstance(inMemoryPersistence);
                      key = _persistenceKeyName(userKey, auth.config.apiKey, auth.name);
                      userToMigrate = null;
                      _i = 0, persistenceHierarchy_1 = persistenceHierarchy;
                      _b.label = 2;
                  case 2:
                      if (!(_i < persistenceHierarchy_1.length)) return [3 /*break*/, 7];
                      persistence = persistenceHierarchy_1[_i];
                      _b.label = 3;
                  case 3:
                      _b.trys.push([3, 5, , 6]);
                      return [4 /*yield*/, persistence._get(key)];
                  case 4:
                      blob = _b.sent();
                      if (blob) {
                          user = UserImpl._fromJSON(auth, blob);
                          if (persistence !== selectedPersistence) {
                              userToMigrate = user;
                          }
                          selectedPersistence = persistence;
                          return [3 /*break*/, 7];
                      }
                      return [3 /*break*/, 6];
                  case 5:
                      _b.sent();
                      return [3 /*break*/, 6];
                  case 6:
                      _i++;
                      return [3 /*break*/, 2];
                  case 7:
                      migrationHierarchy = availablePersistences.filter(function (p) { return p._shouldAllowMigration; });
                      // If the persistence does _not_ allow migration, just finish off here
                      if (!selectedPersistence._shouldAllowMigration ||
                          !migrationHierarchy.length) {
                          return [2 /*return*/, new PersistenceUserManager(selectedPersistence, auth, userKey)];
                      }
                      selectedPersistence = migrationHierarchy[0];
                      if (!userToMigrate) return [3 /*break*/, 9];
                      // This normally shouldn't throw since chosenPersistence.isAvailable() is true, but if it does
                      // we'll just let it bubble to surface the error.
                      return [4 /*yield*/, selectedPersistence._set(key, userToMigrate.toJSON())];
                  case 8:
                      // This normally shouldn't throw since chosenPersistence.isAvailable() is true, but if it does
                      // we'll just let it bubble to surface the error.
                      _b.sent();
                      _b.label = 9;
                  case 9: 
                  // Attempt to clear the key in other persistences but ignore errors. This helps prevent issues
                  // such as users getting stuck with a previous account after signing out and refreshing the tab.
                  return [4 /*yield*/, Promise.all(persistenceHierarchy.map(function (persistence) { return __awaiter(_this, void 0, void 0, function () {
                          return __generator(this, function (_b) {
                              switch (_b.label) {
                                  case 0:
                                      if (!(persistence !== selectedPersistence)) return [3 /*break*/, 4];
                                      _b.label = 1;
                                  case 1:
                                      _b.trys.push([1, 3, , 4]);
                                      return [4 /*yield*/, persistence._remove(key)];
                                  case 2:
                                      _b.sent();
                                      return [3 /*break*/, 4];
                                  case 3:
                                      _b.sent();
                                      return [3 /*break*/, 4];
                                  case 4: return [2 /*return*/];
                              }
                          });
                      }); }))];
                  case 10:
                      // Attempt to clear the key in other persistences but ignore errors. This helps prevent issues
                      // such as users getting stuck with a previous account after signing out and refreshing the tab.
                      _b.sent();
                      return [2 /*return*/, new PersistenceUserManager(selectedPersistence, auth, userKey)];
              }
          });
      });
  };
  return PersistenceUserManager;
2323}());
2324
2325/**
* @license
* Copyright 2022 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
2341var AuthMiddlewareQueue = /** @class */ (function () {
  function AuthMiddlewareQueue(auth) {
      this.auth = auth;
      this.queue = [];
  }
  AuthMiddlewareQueue.prototype.pushCallback = function (callback, onAbort) {
      var _this = this;
      // The callback could be sync or async. Wrap it into a
      // function that is always async.
      var wrappedCallback = function (user) { return new Promise(function (resolve, reject) {
          try {
              var result = callback(user);
              // Either resolve with existing promise or wrap a non-promise
              // return value into a promise.
              resolve(result);
          }
          catch (e) {
              // Sync callback throws.
              reject(e);
          }
      }); };
      // Attach the onAbort if present
      wrappedCallback.onAbort = onAbort;
      this.queue.push(wrappedCallback);
      var index = this.queue.length - 1;
      return function () {
          // Unsubscribe. Replace with no-op. Do not remove from array, or it will disturb
          // indexing of other elements.
          _this.queue[index] = function () { return Promise.resolve(); };
      };
  };
  AuthMiddlewareQueue.prototype.runMiddleware = function (nextUser) {
      return __awaiter(this, void 0, void 0, function () {
          var onAbortStack, _i, _a, beforeStateCallback, e_1, _b, onAbortStack_1, onAbort;
          return __generator(this, function (_c) {
              switch (_c.label) {
                  case 0:
                      if (this.auth.currentUser === nextUser) {
                          return [2 /*return*/];
                      }
                      onAbortStack = [];
                      _c.label = 1;
                  case 1:
                      _c.trys.push([1, 6, , 7]);
                      _i = 0, _a = this.queue;
                      _c.label = 2;
                  case 2:
                      if (!(_i < _a.length)) return [3 /*break*/, 5];
                      beforeStateCallback = _a[_i];
                      return [4 /*yield*/, beforeStateCallback(nextUser)];
                  case 3:
                      _c.sent();
                      // Only push the onAbort if the callback succeeds
                      if (beforeStateCallback.onAbort) {
                          onAbortStack.push(beforeStateCallback.onAbort);
                      }
                      _c.label = 4;
                  case 4:
                      _i++;
                      return [3 /*break*/, 2];
                  case 5: return [3 /*break*/, 7];
                  case 6:
                      e_1 = _c.sent();
                      // Run all onAbort, with separate try/catch to ignore any errors and
                      // continue
                      onAbortStack.reverse();
                      for (_b = 0, onAbortStack_1 = onAbortStack; _b < onAbortStack_1.length; _b++) {
                          onAbort = onAbortStack_1[_b];
                          try {
                              onAbort();
                          }
                          catch (_) { /* swallow error */ }
                      }
                      throw this.auth._errorFactory.create("login-blocked" /* LOGIN_BLOCKED */, { originalMessage: e_1.message });
                  case 7: return [2 /*return*/];
              }
          });
      });
  };
  return AuthMiddlewareQueue;
2421}());
2422
2423/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
2439var AuthImpl = /** @class */ (function () {
  function AuthImpl(app, heartbeatServiceProvider, config) {
      this.app = app;
      this.heartbeatServiceProvider = heartbeatServiceProvider;
      this.config = config;
      this.currentUser = null;
      this.emulatorConfig = null;
      this.operations = Promise.resolve();
      this.authStateSubscription = new Subscription(this);
      this.idTokenSubscription = new Subscription(this);
      this.beforeStateQueue = new AuthMiddlewareQueue(this);
      this.redirectUser = null;
      this.isProactiveRefreshEnabled = false;
      // Any network calls will set this to true and prevent subsequent emulator
      // initialization
      this._canInitEmulator = true;
      this._isInitialized = false;
      this._deleted = false;
      this._initializationPromise = null;
      this._popupRedirectResolver = null;
      this._errorFactory = _DEFAULT_AUTH_ERROR_FACTORY;
      // Tracks the last notified UID for state change listeners to prevent
      // repeated calls to the callbacks. Undefined means it's never been
      // called, whereas null means it's been called with a signed out user
      this.lastNotifiedUid = undefined;
      this.languageCode = null;
      this.tenantId = null;
      this.settings = { appVerificationDisabledForTesting: false };
      this.frameworks = [];
      this.name = app.name;
      this.clientVersion = config.sdkClientVersion;
  }
  AuthImpl.prototype._initializeWithPersistence = function (persistenceHierarchy, popupRedirectResolver) {
      var _this = this;
      if (popupRedirectResolver) {
          this._popupRedirectResolver = _getInstance(popupRedirectResolver);
      }
      // Have to check for app deletion throughout initialization (after each
      // promise resolution)
      this._initializationPromise = this.queue(function () { return __awaiter(_this, void 0, void 0, function () {
          var _a;
          var _b, _c;
          return __generator(this, function (_d) {
              switch (_d.label) {
                  case 0:
                      if (this._deleted) {
                          return [2 /*return*/];
                      }
                      _a = this;
                      return [4 /*yield*/, PersistenceUserManager.create(this, persistenceHierarchy)];
                  case 1:
                      _a.persistenceManager = _d.sent();
                      if (this._deleted) {
                          return [2 /*return*/];
                      }
                      if (!((_b = this._popupRedirectResolver) === null || _b === void 0 ? void 0 : _b._shouldInitProactively)) return [3 /*break*/, 5];
                      _d.label = 2;
                  case 2:
                      _d.trys.push([2, 4, , 5]);
                      return [4 /*yield*/, this._popupRedirectResolver._initialize(this)];
                  case 3:
                      _d.sent();
                      return [3 /*break*/, 5];
                  case 4:
                      _d.sent();
                      return [3 /*break*/, 5];
                  case 5: return [4 /*yield*/, this.initializeCurrentUser(popupRedirectResolver)];
                  case 6:
                      _d.sent();
                      this.lastNotifiedUid = ((_c = this.currentUser) === null || _c === void 0 ? void 0 : _c.uid) || null;
                      if (this._deleted) {
                          return [2 /*return*/];
                      }
                      this._isInitialized = true;
                      return [2 /*return*/];
              }
          });
      }); });
      return this._initializationPromise;
  };
  /**
   * If the persistence is changed in another window, the user manager will let us know
   */
  AuthImpl.prototype._onStorageEvent = function () {
      return __awaiter(this, void 0, void 0, function () {
          var user;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      if (this._deleted) {
                          return [2 /*return*/];
                      }
                      return [4 /*yield*/, this.assertedPersistence.getCurrentUser()];
                  case 1:
                      user = _a.sent();
                      if (!this.currentUser && !user) {
                          // No change, do nothing (was signed out and remained signed out).
                          return [2 /*return*/];
                      }
                      if (!(this.currentUser && user && this.currentUser.uid === user.uid)) return [3 /*break*/, 3];
                      // Data update, simply copy data changes.
                      this._currentUser._assign(user);
                      // If tokens changed from previous user tokens, this will trigger
                      // notifyAuthListeners_.
                      return [4 /*yield*/, this.currentUser.getIdToken()];
                  case 2:
                      // If tokens changed from previous user tokens, this will trigger
                      // notifyAuthListeners_.
                      _a.sent();
                      return [2 /*return*/];
                  case 3: 
                  // Update current Auth state. Either a new login or logout.
                  // Skip blocking callbacks, they should not apply to a change in another tab.
                  return [4 /*yield*/, this._updateCurrentUser(user, /* skipBeforeStateCallbacks */ true)];
                  case 4:
                      // Update current Auth state. Either a new login or logout.
                      // Skip blocking callbacks, they should not apply to a change in another tab.
                      _a.sent();
                      return [2 /*return*/];
              }
          });
      });
  };
  AuthImpl.prototype.initializeCurrentUser = function (popupRedirectResolver) {
      var _a;
      return __awaiter(this, void 0, void 0, function () {
          var previouslyStoredUser, futureCurrentUser, needsTocheckMiddleware, redirectUserEventId, storedUserEventId, result, e_2;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0: return [4 /*yield*/, this.assertedPersistence.getCurrentUser()];
                  case 1:
                      previouslyStoredUser = (_b.sent());
                      futureCurrentUser = previouslyStoredUser;
                      needsTocheckMiddleware = false;
                      if (!(popupRedirectResolver && this.config.authDomain)) return [3 /*break*/, 4];
                      return [4 /*yield*/, this.getOrInitRedirectPersistenceManager()];
                  case 2:
                      _b.sent();
                      redirectUserEventId = (_a = this.redirectUser) === null || _a === void 0 ? void 0 : _a._redirectEventId;
                      storedUserEventId = futureCurrentUser === null || futureCurrentUser === void 0 ? void 0 : futureCurrentUser._redirectEventId;
                      return [4 /*yield*/, this.tryRedirectSignIn(popupRedirectResolver)];
                  case 3:
                      result = _b.sent();
                      // If the stored user (i.e. the old "currentUser") has a redirectId that
                      // matches the redirect user, then we want to initially sign in with the
                      // new user object from result.
                      // TODO(samgho): More thoroughly test all of this
                      if ((!redirectUserEventId || redirectUserEventId === storedUserEventId) &&
                          (result === null || result === void 0 ? void 0 : result.user)) {
                          futureCurrentUser = result.user;
                          needsTocheckMiddleware = true;
                      }
                      _b.label = 4;
                  case 4:
                      // If no user in persistence, there is no current user. Set to null.
                      if (!futureCurrentUser) {
                          return [2 /*return*/, this.directlySetCurrentUser(null)];
                      }
                      if (!!futureCurrentUser._redirectEventId) return [3 /*break*/, 9];
                      if (!needsTocheckMiddleware) return [3 /*break*/, 8];
                      _b.label = 5;
                  case 5:
                      _b.trys.push([5, 7, , 8]);
                      return [4 /*yield*/, this.beforeStateQueue.runMiddleware(futureCurrentUser)];
                  case 6:
                      _b.sent();
                      return [3 /*break*/, 8];
                  case 7:
                      e_2 = _b.sent();
                      futureCurrentUser = previouslyStoredUser;
                      // We know this is available since the bit is only set when the
                      // resolver is available
                      this._popupRedirectResolver._overrideRedirectResult(this, function () { return Promise.reject(e_2); });
                      return [3 /*break*/, 8];
                  case 8:
                      if (futureCurrentUser) {
                          return [2 /*return*/, this.reloadAndSetCurrentUserOrClear(futureCurrentUser)];
                      }
                      else {
                          return [2 /*return*/, this.directlySetCurrentUser(null)];
                      }
                  case 9:
                      _assert(this._popupRedirectResolver, this, "argument-error" /* ARGUMENT_ERROR */);
                      return [4 /*yield*/, this.getOrInitRedirectPersistenceManager()];
                  case 10:
                      _b.sent();
                      // If the redirect user's event ID matches the current user's event ID,
                      // DO NOT reload the current user, otherwise they'll be cleared from storage.
                      // This is important for the reauthenticateWithRedirect() flow.
                      if (this.redirectUser &&
                          this.redirectUser._redirectEventId === futureCurrentUser._redirectEventId) {
                          return [2 /*return*/, this.directlySetCurrentUser(futureCurrentUser)];
                      }
                      return [2 /*return*/, this.reloadAndSetCurrentUserOrClear(futureCurrentUser)];
              }
          });
      });
  };
  AuthImpl.prototype.tryRedirectSignIn = function (redirectResolver) {
      return __awaiter(this, void 0, void 0, function () {
          var result;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      result = null;
                      _a.label = 1;
                  case 1:
                      _a.trys.push([1, 3, , 5]);
                      return [4 /*yield*/, this._popupRedirectResolver._completeRedirectFn(this, redirectResolver, true)];
                  case 2:
                      // We know this._popupRedirectResolver is set since redirectResolver
                      // is passed in. The _completeRedirectFn expects the unwrapped extern.
                      result = _a.sent();
                      return [3 /*break*/, 5];
                  case 3:
                      _a.sent();
                      // Swallow any errors here; the code can retrieve them in
                      // getRedirectResult().
                      return [4 /*yield*/, this._setRedirectUser(null)];
                  case 4:
                      // Swallow any errors here; the code can retrieve them in
                      // getRedirectResult().
                      _a.sent();
                      return [3 /*break*/, 5];
                  case 5: return [2 /*return*/, result];
              }
          });
      });
  };
  AuthImpl.prototype.reloadAndSetCurrentUserOrClear = function (user) {
      return __awaiter(this, void 0, void 0, function () {
          var e_4;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      _a.trys.push([0, 2, , 3]);
                      return [4 /*yield*/, _reloadWithoutSaving(user)];
                  case 1:
                      _a.sent();
                      return [3 /*break*/, 3];
                  case 2:
                      e_4 = _a.sent();
                      if (e_4.code !== "auth/" + "network-request-failed" /* NETWORK_REQUEST_FAILED */) {
                          // Something's wrong with the user's token. Log them out and remove
                          // them from storage
                          return [2 /*return*/, this.directlySetCurrentUser(null)];
                      }
                      return [3 /*break*/, 3];
                  case 3: return [2 /*return*/, this.directlySetCurrentUser(user)];
              }
          });
      });
  };
  AuthImpl.prototype.useDeviceLanguage = function () {
      this.languageCode = _getUserLanguage();
  };
  AuthImpl.prototype._delete = function () {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              this._deleted = true;
              return [2 /*return*/];
          });
      });
  };
  AuthImpl.prototype.updateCurrentUser = function (userExtern) {
      return __awaiter(this, void 0, void 0, function () {
          var user;
          return __generator(this, function (_a) {
              user = userExtern
                  ? getModularInstance(userExtern)
                  : null;
              if (user) {
                  _assert(user.auth.config.apiKey === this.config.apiKey, this, "invalid-user-token" /* INVALID_AUTH */);
              }
              return [2 /*return*/, this._updateCurrentUser(user && user._clone(this))];
          });
      });
  };
  AuthImpl.prototype._updateCurrentUser = function (user, skipBeforeStateCallbacks) {
      if (skipBeforeStateCallbacks === void 0) { skipBeforeStateCallbacks = false; }
      return __awaiter(this, void 0, void 0, function () {
          var _this = this;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      if (this._deleted) {
                          return [2 /*return*/];
                      }
                      if (user) {
                          _assert(this.tenantId === user.tenantId, this, "tenant-id-mismatch" /* TENANT_ID_MISMATCH */);
                      }
                      if (!!skipBeforeStateCallbacks) return [3 /*break*/, 2];
                      return [4 /*yield*/, this.beforeStateQueue.runMiddleware(user)];
                  case 1:
                      _a.sent();
                      _a.label = 2;
                  case 2: return [2 /*return*/, this.queue(function () { return __awaiter(_this, void 0, void 0, function () {
                          return __generator(this, function (_a) {
                              switch (_a.label) {
                                  case 0: return [4 /*yield*/, this.directlySetCurrentUser(user)];
                                  case 1:
                                      _a.sent();
                                      this.notifyAuthListeners();
                                      return [2 /*return*/];
                              }
                          });
                      }); })];
              }
          });
      });
  };
  AuthImpl.prototype.signOut = function () {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: 
                  // Run first, to block _setRedirectUser() if any callbacks fail.
                  return [4 /*yield*/, this.beforeStateQueue.runMiddleware(null)];
                  case 1:
                      // Run first, to block _setRedirectUser() if any callbacks fail.
                      _a.sent();
                      if (!(this.redirectPersistenceManager || this._popupRedirectResolver)) return [3 /*break*/, 3];
                      return [4 /*yield*/, this._setRedirectUser(null)];
                  case 2:
                      _a.sent();
                      _a.label = 3;
                  case 3: 
                  // Prevent callbacks from being called again in _updateCurrentUser, as
                  // they were already called in the first line.
                  return [2 /*return*/, this._updateCurrentUser(null, /* skipBeforeStateCallbacks */ true)];
              }
          });
      });
  };
  AuthImpl.prototype.setPersistence = function (persistence) {
      var _this = this;
      return this.queue(function () { return __awaiter(_this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, this.assertedPersistence.setPersistence(_getInstance(persistence))];
                  case 1:
                      _a.sent();
                      return [2 /*return*/];
              }
          });
      }); });
  };
  AuthImpl.prototype._getPersistence = function () {
      return this.assertedPersistence.persistence.type;
  };
  AuthImpl.prototype._updateErrorMap = function (errorMap) {
      this._errorFactory = new ErrorFactory('auth', 'Firebase', errorMap());
  };
  AuthImpl.prototype.onAuthStateChanged = function (nextOrObserver, error, completed) {
      return this.registerStateListener(this.authStateSubscription, nextOrObserver, error, completed);
  };
  AuthImpl.prototype.beforeAuthStateChanged = function (callback, onAbort) {
      return this.beforeStateQueue.pushCallback(callback, onAbort);
  };
  AuthImpl.prototype.onIdTokenChanged = function (nextOrObserver, error, completed) {
      return this.registerStateListener(this.idTokenSubscription, nextOrObserver, error, completed);
  };
  AuthImpl.prototype.toJSON = function () {
      var _a;
      return {
          apiKey: this.config.apiKey,
          authDomain: this.config.authDomain,
          appName: this.name,
          currentUser: (_a = this._currentUser) === null || _a === void 0 ? void 0 : _a.toJSON()
      };
  };
  AuthImpl.prototype._setRedirectUser = function (user, popupRedirectResolver) {
      return __awaiter(this, void 0, void 0, function () {
          var redirectManager;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, this.getOrInitRedirectPersistenceManager(popupRedirectResolver)];
                  case 1:
                      redirectManager = _a.sent();
                      return [2 /*return*/, user === null
                              ? redirectManager.removeCurrentUser()
                              : redirectManager.setCurrentUser(user)];
              }
          });
      });
  };
  AuthImpl.prototype.getOrInitRedirectPersistenceManager = function (popupRedirectResolver) {
      return __awaiter(this, void 0, void 0, function () {
          var resolver, _a, _b;
          return __generator(this, function (_c) {
              switch (_c.label) {
                  case 0:
                      if (!!this.redirectPersistenceManager) return [3 /*break*/, 3];
                      resolver = (popupRedirectResolver && _getInstance(popupRedirectResolver)) ||
                          this._popupRedirectResolver;
                      _assert(resolver, this, "argument-error" /* ARGUMENT_ERROR */);
                      _a = this;
                      return [4 /*yield*/, PersistenceUserManager.create(this, [_getInstance(resolver._redirectPersistence)], "redirectUser" /* REDIRECT_USER */)];
                  case 1:
                      _a.redirectPersistenceManager = _c.sent();
                      _b = this;
                      return [4 /*yield*/, this.redirectPersistenceManager.getCurrentUser()];
                  case 2:
                      _b.redirectUser =
                          _c.sent();
                      _c.label = 3;
                  case 3: return [2 /*return*/, this.redirectPersistenceManager];
              }
          });
      });
  };
  AuthImpl.prototype._redirectUserForId = function (id) {
      var _a, _b;
      return __awaiter(this, void 0, void 0, function () {
          var _this = this;
          return __generator(this, function (_c) {
              switch (_c.label) {
                  case 0:
                      if (!this._isInitialized) return [3 /*break*/, 2];
                      return [4 /*yield*/, this.queue(function () { return __awaiter(_this, void 0, void 0, function () { return __generator(this, function (_a) {
                              return [2 /*return*/];
                          }); }); })];
                  case 1:
                      _c.sent();
                      _c.label = 2;
                  case 2:
                      if (((_a = this._currentUser) === null || _a === void 0 ? void 0 : _a._redirectEventId) === id) {
                          return [2 /*return*/, this._currentUser];
                      }
                      if (((_b = this.redirectUser) === null || _b === void 0 ? void 0 : _b._redirectEventId) === id) {
                          return [2 /*return*/, this.redirectUser];
                      }
                      return [2 /*return*/, null];
              }
          });
      });
  };
  AuthImpl.prototype._persistUserIfCurrent = function (user) {
      return __awaiter(this, void 0, void 0, function () {
          var _this = this;
          return __generator(this, function (_a) {
              if (user === this.currentUser) {
                  return [2 /*return*/, this.queue(function () { return __awaiter(_this, void 0, void 0, function () { return __generator(this, function (_a) {
                          return [2 /*return*/, this.directlySetCurrentUser(user)];
                      }); }); })];
              }
              return [2 /*return*/];
          });
      });
  };
  /** Notifies listeners only if the user is current */
  AuthImpl.prototype._notifyListenersIfCurrent = function (user) {
      if (user === this.currentUser) {
          this.notifyAuthListeners();
      }
  };
  AuthImpl.prototype._key = function () {
      return this.config.authDomain + ":" + this.config.apiKey + ":" + this.name;
  };
  AuthImpl.prototype._startProactiveRefresh = function () {
      this.isProactiveRefreshEnabled = true;
      if (this.currentUser) {
          this._currentUser._startProactiveRefresh();
      }
  };
  AuthImpl.prototype._stopProactiveRefresh = function () {
      this.isProactiveRefreshEnabled = false;
      if (this.currentUser) {
          this._currentUser._stopProactiveRefresh();
      }
  };
  Object.defineProperty(AuthImpl.prototype, "_currentUser", {
      /** Returns the current user cast as the internal type */
      get: function () {
          return this.currentUser;
      },
      enumerable: false,
      configurable: true
  });
  AuthImpl.prototype.notifyAuthListeners = function () {
      var _a, _b;
      if (!this._isInitialized) {
          return;
      }
      this.idTokenSubscription.next(this.currentUser);
      var currentUid = (_b = (_a = this.currentUser) === null || _a === void 0 ? void 0 : _a.uid) !== null && _b !== void 0 ? _b : null;
      if (this.lastNotifiedUid !== currentUid) {
          this.lastNotifiedUid = currentUid;
          this.authStateSubscription.next(this.currentUser);
      }
  };
  AuthImpl.prototype.registerStateListener = function (subscription, nextOrObserver, error, completed) {
      var _this = this;
      if (this._deleted) {
          return function () { };
      }
      var cb = typeof nextOrObserver === 'function'
          ? nextOrObserver
          : nextOrObserver.next.bind(nextOrObserver);
      var promise = this._isInitialized
          ? Promise.resolve()
          : this._initializationPromise;
      _assert(promise, this, "internal-error" /* INTERNAL_ERROR */);
      // The callback needs to be called asynchronously per the spec.
      // eslint-disable-next-line @typescript-eslint/no-floating-promises
      promise.then(function () { return cb(_this.currentUser); });
      if (typeof nextOrObserver === 'function') {
          return subscription.addObserver(nextOrObserver, error, completed);
      }
      else {
          return subscription.addObserver(nextOrObserver);
      }
  };
  /**
   * Unprotected (from race conditions) method to set the current user. This
   * should only be called from within a queued callback. This is necessary
   * because the queue shouldn't rely on another queued callback.
   */
  AuthImpl.prototype.directlySetCurrentUser = function (user) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      if (this.currentUser && this.currentUser !== user) {
                          this._currentUser._stopProactiveRefresh();
                          if (user && this.isProactiveRefreshEnabled) {
                              user._startProactiveRefresh();
                          }
                      }
                      this.currentUser = user;
                      if (!user) return [3 /*break*/, 2];
                      return [4 /*yield*/, this.assertedPersistence.setCurrentUser(user)];
                  case 1:
                      _a.sent();
                      return [3 /*break*/, 4];
                  case 2: return [4 /*yield*/, this.assertedPersistence.removeCurrentUser()];
                  case 3:
                      _a.sent();
                      _a.label = 4;
                  case 4: return [2 /*return*/];
              }
          });
      });
  };
  AuthImpl.prototype.queue = function (action) {
      // In case something errors, the callback still should be called in order
      // to keep the promise chain alive
      this.operations = this.operations.then(action, action);
      return this.operations;
  };
  Object.defineProperty(AuthImpl.prototype, "assertedPersistence", {
      get: function () {
          _assert(this.persistenceManager, this, "internal-error" /* INTERNAL_ERROR */);
          return this.persistenceManager;
      },
      enumerable: false,
      configurable: true
  });
  AuthImpl.prototype._logFramework = function (framework) {
      if (!framework || this.frameworks.includes(framework)) {
          return;
      }
      this.frameworks.push(framework);
      // Sort alphabetically so that "FirebaseCore-web,FirebaseUI-web" and
      // "FirebaseUI-web,FirebaseCore-web" aren't viewed as different.
      this.frameworks.sort();
      this.clientVersion = _getClientVersion(this.config.clientPlatform, this._getFrameworks());
  };
  AuthImpl.prototype._getFrameworks = function () {
      return this.frameworks;
  };
  AuthImpl.prototype._getAdditionalHeaders = function () {
      var _a;
      return __awaiter(this, void 0, void 0, function () {
          var headers, heartbeatsHeader;
          var _b;
          return __generator(this, function (_c) {
              switch (_c.label) {
                  case 0:
                      headers = (_b = {},
                          _b["X-Client-Version" /* X_CLIENT_VERSION */] = this.clientVersion,
                          _b);
                      if (this.app.options.appId) {
                          headers["X-Firebase-gmpid" /* X_FIREBASE_GMPID */] = this.app.options.appId;
                      }
                      return [4 /*yield*/, ((_a = this.heartbeatServiceProvider.getImmediate({
                              optional: true,
                          })) === null || _a === void 0 ? void 0 : _a.getHeartbeatsHeader())];
                  case 1:
                      heartbeatsHeader = _c.sent();
                      if (heartbeatsHeader) {
                          headers["X-Firebase-Client" /* X_FIREBASE_CLIENT */] = heartbeatsHeader;
                      }
                      return [2 /*return*/, headers];
              }
          });
      });
  };
  return AuthImpl;
3038}());
3039/**
* Method to be used to cast down to our private implmentation of Auth.
* It will also handle unwrapping from the compat type if necessary
*
* @param auth Auth object passed in from developer
*/
3045function _castAuth(auth) {
  return getModularInstance(auth);
3047}
3048/** Helper class to wrap subscriber logic */
3049var Subscription = /** @class */ (function () {
  function Subscription(auth) {
      var _this = this;
      this.auth = auth;
      this.observer = null;
      this.addObserver = createSubscribe(function (observer) { return (_this.observer = observer); });
  }
  Object.defineProperty(Subscription.prototype, "next", {
      get: function () {
          _assert(this.observer, this.auth, "internal-error" /* INTERNAL_ERROR */);
          return this.observer.next.bind(this.observer);
      },
      enumerable: false,
      configurable: true
  });
  return Subscription;
3065}());
3066
3067/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3083var AuthInterop = /** @class */ (function () {
  function AuthInterop(auth) {
      this.auth = auth;
      this.internalListeners = new Map();
  }
  AuthInterop.prototype.getUid = function () {
      var _a;
      this.assertAuthConfigured();
      return ((_a = this.auth.currentUser) === null || _a === void 0 ? void 0 : _a.uid) || null;
  };
  AuthInterop.prototype.getToken = function (forceRefresh) {
      return __awaiter(this, void 0, void 0, function () {
          var accessToken;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      this.assertAuthConfigured();
                      return [4 /*yield*/, this.auth._initializationPromise];
                  case 1:
                      _a.sent();
                      if (!this.auth.currentUser) {
                          return [2 /*return*/, null];
                      }
                      return [4 /*yield*/, this.auth.currentUser.getIdToken(forceRefresh)];
                  case 2:
                      accessToken = _a.sent();
                      return [2 /*return*/, { accessToken: accessToken }];
              }
          });
      });
  };
  AuthInterop.prototype.addAuthTokenListener = function (listener) {
      this.assertAuthConfigured();
      if (this.internalListeners.has(listener)) {
          return;
      }
      var unsubscribe = this.auth.onIdTokenChanged(function (user) {
          var _a;
          listener(((_a = user) === null || _a === void 0 ? void 0 : _a.stsTokenManager.accessToken) || null);
      });
      this.internalListeners.set(listener, unsubscribe);
      this.updateProactiveRefresh();
  };
  AuthInterop.prototype.removeAuthTokenListener = function (listener) {
      this.assertAuthConfigured();
      var unsubscribe = this.internalListeners.get(listener);
      if (!unsubscribe) {
          return;
      }
      this.internalListeners.delete(listener);
      unsubscribe();
      this.updateProactiveRefresh();
  };
  AuthInterop.prototype.assertAuthConfigured = function () {
      _assert(this.auth._initializationPromise, "dependent-sdk-initialized-before-auth" /* DEPENDENT_SDK_INIT_BEFORE_AUTH */);
  };
  AuthInterop.prototype.updateProactiveRefresh = function () {
      if (this.internalListeners.size > 0) {
          this.auth._startProactiveRefresh();
      }
      else {
          this.auth._stopProactiveRefresh();
      }
  };
  return AuthInterop;
3148}());
3149
3150/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3166function getVersionForPlatform(clientPlatform) {
  switch (clientPlatform) {
      case "Node" /* NODE */:
          return 'node';
      case "ReactNative" /* REACT_NATIVE */:
          return 'rn';
      case "Worker" /* WORKER */:
          return 'webworker';
      case "Cordova" /* CORDOVA */:
          return 'cordova';
      default:
          return undefined;
  }
3179}
3180/** @internal */
3181function registerAuth(clientPlatform) {
  _registerComponent(new Component("auth" /* AUTH */, function (container, _a) {
      var deps = _a.options;
      var app = container.getProvider('app').getImmediate();
      var heartbeatServiceProvider = container.getProvider('heartbeat');
      var _b = app.options, apiKey = _b.apiKey, authDomain = _b.authDomain;
      return (function (app, heartbeatServiceProvider) {
          _assert(apiKey && !apiKey.includes(':'), "invalid-api-key" /* INVALID_API_KEY */, { appName: app.name });
          // Auth domain is optional if IdP sign in isn't being used
          _assert(!(authDomain === null || authDomain === void 0 ? void 0 : authDomain.includes(':')), "argument-error" /* ARGUMENT_ERROR */, {
              appName: app.name
          });
          var config = {
              apiKey: apiKey,
              authDomain: authDomain,
              clientPlatform: clientPlatform,
              apiHost: "identitytoolkit.googleapis.com" /* API_HOST */,
              tokenApiHost: "securetoken.googleapis.com" /* TOKEN_API_HOST */,
              apiScheme: "https" /* API_SCHEME */,
              sdkClientVersion: _getClientVersion(clientPlatform)
          };
          var authInstance = new AuthImpl(app, heartbeatServiceProvider, config);
          _initializeAuthInstance(authInstance, deps);
          return authInstance;
      })(app, heartbeatServiceProvider);
  }, "PUBLIC" /* PUBLIC */)
      /**
       * Auth can only be initialized by explicitly calling getAuth() or initializeAuth()
       * For why we do this, See go/firebase-next-auth-init
       */
      .setInstantiationMode("EXPLICIT" /* EXPLICIT */)
      /**
       * Because all firebase products that depend on auth depend on auth-internal directly,
       * we need to initialize auth-internal after auth is initialized to make it available to other firebase products.
       */
      .setInstanceCreatedCallback(function (container, _instanceIdentifier, _instance) {
      var authInternalProvider = container.getProvider("auth-internal" /* AUTH_INTERNAL */);
      authInternalProvider.initialize();
  }));
  _registerComponent(new Component("auth-internal" /* AUTH_INTERNAL */, function (container) {
      var auth = _castAuth(container.getProvider("auth" /* AUTH */).getImmediate());
      return (function (auth) { return new AuthInterop(auth); })(auth);
  }, "PRIVATE" /* PRIVATE */).setInstantiationMode("EXPLICIT" /* EXPLICIT */));
  registerVersion(name, version, getVersionForPlatform(clientPlatform));
  // BUILD_TARGET will be replaced by values like esm5, esm2017, cjs5, etc during the compilation
  registerVersion(name, version, 'esm5');
3227}
3228
3229var STORAGE_AVAILABLE_KEY = '__sak';
3230
3231/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3247/**
* Shim for Promise.allSettled, note the slightly different format of `fulfilled` vs `status`.
*
* @param promises - Array of promises to wait on.
*/
3252function _allSettled(promises) {
  var _this = this;
  return Promise.all(promises.map(function (promise) { return __awaiter(_this, void 0, void 0, function () {
      var value, reason_1;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  _a.trys.push([0, 2, , 3]);
                  return [4 /*yield*/, promise];
              case 1:
                  value = _a.sent();
                  return [2 /*return*/, {
                          fulfilled: true,
                          value: value
                      }];
              case 2:
                  reason_1 = _a.sent();
                  return [2 /*return*/, {
                          fulfilled: false,
                          reason: reason_1
                      }];
              case 3: return [2 /*return*/];
          }
      });
  }); }));
3277}
3278
3279/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3295/**
* Interface class for receiving messages.
*
*/
3299var Receiver = /** @class */ (function () {
  function Receiver(eventTarget) {
      this.eventTarget = eventTarget;
      this.handlersMap = {};
      this.boundEventHandler = this.handleEvent.bind(this);
  }
  /**
   * Obtain an instance of a Receiver for a given event target, if none exists it will be created.
   *
   * @param eventTarget - An event target (such as window or self) through which the underlying
   * messages will be received.
   */
  Receiver._getInstance = function (eventTarget) {
      // The results are stored in an array since objects can't be keys for other
      // objects. In addition, setting a unique property on an event target as a
      // hash map key may not be allowed due to CORS restrictions.
      var existingInstance = this.receivers.find(function (receiver) {
          return receiver.isListeningto(eventTarget);
      });
      if (existingInstance) {
          return existingInstance;
      }
      var newInstance = new Receiver(eventTarget);
      this.receivers.push(newInstance);
      return newInstance;
  };
  Receiver.prototype.isListeningto = function (eventTarget) {
      return this.eventTarget === eventTarget;
  };
  /**
   * Fans out a MessageEvent to the appropriate listeners.
   *
   * @remarks
   * Sends an {@link Status.ACK} upon receipt and a {@link Status.DONE} once all handlers have
   * finished processing.
   *
   * @param event - The MessageEvent.
   *
   */
  Receiver.prototype.handleEvent = function (event) {
      return __awaiter(this, void 0, void 0, function () {
          var messageEvent, _a, eventId, eventType, data, handlers, promises, response;
          var _this = this;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0:
                      messageEvent = event;
                      _a = messageEvent.data, eventId = _a.eventId, eventType = _a.eventType, data = _a.data;
                      handlers = this.handlersMap[eventType];
                      if (!(handlers === null || handlers === void 0 ? void 0 : handlers.size)) {
                          return [2 /*return*/];
                      }
                      messageEvent.ports[0].postMessage({
                          status: "ack" /* ACK */,
                          eventId: eventId,
                          eventType: eventType
                      });
                      promises = Array.from(handlers).map(function (handler) { return __awaiter(_this, void 0, void 0, function () { return __generator(this, function (_a) {
                          return [2 /*return*/, handler(messageEvent.origin, data)];
                      }); }); });
                      return [4 /*yield*/, _allSettled(promises)];
                  case 1:
                      response = _b.sent();
                      messageEvent.ports[0].postMessage({
                          status: "done" /* DONE */,
                          eventId: eventId,
                          eventType: eventType,
                          response: response
                      });
                      return [2 /*return*/];
              }
          });
      });
  };
  /**
   * Subscribe an event handler for a particular event.
   *
   * @param eventType - Event name to subscribe to.
   * @param eventHandler - The event handler which should receive the events.
   *
   */
  Receiver.prototype._subscribe = function (eventType, eventHandler) {
      if (Object.keys(this.handlersMap).length === 0) {
          this.eventTarget.addEventListener('message', this.boundEventHandler);
      }
      if (!this.handlersMap[eventType]) {
          this.handlersMap[eventType] = new Set();
      }
      this.handlersMap[eventType].add(eventHandler);
  };
  /**
   * Unsubscribe an event handler from a particular event.
   *
   * @param eventType - Event name to unsubscribe from.
   * @param eventHandler - Optinoal event handler, if none provided, unsubscribe all handlers on this event.
   *
   */
  Receiver.prototype._unsubscribe = function (eventType, eventHandler) {
      if (this.handlersMap[eventType] && eventHandler) {
          this.handlersMap[eventType].delete(eventHandler);
      }
      if (!eventHandler || this.handlersMap[eventType].size === 0) {
          delete this.handlersMap[eventType];
      }
      if (Object.keys(this.handlersMap).length === 0) {
          this.eventTarget.removeEventListener('message', this.boundEventHandler);
      }
  };
  Receiver.receivers = [];
  return Receiver;
3409}());
3410
3411/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3427function _generateEventId(prefix, digits) {
  if (prefix === void 0) { prefix = ''; }
  if (digits === void 0) { digits = 10; }
  var random = '';
  for (var i = 0; i < digits; i++) {
      random += Math.floor(Math.random() * 10);
  }
  return prefix + random;
3435}
3436
3437/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3453/**
* Interface for sending messages and waiting for a completion response.
*
*/
3457var Sender = /** @class */ (function () {
  function Sender(target) {
      this.target = target;
      this.handlers = new Set();
  }
  /**
   * Unsubscribe the handler and remove it from our tracking Set.
   *
   * @param handler - The handler to unsubscribe.
   */
  Sender.prototype.removeMessageHandler = function (handler) {
      if (handler.messageChannel) {
          handler.messageChannel.port1.removeEventListener('message', handler.onMessage);
          handler.messageChannel.port1.close();
      }
      this.handlers.delete(handler);
  };
  /**
   * Send a message to the Receiver located at {@link target}.
   *
   * @remarks
   * We'll first wait a bit for an ACK , if we get one we will wait significantly longer until the
   * receiver has had a chance to fully process the event.
   *
   * @param eventType - Type of event to send.
   * @param data - The payload of the event.
   * @param timeout - Timeout for waiting on an ACK from the receiver.
   *
   * @returns An array of settled promises from all the handlers that were listening on the receiver.
   */
  Sender.prototype._send = function (eventType, data, timeout) {
      if (timeout === void 0) { timeout = 50 /* ACK */; }
      return __awaiter(this, void 0, void 0, function () {
          var messageChannel, completionTimer, handler;
          var _this = this;
          return __generator(this, function (_a) {
              messageChannel = typeof MessageChannel !== 'undefined' ? new MessageChannel() : null;
              if (!messageChannel) {
                  throw new Error("connection_unavailable" /* CONNECTION_UNAVAILABLE */);
              }
              return [2 /*return*/, new Promise(function (resolve, reject) {
                      var eventId = _generateEventId('', 20);
                      messageChannel.port1.start();
                      var ackTimer = setTimeout(function () {
                          reject(new Error("unsupported_event" /* UNSUPPORTED_EVENT */));
                      }, timeout);
                      handler = {
                          messageChannel: messageChannel,
                          onMessage: function (event) {
                              var messageEvent = event;
                              if (messageEvent.data.eventId !== eventId) {
                                  return;
                              }
                              switch (messageEvent.data.status) {
                                  case "ack" /* ACK */:
                                      // The receiver should ACK first.
                                      clearTimeout(ackTimer);
                                      completionTimer = setTimeout(function () {
                                          reject(new Error("timeout" /* TIMEOUT */));
                                      }, 3000 /* COMPLETION */);
                                      break;
                                  case "done" /* DONE */:
                                      // Once the receiver's handlers are finished we will get the results.
                                      clearTimeout(completionTimer);
                                      resolve(messageEvent.data.response);
                                      break;
                                  default:
                                      clearTimeout(ackTimer);
                                      clearTimeout(completionTimer);
                                      reject(new Error("invalid_response" /* INVALID_RESPONSE */));
                                      break;
                              }
                          }
                      };
                      _this.handlers.add(handler);
                      messageChannel.port1.addEventListener('message', handler.onMessage);
                      _this.target.postMessage({
                          eventType: eventType,
                          eventId: eventId,
                          data: data
                      }, [messageChannel.port2]);
                  }).finally(function () {
                      if (handler) {
                          _this.removeMessageHandler(handler);
                      }
                  })];
          });
      });
  };
  return Sender;
3547}());
3548
3549/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3565/**
* Lazy accessor for window, since the compat layer won't tree shake this out,
* we need to make sure not to mess with window unless we have to
*/
3569function _window() {
  return window;
3571}
3572
3573/**
* @license
* Copyright 2020 Google LLC.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3589function _isWorker() {
  return (typeof _window()['WorkerGlobalScope'] !== 'undefined' &&
      typeof _window()['importScripts'] === 'function');
3592}
3593function _getActiveServiceWorker() {
  return __awaiter(this, void 0, void 0, function () {
      var registration;
      return __generator(this, function (_b) {
          switch (_b.label) {
              case 0:
                  if (!(navigator === null || navigator === void 0 ? void 0 : navigator.serviceWorker)) {
                      return [2 /*return*/, null];
                  }
                  _b.label = 1;
              case 1:
                  _b.trys.push([1, 3, , 4]);
                  return [4 /*yield*/, navigator.serviceWorker.ready];
              case 2:
                  registration = _b.sent();
                  return [2 /*return*/, registration.active];
              case 3:
                  _b.sent();
                  return [2 /*return*/, null];
              case 4: return [2 /*return*/];
          }
      });
  });
3616}
3617function _getServiceWorkerController() {
  var _a;
  return ((_a = navigator === null || navigator === void 0 ? void 0 : navigator.serviceWorker) === null || _a === void 0 ? void 0 : _a.controller) || null;
3620}
3621function _getWorkerGlobalScope() {
  return _isWorker() ? self : null;
3623}
3624
3625/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
3641var DB_NAME = 'firebaseLocalStorageDb';
3642var DB_VERSION = 1;
3643var DB_OBJECTSTORE_NAME = 'firebaseLocalStorage';
3644var DB_DATA_KEYPATH = 'fbase_key';
3645/**
* Promise wrapper for IDBRequest
*
* Unfortunately we can't cleanly extend Promise<T> since promises are not callable in ES6
*
*/
3651var DBPromise = /** @class */ (function () {
  function DBPromise(request) {
      this.request = request;
  }
  DBPromise.prototype.toPromise = function () {
      var _this = this;
      return new Promise(function (resolve, reject) {
          _this.request.addEventListener('success', function () {
              resolve(_this.request.result);
          });
          _this.request.addEventListener('error', function () {
              reject(_this.request.error);
          });
      });
  };
  return DBPromise;
3667}());
3668function getObjectStore(db, isReadWrite) {
  return db
      .transaction([DB_OBJECTSTORE_NAME], isReadWrite ? 'readwrite' : 'readonly')
      .objectStore(DB_OBJECTSTORE_NAME);
3672}
3673function _deleteDatabase() {
  var request = indexedDB.deleteDatabase(DB_NAME);
  return new DBPromise(request).toPromise();
3676}
3677function _openDatabase() {
  var _this = this;
  var request = indexedDB.open(DB_NAME, DB_VERSION);
  return new Promise(function (resolve, reject) {
      request.addEventListener('error', function () {
          reject(request.error);
      });
      request.addEventListener('upgradeneeded', function () {
          var db = request.result;
          try {
              db.createObjectStore(DB_OBJECTSTORE_NAME, { keyPath: DB_DATA_KEYPATH });
          }
          catch (e) {
              reject(e);
          }
      });
      request.addEventListener('success', function () { return __awaiter(_this, void 0, void 0, function () {
          var db, _a;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0:
                      db = request.result;
                      if (!!db.objectStoreNames.contains(DB_OBJECTSTORE_NAME)) return [3 /*break*/, 3];
                      // Need to close the database or else you get a `blocked` event
                      db.close();
                      return [4 /*yield*/, _deleteDatabase()];
                  case 1:
                      _b.sent();
                      _a = resolve;
                      return [4 /*yield*/, _openDatabase()];
                  case 2:
                      _a.apply(void 0, [_b.sent()]);
                      return [3 /*break*/, 4];
                  case 3:
                      resolve(db);
                      _b.label = 4;
                  case 4: return [2 /*return*/];
              }
          });
      }); });
  });
3718}
3719function _putObject(db, key, value) {
  return __awaiter(this, void 0, void 0, function () {
      var request;
      var _a;
      return __generator(this, function (_b) {
          request = getObjectStore(db, true).put((_a = {},
              _a[DB_DATA_KEYPATH] = key,
              _a.value = value,
              _a));
          return [2 /*return*/, new DBPromise(request).toPromise()];
      });
  });
3731}
3732function getObject(db, key) {
  return __awaiter(this, void 0, void 0, function () {
      var request, data;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  request = getObjectStore(db, false).get(key);
                  return [4 /*yield*/, new DBPromise(request).toPromise()];
              case 1:
                  data = _a.sent();
                  return [2 /*return*/, data === undefined ? null : data.value];
          }
      });
  });
3746}
3747function _deleteObject(db, key) {
  var request = getObjectStore(db, true).delete(key);
  return new DBPromise(request).toPromise();
3750}
3751var _POLLING_INTERVAL_MS = 800;
3752var _TRANSACTION_RETRY_COUNT = 3;
3753var IndexedDBLocalPersistence = /** @class */ (function () {
  function IndexedDBLocalPersistence() {
      this.type = "LOCAL" /* LOCAL */;
      this._shouldAllowMigration = true;
      this.listeners = {};
      this.localCache = {};
      // setTimeout return value is platform specific
      // eslint-disable-next-line @typescript-eslint/no-explicit-any
      this.pollTimer = null;
      this.pendingWrites = 0;
      this.receiver = null;
      this.sender = null;
      this.serviceWorkerReceiverAvailable = false;
      this.activeServiceWorker = null;
      // Fire & forget the service worker registration as it may never resolve
      this._workerInitializationPromise =
          this.initializeServiceWorkerMessaging().then(function () { }, function () { });
  }
  IndexedDBLocalPersistence.prototype._openDb = function () {
      return __awaiter(this, void 0, void 0, function () {
          var _a;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0:
                      if (this.db) {
                          return [2 /*return*/, this.db];
                      }
                      _a = this;
                      return [4 /*yield*/, _openDatabase()];
                  case 1:
                      _a.db = _b.sent();
                      return [2 /*return*/, this.db];
              }
          });
      });
  };
  IndexedDBLocalPersistence.prototype._withRetries = function (op) {
      return __awaiter(this, void 0, void 0, function () {
          var numAttempts, db, e_1;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      numAttempts = 0;
                      _a.label = 1;
                  case 1:
                      _a.label = 2;
                  case 2:
                      _a.trys.push([2, 5, , 6]);
                      return [4 /*yield*/, this._openDb()];
                  case 3:
                      db = _a.sent();
                      return [4 /*yield*/, op(db)];
                  case 4: return [2 /*return*/, _a.sent()];
                  case 5:
                      e_1 = _a.sent();
                      if (numAttempts++ > _TRANSACTION_RETRY_COUNT) {
                          throw e_1;
                      }
                      if (this.db) {
                          this.db.close();
                          this.db = undefined;
                      }
                      return [3 /*break*/, 6];
                  case 6: return [3 /*break*/, 1];
                  case 7: return [2 /*return*/];
              }
          });
      });
  };
  /**
   * IndexedDB events do not propagate from the main window to the worker context.  We rely on a
   * postMessage interface to send these events to the worker ourselves.
   */
  IndexedDBLocalPersistence.prototype.initializeServiceWorkerMessaging = function () {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              return [2 /*return*/, _isWorker() ? this.initializeReceiver() : this.initializeSender()];
          });
      });
  };
  /**
   * As the worker we should listen to events from the main window.
   */
  IndexedDBLocalPersistence.prototype.initializeReceiver = function () {
      return __awaiter(this, void 0, void 0, function () {
          var _this = this;
          return __generator(this, function (_a) {
              this.receiver = Receiver._getInstance(_getWorkerGlobalScope());
              // Refresh from persistence if we receive a KeyChanged message.
              this.receiver._subscribe("keyChanged" /* KEY_CHANGED */, function (_origin, data) { return __awaiter(_this, void 0, void 0, function () {
                  var keys;
                  return __generator(this, function (_a) {
                      switch (_a.label) {
                          case 0: return [4 /*yield*/, this._poll()];
                          case 1:
                              keys = _a.sent();
                              return [2 /*return*/, {
                                      keyProcessed: keys.includes(data.key)
                                  }];
                      }
                  });
              }); });
              // Let the sender know that we are listening so they give us more timeout.
              this.receiver._subscribe("ping" /* PING */, function (_origin, _data) { return __awaiter(_this, void 0, void 0, function () {
                  return __generator(this, function (_a) {
                      return [2 /*return*/, ["keyChanged" /* KEY_CHANGED */]];
                  });
              }); });
              return [2 /*return*/];
          });
      });
  };
  /**
   * As the main window, we should let the worker know when keys change (set and remove).
   *
   * @remarks
   * {@link https://developer.mozilla.org/en-US/docs/Web/API/ServiceWorkerContainer/ready | ServiceWorkerContainer.ready}
   * may not resolve.
   */
  IndexedDBLocalPersistence.prototype.initializeSender = function () {
      var _a, _b;
      return __awaiter(this, void 0, void 0, function () {
          var _c, results;
          return __generator(this, function (_d) {
              switch (_d.label) {
                  case 0:
                      // Check to see if there's an active service worker.
                      _c = this;
                      return [4 /*yield*/, _getActiveServiceWorker()];
                  case 1:
                      // Check to see if there's an active service worker.
                      _c.activeServiceWorker = _d.sent();
                      if (!this.activeServiceWorker) {
                          return [2 /*return*/];
                      }
                      this.sender = new Sender(this.activeServiceWorker);
                      return [4 /*yield*/, this.sender._send("ping" /* PING */, {}, 800 /* LONG_ACK */)];
                  case 2:
                      results = _d.sent();
                      if (!results) {
                          return [2 /*return*/];
                      }
                      if (((_a = results[0]) === null || _a === void 0 ? void 0 : _a.fulfilled) &&
                          ((_b = results[0]) === null || _b === void 0 ? void 0 : _b.value.includes("keyChanged" /* KEY_CHANGED */))) {
                          this.serviceWorkerReceiverAvailable = true;
                      }
                      return [2 /*return*/];
              }
          });
      });
  };
  /**
   * Let the worker know about a changed key, the exact key doesn't technically matter since the
   * worker will just trigger a full sync anyway.
   *
   * @remarks
   * For now, we only support one service worker per page.
   *
   * @param key - Storage key which changed.
   */
  IndexedDBLocalPersistence.prototype.notifyServiceWorker = function (key) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0:
                      if (!this.sender ||
                          !this.activeServiceWorker ||
                          _getServiceWorkerController() !== this.activeServiceWorker) {
                          return [2 /*return*/];
                      }
                      _b.label = 1;
                  case 1:
                      _b.trys.push([1, 3, , 4]);
                      return [4 /*yield*/, this.sender._send("keyChanged" /* KEY_CHANGED */, { key: key }, 
                          // Use long timeout if receiver has previously responded to a ping from us.
                          this.serviceWorkerReceiverAvailable
                              ? 800 /* LONG_ACK */
                              : 50 /* ACK */)];
                  case 2:
                      _b.sent();
                      return [3 /*break*/, 4];
                  case 3:
                      _b.sent();
                      return [3 /*break*/, 4];
                  case 4: return [2 /*return*/];
              }
          });
      });
  };
  IndexedDBLocalPersistence.prototype._isAvailable = function () {
      return __awaiter(this, void 0, void 0, function () {
          var db;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0:
                      _b.trys.push([0, 4, , 5]);
                      if (!indexedDB) {
                          return [2 /*return*/, false];
                      }
                      return [4 /*yield*/, _openDatabase()];
                  case 1:
                      db = _b.sent();
                      return [4 /*yield*/, _putObject(db, STORAGE_AVAILABLE_KEY, '1')];
                  case 2:
                      _b.sent();
                      return [4 /*yield*/, _deleteObject(db, STORAGE_AVAILABLE_KEY)];
                  case 3:
                      _b.sent();
                      return [2 /*return*/, true];
                  case 4:
                      _b.sent();
                      return [3 /*break*/, 5];
                  case 5: return [2 /*return*/, false];
              }
          });
      });
  };
  IndexedDBLocalPersistence.prototype._withPendingWrite = function (write) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      this.pendingWrites++;
                      _a.label = 1;
                  case 1:
                      _a.trys.push([1, , 3, 4]);
                      return [4 /*yield*/, write()];
                  case 2:
                      _a.sent();
                      return [3 /*break*/, 4];
                  case 3:
                      this.pendingWrites--;
                      return [7 /*endfinally*/];
                  case 4: return [2 /*return*/];
              }
          });
      });
  };
  IndexedDBLocalPersistence.prototype._set = function (key, value) {
      return __awaiter(this, void 0, void 0, function () {
          var _this = this;
          return __generator(this, function (_a) {
              return [2 /*return*/, this._withPendingWrite(function () { return __awaiter(_this, void 0, void 0, function () {
                      return __generator(this, function (_a) {
                          switch (_a.label) {
                              case 0: return [4 /*yield*/, this._withRetries(function (db) { return _putObject(db, key, value); })];
                              case 1:
                                  _a.sent();
                                  this.localCache[key] = value;
                                  return [2 /*return*/, this.notifyServiceWorker(key)];
                          }
                      });
                  }); })];
          });
      });
  };
  IndexedDBLocalPersistence.prototype._get = function (key) {
      return __awaiter(this, void 0, void 0, function () {
          var obj;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, this._withRetries(function (db) {
                          return getObject(db, key);
                      })];
                  case 1:
                      obj = (_a.sent());
                      this.localCache[key] = obj;
                      return [2 /*return*/, obj];
              }
          });
      });
  };
  IndexedDBLocalPersistence.prototype._remove = function (key) {
      return __awaiter(this, void 0, void 0, function () {
          var _this = this;
          return __generator(this, function (_a) {
              return [2 /*return*/, this._withPendingWrite(function () { return __awaiter(_this, void 0, void 0, function () {
                      return __generator(this, function (_a) {
                          switch (_a.label) {
                              case 0: return [4 /*yield*/, this._withRetries(function (db) { return _deleteObject(db, key); })];
                              case 1:
                                  _a.sent();
                                  delete this.localCache[key];
                                  return [2 /*return*/, this.notifyServiceWorker(key)];
                          }
                      });
                  }); })];
          });
      });
  };
  IndexedDBLocalPersistence.prototype._poll = function () {
      return __awaiter(this, void 0, void 0, function () {
          var result, keys, keysInResult, _i, result_1, _a, key, value, _b, _c, localKey;
          return __generator(this, function (_d) {
              switch (_d.label) {
                  case 0: return [4 /*yield*/, this._withRetries(function (db) {
                          var getAllRequest = getObjectStore(db, false).getAll();
                          return new DBPromise(getAllRequest).toPromise();
                      })];
                  case 1:
                      result = _d.sent();
                      if (!result) {
                          return [2 /*return*/, []];
                      }
                      // If we have pending writes in progress abort, we'll get picked up on the next poll
                      if (this.pendingWrites !== 0) {
                          return [2 /*return*/, []];
                      }
                      keys = [];
                      keysInResult = new Set();
                      for (_i = 0, result_1 = result; _i < result_1.length; _i++) {
                          _a = result_1[_i], key = _a.fbase_key, value = _a.value;
                          keysInResult.add(key);
                          if (JSON.stringify(this.localCache[key]) !== JSON.stringify(value)) {
                              this.notifyListeners(key, value);
                              keys.push(key);
                          }
                      }
                      for (_b = 0, _c = Object.keys(this.localCache); _b < _c.length; _b++) {
                          localKey = _c[_b];
                          if (this.localCache[localKey] && !keysInResult.has(localKey)) {
                              // Deleted
                              this.notifyListeners(localKey, null);
                              keys.push(localKey);
                          }
                      }
                      return [2 /*return*/, keys];
              }
          });
      });
  };
  IndexedDBLocalPersistence.prototype.notifyListeners = function (key, newValue) {
      this.localCache[key] = newValue;
      var listeners = this.listeners[key];
      if (listeners) {
          for (var _i = 0, _a = Array.from(listeners); _i < _a.length; _i++) {
              var listener = _a[_i];
              listener(newValue);
          }
      }
  };
  IndexedDBLocalPersistence.prototype.startPolling = function () {
      var _this = this;
      this.stopPolling();
      this.pollTimer = setInterval(function () { return __awaiter(_this, void 0, void 0, function () { return __generator(this, function (_a) {
          return [2 /*return*/, this._poll()];
      }); }); }, _POLLING_INTERVAL_MS);
  };
  IndexedDBLocalPersistence.prototype.stopPolling = function () {
      if (this.pollTimer) {
          clearInterval(this.pollTimer);
          this.pollTimer = null;
      }
  };
  IndexedDBLocalPersistence.prototype._addListener = function (key, listener) {
      if (Object.keys(this.listeners).length === 0) {
          this.startPolling();
      }
      if (!this.listeners[key]) {
          this.listeners[key] = new Set();
          // Populate the cache to avoid spuriously triggering on first poll.
          void this._get(key); // This can happen in the background async and we can return immediately.
      }
      this.listeners[key].add(listener);
  };
  IndexedDBLocalPersistence.prototype._removeListener = function (key, listener) {
      if (this.listeners[key]) {
          this.listeners[key].delete(listener);
          if (this.listeners[key].size === 0) {
              delete this.listeners[key];
          }
      }
      if (Object.keys(this.listeners).length === 0) {
          this.stopPolling();
      }
  };
  IndexedDBLocalPersistence.type = 'LOCAL';
  return IndexedDBLocalPersistence;
4131}());
4132/**
* An implementation of {@link Persistence} of type `LOCAL` using `indexedDB`
* for the underlying storage.
*
* @public
*/
4138var indexedDBLocalPersistence = IndexedDBLocalPersistence;
4139
4140/**
* @license
* Copyright 2021 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4156/**
* An enum of factors that may be used for multifactor authentication.
*
* @public
*/
4161var FactorId = {
  /** Phone as second factor */
  PHONE: 'phone'
4164};
4165/**
* Enumeration of supported providers.
*
* @public
*/
4170var ProviderId = {
  /** Facebook provider ID */
  FACEBOOK: 'facebook.com',
  /** GitHub provider ID */
  GITHUB: 'github.com',
  /** Google provider ID */
  GOOGLE: 'google.com',
  /** Password provider */
  PASSWORD: 'password',
  /** Phone provider */
  PHONE: 'phone',
  /** Twitter provider ID */
  TWITTER: 'twitter.com'
4183};
4184/**
* Enumeration of supported sign-in methods.
*
* @public
*/
4189var SignInMethod = {
  /** Email link sign in method */
  EMAIL_LINK: 'emailLink',
  /** Email/password sign in method */
  EMAIL_PASSWORD: 'password',
  /** Facebook sign in method */
  FACEBOOK: 'facebook.com',
  /** GitHub sign in method */
  GITHUB: 'github.com',
  /** Google sign in method */
  GOOGLE: 'google.com',
  /** Phone sign in method */
  PHONE: 'phone',
  /** Twitter sign in method */
  TWITTER: 'twitter.com'
4204};
4205/**
* Enumeration of supported operation types.
*
* @public
*/
4210var OperationType = {
  /** Operation involving linking an additional provider to an already signed-in user. */
  LINK: 'link',
  /** Operation involving using a provider to reauthenticate an already signed-in user. */
  REAUTHENTICATE: 'reauthenticate',
  /** Operation involving signing in a user. */
  SIGN_IN: 'signIn'
4217};
4218/**
* An enumeration of the possible email action types.
*
* @public
*/
4223var ActionCodeOperation = {
  /** The email link sign-in action. */
  EMAIL_SIGNIN: 'EMAIL_SIGNIN',
  /** The password reset action. */
  PASSWORD_RESET: 'PASSWORD_RESET',
  /** The email revocation action. */
  RECOVER_EMAIL: 'RECOVER_EMAIL',
  /** The revert second factor addition email action. */
  REVERT_SECOND_FACTOR_ADDITION: 'REVERT_SECOND_FACTOR_ADDITION',
  /** The revert second factor addition email action. */
  VERIFY_AND_CHANGE_EMAIL: 'VERIFY_AND_CHANGE_EMAIL',
  /** The email verification action. */
  VERIFY_EMAIL: 'VERIFY_EMAIL'
4236};
4237
4238/**
* Changes the {@link Auth} instance to communicate with the Firebase Auth Emulator, instead of production
* Firebase Auth services.
*
* @remarks
* This must be called synchronously immediately following the first call to
* {@link initializeAuth}.  Do not use with production credentials as emulator
* traffic is not encrypted.
*
*
* @example
* ```javascript
* connectAuthEmulator(auth, 'http://127.0.0.1:9099', { disableWarnings: true });
* ```
*
* @param auth - The {@link Auth} instance.
* @param url - The URL at which the emulator is running (eg, 'http://localhost:9099').
* @param options - Optional. `options.disableWarnings` defaults to `false`. Set it to
* `true` to disable the warning banner attached to the DOM.
*
* @public
*/
4260function connectAuthEmulator(auth, url, options) {
  var authInternal = _castAuth(auth);
  _assert(authInternal._canInitEmulator, authInternal, "emulator-config-failed" /* EMULATOR_CONFIG_FAILED */);
  _assert(/^https?:\/\//.test(url), authInternal, "invalid-emulator-scheme" /* INVALID_EMULATOR_SCHEME */);
  var disableWarnings = !!(options === null || options === void 0 ? void 0 : options.disableWarnings);
  var protocol = extractProtocol(url);
  var _a = extractHostAndPort(url), host = _a.host, port = _a.port;
  var portStr = port === null ? '' : ":" + port;
  // Always replace path with "/" (even if input url had no path at all, or had a different one).
  authInternal.config.emulator = { url: protocol + "//" + host + portStr + "/" };
  authInternal.settings.appVerificationDisabledForTesting = true;
  authInternal.emulatorConfig = Object.freeze({
      host: host,
      port: port,
      protocol: protocol.replace(':', ''),
      options: Object.freeze({ disableWarnings: disableWarnings })
  });
  if (!disableWarnings) {
      emitEmulatorWarning();
  }
4280}
4281function extractProtocol(url) {
  var protocolEnd = url.indexOf(':');
  return protocolEnd < 0 ? '' : url.substr(0, protocolEnd + 1);
4284}
4285function extractHostAndPort(url) {
  var protocol = extractProtocol(url);
  var authority = /(\/\/)?([^?#/]+)/.exec(url.substr(protocol.length)); // Between // and /, ? or #.
  if (!authority) {
      return { host: '', port: null };
  }
  var hostAndPort = authority[2].split('@').pop() || ''; // Strip out "username:password@".
  var bracketedIPv6 = /^(\[[^\]]+\])(:|$)/.exec(hostAndPort);
  if (bracketedIPv6) {
      var host = bracketedIPv6[1];
      return { host: host, port: parsePort(hostAndPort.substr(host.length + 1)) };
  }
  else {
      var _a = hostAndPort.split(':'), host = _a[0], port = _a[1];
      return { host: host, port: parsePort(port) };
  }
4301}
4302function parsePort(portStr) {
  if (!portStr) {
      return null;
  }
  var port = Number(portStr);
  if (isNaN(port)) {
      return null;
  }
  return port;
4311}
4312function emitEmulatorWarning() {
  function attachBanner() {
      var el = document.createElement('p');
      var sty = el.style;
      el.innerText =
          'Running in emulator mode. Do not use with production credentials.';
      sty.position = 'fixed';
      sty.width = '100%';
      sty.backgroundColor = '#ffffff';
      sty.border = '.1em solid #000000';
      sty.color = '#b50000';
      sty.bottom = '0px';
      sty.left = '0px';
      sty.margin = '0px';
      sty.zIndex = '10000';
      sty.textAlign = 'center';
      el.classList.add('firebase-emulator-warning');
      document.body.appendChild(el);
  }
  if (typeof console !== 'undefined' && typeof console.info === 'function') {
      console.info('WARNING: You are using the Auth Emulator,' +
          ' which is intended for local testing only.  Do not use with' +
          ' production credentials.');
  }
  if (typeof window !== 'undefined' &&
      typeof document !== 'undefined') {
      if (document.readyState === 'loading') {
          window.addEventListener('DOMContentLoaded', attachBanner);
      }
      else {
          attachBanner();
      }
  }
4345}
4346
4347/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4363/**
* Interface that represents the credentials returned by an {@link AuthProvider}.
*
* @remarks
* Implementations specify the details about each auth provider's credential requirements.
*
* @public
*/
4371var AuthCredential = /** @class */ (function () {
  /** @internal */
  function AuthCredential(
  /**
   * The authentication provider ID for the credential.
   *
   * @remarks
   * For example, 'facebook.com', or 'google.com'.
   */
  providerId, 
  /**
   * The authentication sign in method for the credential.
   *
   * @remarks
   * For example, {@link SignInMethod}.EMAIL_PASSWORD, or
   * {@link SignInMethod}.EMAIL_LINK. This corresponds to the sign-in method
   * identifier as returned in {@link fetchSignInMethodsForEmail}.
   */
  signInMethod) {
      this.providerId = providerId;
      this.signInMethod = signInMethod;
  }
  /**
   * Returns a JSON-serializable representation of this object.
   *
   * @returns a JSON-serializable representation of this object.
   */
  AuthCredential.prototype.toJSON = function () {
      return debugFail('not implemented');
  };
  /** @internal */
  AuthCredential.prototype._getIdTokenResponse = function (_auth) {
      return debugFail('not implemented');
  };
  /** @internal */
  AuthCredential.prototype._linkToIdToken = function (_auth, _idToken) {
      return debugFail('not implemented');
  };
  /** @internal */
  AuthCredential.prototype._getReauthenticationResolver = function (_auth) {
      return debugFail('not implemented');
  };
  return AuthCredential;
4414}());
4415
4416/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4432function resetPassword(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:resetPassword" /* RESET_PASSWORD */, _addTidIfNecessary(auth, request))];
      });
  });
4438}
4439function updateEmailPassword(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:update" /* SET_ACCOUNT_INFO */, request)];
      });
  });
4445}
4446function applyActionCode$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:update" /* SET_ACCOUNT_INFO */, _addTidIfNecessary(auth, request))];
      });
  });
4452}
4453
4454/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4470function signInWithPassword(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithPassword" /* SIGN_IN_WITH_PASSWORD */, _addTidIfNecessary(auth, request))];
      });
  });
4476}
4477function sendOobCode(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:sendOobCode" /* SEND_OOB_CODE */, _addTidIfNecessary(auth, request))];
      });
  });
4483}
4484function sendEmailVerification$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, sendOobCode(auth, request)];
      });
  });
4490}
4491function sendPasswordResetEmail$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, sendOobCode(auth, request)];
      });
  });
4497}
4498function sendSignInLinkToEmail$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, sendOobCode(auth, request)];
      });
  });
4504}
4505function verifyAndChangeEmail(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, sendOobCode(auth, request)];
      });
  });
4511}
4512
4513/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4529function signInWithEmailLink$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithEmailLink" /* SIGN_IN_WITH_EMAIL_LINK */, _addTidIfNecessary(auth, request))];
      });
  });
4535}
4536function signInWithEmailLinkForLinking(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithEmailLink" /* SIGN_IN_WITH_EMAIL_LINK */, _addTidIfNecessary(auth, request))];
      });
  });
4542}
4543
4544/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4560/**
* Interface that represents the credentials returned by {@link EmailAuthProvider} for
* {@link ProviderId}.PASSWORD
*
* @remarks
* Covers both {@link SignInMethod}.EMAIL_PASSWORD and
* {@link SignInMethod}.EMAIL_LINK.
*
* @public
*/
4570var EmailAuthCredential = /** @class */ (function (_super) {
  __extends(EmailAuthCredential, _super);
  /** @internal */
  function EmailAuthCredential(
  /** @internal */
  _email, 
  /** @internal */
  _password, signInMethod, 
  /** @internal */
  _tenantId) {
      if (_tenantId === void 0) { _tenantId = null; }
      var _this = _super.call(this, "password" /* PASSWORD */, signInMethod) || this;
      _this._email = _email;
      _this._password = _password;
      _this._tenantId = _tenantId;
      return _this;
  }
  /** @internal */
  EmailAuthCredential._fromEmailAndPassword = function (email, password) {
      return new EmailAuthCredential(email, password, "password" /* EMAIL_PASSWORD */);
  };
  /** @internal */
  EmailAuthCredential._fromEmailAndCode = function (email, oobCode, tenantId) {
      if (tenantId === void 0) { tenantId = null; }
      return new EmailAuthCredential(email, oobCode, "emailLink" /* EMAIL_LINK */, tenantId);
  };
  /** {@inheritdoc AuthCredential.toJSON} */
  EmailAuthCredential.prototype.toJSON = function () {
      return {
          email: this._email,
          password: this._password,
          signInMethod: this.signInMethod,
          tenantId: this._tenantId
      };
  };
  /**
   * Static method to deserialize a JSON representation of an object into an {@link  AuthCredential}.
   *
   * @param json - Either `object` or the stringified representation of the object. When string is
   * provided, `JSON.parse` would be called first.
   *
   * @returns If the JSON input does not represent an {@link AuthCredential}, null is returned.
   */
  EmailAuthCredential.fromJSON = function (json) {
      var obj = typeof json === 'string' ? JSON.parse(json) : json;
      if ((obj === null || obj === void 0 ? void 0 : obj.email) && (obj === null || obj === void 0 ? void 0 : obj.password)) {
          if (obj.signInMethod === "password" /* EMAIL_PASSWORD */) {
              return this._fromEmailAndPassword(obj.email, obj.password);
          }
          else if (obj.signInMethod === "emailLink" /* EMAIL_LINK */) {
              return this._fromEmailAndCode(obj.email, obj.password, obj.tenantId);
          }
      }
      return null;
  };
  /** @internal */
  EmailAuthCredential.prototype._getIdTokenResponse = function (auth) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (this.signInMethod) {
                  case "password" /* EMAIL_PASSWORD */:
                      return [2 /*return*/, signInWithPassword(auth, {
                              returnSecureToken: true,
                              email: this._email,
                              password: this._password
                          })];
                  case "emailLink" /* EMAIL_LINK */:
                      return [2 /*return*/, signInWithEmailLink$1(auth, {
                              email: this._email,
                              oobCode: this._password
                          })];
                  default:
                      _fail(auth, "internal-error" /* INTERNAL_ERROR */);
              }
              return [2 /*return*/];
          });
      });
  };
  /** @internal */
  EmailAuthCredential.prototype._linkToIdToken = function (auth, idToken) {
      return __awaiter(this, void 0, void 0, function () {
          return __generator(this, function (_a) {
              switch (this.signInMethod) {
                  case "password" /* EMAIL_PASSWORD */:
                      return [2 /*return*/, updateEmailPassword(auth, {
                              idToken: idToken,
                              returnSecureToken: true,
                              email: this._email,
                              password: this._password
                          })];
                  case "emailLink" /* EMAIL_LINK */:
                      return [2 /*return*/, signInWithEmailLinkForLinking(auth, {
                              idToken: idToken,
                              email: this._email,
                              oobCode: this._password
                          })];
                  default:
                      _fail(auth, "internal-error" /* INTERNAL_ERROR */);
              }
              return [2 /*return*/];
          });
      });
  };
  /** @internal */
  EmailAuthCredential.prototype._getReauthenticationResolver = function (auth) {
      return this._getIdTokenResponse(auth);
  };
  return EmailAuthCredential;
4678}(AuthCredential));
4679
4680/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4696function signInWithIdp(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithIdp" /* SIGN_IN_WITH_IDP */, _addTidIfNecessary(auth, request))];
      });
  });
4702}
4703
4704/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4720var IDP_REQUEST_URI$1 = 'http://localhost';
4721/**
* Represents the OAuth credentials returned by an {@link OAuthProvider}.
*
* @remarks
* Implementations specify the details about each auth provider's credential requirements.
*
* @public
*/
4729var OAuthCredential = /** @class */ (function (_super) {
  __extends(OAuthCredential, _super);
  function OAuthCredential() {
      var _this = _super !== null && _super.apply(this, arguments) || this;
      _this.pendingToken = null;
      return _this;
  }
  /** @internal */
  OAuthCredential._fromParams = function (params) {
      var cred = new OAuthCredential(params.providerId, params.signInMethod);
      if (params.idToken || params.accessToken) {
          // OAuth 2 and either ID token or access token.
          if (params.idToken) {
              cred.idToken = params.idToken;
          }
          if (params.accessToken) {
              cred.accessToken = params.accessToken;
          }
          // Add nonce if available and no pendingToken is present.
          if (params.nonce && !params.pendingToken) {
              cred.nonce = params.nonce;
          }
          if (params.pendingToken) {
              cred.pendingToken = params.pendingToken;
          }
      }
      else if (params.oauthToken && params.oauthTokenSecret) {
          // OAuth 1 and OAuth token with token secret
          cred.accessToken = params.oauthToken;
          cred.secret = params.oauthTokenSecret;
      }
      else {
          _fail("argument-error" /* ARGUMENT_ERROR */);
      }
      return cred;
  };
  /** {@inheritdoc AuthCredential.toJSON}  */
  OAuthCredential.prototype.toJSON = function () {
      return {
          idToken: this.idToken,
          accessToken: this.accessToken,
          secret: this.secret,
          nonce: this.nonce,
          pendingToken: this.pendingToken,
          providerId: this.providerId,
          signInMethod: this.signInMethod
      };
  };
  /**
   * Static method to deserialize a JSON representation of an object into an
   * {@link  AuthCredential}.
   *
   * @param json - Input can be either Object or the stringified representation of the object.
   * When string is provided, JSON.parse would be called first.
   *
   * @returns If the JSON input does not represent an {@link  AuthCredential}, null is returned.
   */
  OAuthCredential.fromJSON = function (json) {
      var obj = typeof json === 'string' ? JSON.parse(json) : json;
      var providerId = obj.providerId, signInMethod = obj.signInMethod, rest = __rest(obj, ["providerId", "signInMethod"]);
      if (!providerId || !signInMethod) {
          return null;
      }
      var cred = new OAuthCredential(providerId, signInMethod);
      cred.idToken = rest.idToken || undefined;
      cred.accessToken = rest.accessToken || undefined;
      cred.secret = rest.secret;
      cred.nonce = rest.nonce;
      cred.pendingToken = rest.pendingToken || null;
      return cred;
  };
  /** @internal */
  OAuthCredential.prototype._getIdTokenResponse = function (auth) {
      var request = this.buildRequest();
      return signInWithIdp(auth, request);
  };
  /** @internal */
  OAuthCredential.prototype._linkToIdToken = function (auth, idToken) {
      var request = this.buildRequest();
      request.idToken = idToken;
      return signInWithIdp(auth, request);
  };
  /** @internal */
  OAuthCredential.prototype._getReauthenticationResolver = function (auth) {
      var request = this.buildRequest();
      request.autoCreate = false;
      return signInWithIdp(auth, request);
  };
  OAuthCredential.prototype.buildRequest = function () {
      var request = {
          requestUri: IDP_REQUEST_URI$1,
          returnSecureToken: true
      };
      if (this.pendingToken) {
          request.pendingToken = this.pendingToken;
      }
      else {
          var postBody = {};
          if (this.idToken) {
              postBody['id_token'] = this.idToken;
          }
          if (this.accessToken) {
              postBody['access_token'] = this.accessToken;
          }
          if (this.secret) {
              postBody['oauth_token_secret'] = this.secret;
          }
          postBody['providerId'] = this.providerId;
          if (this.nonce && !this.pendingToken) {
              postBody['nonce'] = this.nonce;
          }
          request.postBody = querystring(postBody);
      }
      return request;
  };
  return OAuthCredential;
4845}(AuthCredential));
4846
4847/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4863var _a;
4864function signInWithPhoneNumber(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithPhoneNumber" /* SIGN_IN_WITH_PHONE_NUMBER */, _addTidIfNecessary(auth, request))];
      });
  });
4870}
4871function linkWithPhoneNumber(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      var response;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithPhoneNumber" /* SIGN_IN_WITH_PHONE_NUMBER */, _addTidIfNecessary(auth, request))];
              case 1:
                  response = _a.sent();
                  if (response.temporaryProof) {
                      throw _makeTaggedError(auth, "account-exists-with-different-credential" /* NEED_CONFIRMATION */, response);
                  }
                  return [2 /*return*/, response];
          }
      });
  });
4886}
4887var VERIFY_PHONE_NUMBER_FOR_EXISTING_ERROR_MAP_ = (_a = {},
  _a["USER_NOT_FOUND" /* USER_NOT_FOUND */] = "user-not-found" /* USER_DELETED */,
  _a);
4890function verifyPhoneNumberForExisting(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      var apiRequest;
      return __generator(this, function (_a) {
          apiRequest = __assign(__assign({}, request), { operation: 'REAUTH' });
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithPhoneNumber" /* SIGN_IN_WITH_PHONE_NUMBER */, _addTidIfNecessary(auth, apiRequest), VERIFY_PHONE_NUMBER_FOR_EXISTING_ERROR_MAP_)];
      });
  });
4898}
4899
4900/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
4916/**
* Represents the credentials returned by {@link PhoneAuthProvider}.
*
* @public
*/
4921var PhoneAuthCredential = /** @class */ (function (_super) {
  __extends(PhoneAuthCredential, _super);
  function PhoneAuthCredential(params) {
      var _this = _super.call(this, "phone" /* PHONE */, "phone" /* PHONE */) || this;
      _this.params = params;
      return _this;
  }
  /** @internal */
  PhoneAuthCredential._fromVerification = function (verificationId, verificationCode) {
      return new PhoneAuthCredential({ verificationId: verificationId, verificationCode: verificationCode });
  };
  /** @internal */
  PhoneAuthCredential._fromTokenResponse = function (phoneNumber, temporaryProof) {
      return new PhoneAuthCredential({ phoneNumber: phoneNumber, temporaryProof: temporaryProof });
  };
  /** @internal */
  PhoneAuthCredential.prototype._getIdTokenResponse = function (auth) {
      return signInWithPhoneNumber(auth, this._makeVerificationRequest());
  };
  /** @internal */
  PhoneAuthCredential.prototype._linkToIdToken = function (auth, idToken) {
      return linkWithPhoneNumber(auth, __assign({ idToken: idToken }, this._makeVerificationRequest()));
  };
  /** @internal */
  PhoneAuthCredential.prototype._getReauthenticationResolver = function (auth) {
      return verifyPhoneNumberForExisting(auth, this._makeVerificationRequest());
  };
  /** @internal */
  PhoneAuthCredential.prototype._makeVerificationRequest = function () {
      var _a = this.params, temporaryProof = _a.temporaryProof, phoneNumber = _a.phoneNumber, verificationId = _a.verificationId, verificationCode = _a.verificationCode;
      if (temporaryProof && phoneNumber) {
          return { temporaryProof: temporaryProof, phoneNumber: phoneNumber };
      }
      return {
          sessionInfo: verificationId,
          code: verificationCode
      };
  };
  /** {@inheritdoc AuthCredential.toJSON} */
  PhoneAuthCredential.prototype.toJSON = function () {
      var obj = {
          providerId: this.providerId
      };
      if (this.params.phoneNumber) {
          obj.phoneNumber = this.params.phoneNumber;
      }
      if (this.params.temporaryProof) {
          obj.temporaryProof = this.params.temporaryProof;
      }
      if (this.params.verificationCode) {
          obj.verificationCode = this.params.verificationCode;
      }
      if (this.params.verificationId) {
          obj.verificationId = this.params.verificationId;
      }
      return obj;
  };
  /** Generates a phone credential based on a plain object or a JSON string. */
  PhoneAuthCredential.fromJSON = function (json) {
      if (typeof json === 'string') {
          json = JSON.parse(json);
      }
      var _a = json, verificationId = _a.verificationId, verificationCode = _a.verificationCode, phoneNumber = _a.phoneNumber, temporaryProof = _a.temporaryProof;
      if (!verificationCode &&
          !verificationId &&
          !phoneNumber &&
          !temporaryProof) {
          return null;
      }
      return new PhoneAuthCredential({
          verificationId: verificationId,
          verificationCode: verificationCode,
          phoneNumber: phoneNumber,
          temporaryProof: temporaryProof
      });
  };
  return PhoneAuthCredential;
4998}(AuthCredential));
4999
5000/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5016/**
* Maps the mode string in action code URL to Action Code Info operation.
*
* @param mode
*/
5021function parseMode(mode) {
  switch (mode) {
      case 'recoverEmail':
          return "RECOVER_EMAIL" /* RECOVER_EMAIL */;
      case 'resetPassword':
          return "PASSWORD_RESET" /* PASSWORD_RESET */;
      case 'signIn':
          return "EMAIL_SIGNIN" /* EMAIL_SIGNIN */;
      case 'verifyEmail':
          return "VERIFY_EMAIL" /* VERIFY_EMAIL */;
      case 'verifyAndChangeEmail':
          return "VERIFY_AND_CHANGE_EMAIL" /* VERIFY_AND_CHANGE_EMAIL */;
      case 'revertSecondFactorAddition':
          return "REVERT_SECOND_FACTOR_ADDITION" /* REVERT_SECOND_FACTOR_ADDITION */;
      default:
          return null;
  }
5038}
5039/**
* Helper to parse FDL links
*
* @param url
*/
5044function parseDeepLink(url) {
  var link = querystringDecode(extractQuerystring(url))['link'];
  // Double link case (automatic redirect).
  var doubleDeepLink = link
      ? querystringDecode(extractQuerystring(link))['deep_link_id']
      : null;
  // iOS custom scheme links.
  var iOSDeepLink = querystringDecode(extractQuerystring(url))['deep_link_id'];
  var iOSDoubleDeepLink = iOSDeepLink
      ? querystringDecode(extractQuerystring(iOSDeepLink))['link']
      : null;
  return iOSDoubleDeepLink || iOSDeepLink || doubleDeepLink || link || url;
5056}
5057/**
* A utility class to parse email action URLs such as password reset, email verification,
* email link sign in, etc.
*
* @public
*/
5063var ActionCodeURL = /** @class */ (function () {
  /**
   * @param actionLink - The link from which to extract the URL.
   * @returns The {@link ActionCodeURL} object, or null if the link is invalid.
   *
   * @internal
   */
  function ActionCodeURL(actionLink) {
      var _a, _b, _c, _d, _e, _f;
      var searchParams = querystringDecode(extractQuerystring(actionLink));
      var apiKey = (_a = searchParams["apiKey" /* API_KEY */]) !== null && _a !== void 0 ? _a : null;
      var code = (_b = searchParams["oobCode" /* CODE */]) !== null && _b !== void 0 ? _b : null;
      var operation = parseMode((_c = searchParams["mode" /* MODE */]) !== null && _c !== void 0 ? _c : null);
      // Validate API key, code and mode.
      _assert(apiKey && code && operation, "argument-error" /* ARGUMENT_ERROR */);
      this.apiKey = apiKey;
      this.operation = operation;
      this.code = code;
      this.continueUrl = (_d = searchParams["continueUrl" /* CONTINUE_URL */]) !== null && _d !== void 0 ? _d : null;
      this.languageCode = (_e = searchParams["languageCode" /* LANGUAGE_CODE */]) !== null && _e !== void 0 ? _e : null;
      this.tenantId = (_f = searchParams["tenantId" /* TENANT_ID */]) !== null && _f !== void 0 ? _f : null;
  }
  /**
   * Parses the email action link string and returns an {@link ActionCodeURL} if the link is valid,
   * otherwise returns null.
   *
   * @param link  - The email action link string.
   * @returns The {@link ActionCodeURL} object, or null if the link is invalid.
   *
   * @public
   */
  ActionCodeURL.parseLink = function (link) {
      var actionLink = parseDeepLink(link);
      try {
          return new ActionCodeURL(actionLink);
      }
      catch (_a) {
          return null;
      }
  };
  return ActionCodeURL;
5104}());
5105/**
* Parses the email action link string and returns an {@link ActionCodeURL} if
* the link is valid, otherwise returns null.
*
* @public
*/
5111function parseActionCodeURL(link) {
  return ActionCodeURL.parseLink(link);
5113}
5114
5115/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5131/**
* Provider for generating {@link EmailAuthCredential}.
*
* @public
*/
5136var EmailAuthProvider = /** @class */ (function () {
  function EmailAuthProvider() {
      /**
       * Always set to {@link ProviderId}.PASSWORD, even for email link.
       */
      this.providerId = EmailAuthProvider.PROVIDER_ID;
  }
  /**
   * Initialize an {@link AuthCredential} using an email and password.
   *
   * @example
   * ```javascript
   * const authCredential = EmailAuthProvider.credential(email, password);
   * const userCredential = await signInWithCredential(auth, authCredential);
   * ```
   *
   * @example
   * ```javascript
   * const userCredential = await signInWithEmailAndPassword(auth, email, password);
   * ```
   *
   * @param email - Email address.
   * @param password - User account password.
   * @returns The auth provider credential.
   */
  EmailAuthProvider.credential = function (email, password) {
      return EmailAuthCredential._fromEmailAndPassword(email, password);
  };
  /**
   * Initialize an {@link AuthCredential} using an email and an email link after a sign in with
   * email link operation.
   *
   * @example
   * ```javascript
   * const authCredential = EmailAuthProvider.credentialWithLink(auth, email, emailLink);
   * const userCredential = await signInWithCredential(auth, authCredential);
   * ```
   *
   * @example
   * ```javascript
   * await sendSignInLinkToEmail(auth, email);
   * // Obtain emailLink from user.
   * const userCredential = await signInWithEmailLink(auth, email, emailLink);
   * ```
   *
   * @param auth - The {@link Auth} instance used to verify the link.
   * @param email - Email address.
   * @param emailLink - Sign-in email link.
   * @returns - The auth provider credential.
   */
  EmailAuthProvider.credentialWithLink = function (email, emailLink) {
      var actionCodeUrl = ActionCodeURL.parseLink(emailLink);
      _assert(actionCodeUrl, "argument-error" /* ARGUMENT_ERROR */);
      return EmailAuthCredential._fromEmailAndCode(email, actionCodeUrl.code, actionCodeUrl.tenantId);
  };
  /**
   * Always set to {@link ProviderId}.PASSWORD, even for email link.
   */
  EmailAuthProvider.PROVIDER_ID = "password" /* PASSWORD */;
  /**
   * Always set to {@link SignInMethod}.EMAIL_PASSWORD.
   */
  EmailAuthProvider.EMAIL_PASSWORD_SIGN_IN_METHOD = "password" /* EMAIL_PASSWORD */;
  /**
   * Always set to {@link SignInMethod}.EMAIL_LINK.
   */
  EmailAuthProvider.EMAIL_LINK_SIGN_IN_METHOD = "emailLink" /* EMAIL_LINK */;
  return EmailAuthProvider;
5204}());
5205
5206/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5222/**
* The base class for all Federated providers (OAuth (including OIDC), SAML).
*
* This class is not meant to be instantiated directly.
*
* @public
*/
5229var FederatedAuthProvider = /** @class */ (function () {
  /**
   * Constructor for generic OAuth providers.
   *
   * @param providerId - Provider for which credentials should be generated.
   */
  function FederatedAuthProvider(providerId) {
      this.providerId = providerId;
      /** @internal */
      this.defaultLanguageCode = null;
      /** @internal */
      this.customParameters = {};
  }
  /**
   * Set the language gode.
   *
   * @param languageCode - language code
   */
  FederatedAuthProvider.prototype.setDefaultLanguage = function (languageCode) {
      this.defaultLanguageCode = languageCode;
  };
  /**
   * Sets the OAuth custom parameters to pass in an OAuth request for popup and redirect sign-in
   * operations.
   *
   * @remarks
   * For a detailed list, check the reserved required OAuth 2.0 parameters such as `client_id`,
   * `redirect_uri`, `scope`, `response_type`, and `state` are not allowed and will be ignored.
   *
   * @param customOAuthParameters - The custom OAuth parameters to pass in the OAuth request.
   */
  FederatedAuthProvider.prototype.setCustomParameters = function (customOAuthParameters) {
      this.customParameters = customOAuthParameters;
      return this;
  };
  /**
   * Retrieve the current list of {@link CustomParameters}.
   */
  FederatedAuthProvider.prototype.getCustomParameters = function () {
      return this.customParameters;
  };
  return FederatedAuthProvider;
5271}());
5272
5273/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5289/**
* Common code to all OAuth providers. This is separate from the
* {@link OAuthProvider} so that child providers (like
* {@link GoogleAuthProvider}) don't inherit the `credential` instance method.
* Instead, they rely on a static `credential` method.
*/
5295var BaseOAuthProvider = /** @class */ (function (_super) {
  __extends(BaseOAuthProvider, _super);
  function BaseOAuthProvider() {
      var _this = _super !== null && _super.apply(this, arguments) || this;
      /** @internal */
      _this.scopes = [];
      return _this;
  }
  /**
   * Add an OAuth scope to the credential.
   *
   * @param scope - Provider OAuth scope to add.
   */
  BaseOAuthProvider.prototype.addScope = function (scope) {
      // If not already added, add scope to list.
      if (!this.scopes.includes(scope)) {
          this.scopes.push(scope);
      }
      return this;
  };
  /**
   * Retrieve the current list of OAuth scopes.
   */
  BaseOAuthProvider.prototype.getScopes = function () {
      return __spreadArray([], this.scopes);
  };
  return BaseOAuthProvider;
5322}(FederatedAuthProvider));
5323/**
* Provider for generating generic {@link OAuthCredential}.
*
* @example
* ```javascript
* // Sign in using a redirect.
* const provider = new OAuthProvider('google.com');
* // Start a sign in process for an unauthenticated user.
* provider.addScope('profile');
* provider.addScope('email');
* await signInWithRedirect(auth, provider);
* // This will trigger a full page redirect away from your app
*
* // After returning from the redirect when your app initializes you can obtain the result
* const result = await getRedirectResult(auth);
* if (result) {
*   // This is the signed-in user
*   const user = result.user;
*   // This gives you a OAuth Access Token for the provider.
*   const credential = provider.credentialFromResult(auth, result);
*   const token = credential.accessToken;
* }
* ```
*
* @example
* ```javascript
* // Sign in using a popup.
* const provider = new OAuthProvider('google.com');
* provider.addScope('profile');
* provider.addScope('email');
* const result = await signInWithPopup(auth, provider);
*
* // The signed-in user info.
* const user = result.user;
* // This gives you a OAuth Access Token for the provider.
* const credential = provider.credentialFromResult(auth, result);
* const token = credential.accessToken;
* ```
* @public
*/
5363var OAuthProvider = /** @class */ (function (_super) {
  __extends(OAuthProvider, _super);
  function OAuthProvider() {
      return _super !== null && _super.apply(this, arguments) || this;
  }
  /**
   * Creates an {@link OAuthCredential} from a JSON string or a plain object.
   * @param json - A plain object or a JSON string
   */
  OAuthProvider.credentialFromJSON = function (json) {
      var obj = typeof json === 'string' ? JSON.parse(json) : json;
      _assert('providerId' in obj && 'signInMethod' in obj, "argument-error" /* ARGUMENT_ERROR */);
      return OAuthCredential._fromParams(obj);
  };
  /**
   * Creates a {@link OAuthCredential} from a generic OAuth provider's access token or ID token.
   *
   * @remarks
   * The raw nonce is required when an ID token with a nonce field is provided. The SHA-256 hash of
   * the raw nonce must match the nonce field in the ID token.
   *
   * @example
   * ```javascript
   * // `googleUser` from the onsuccess Google Sign In callback.
   * // Initialize a generate OAuth provider with a `google.com` providerId.
   * const provider = new OAuthProvider('google.com');
   * const credential = provider.credential({
   *   idToken: googleUser.getAuthResponse().id_token,
   * });
   * const result = await signInWithCredential(credential);
   * ```
   *
   * @param params - Either the options object containing the ID token, access token and raw nonce
   * or the ID token string.
   */
  OAuthProvider.prototype.credential = function (params) {
      return this._credential(__assign(__assign({}, params), { nonce: params.rawNonce }));
  };
  /** An internal credential method that accepts more permissive options */
  OAuthProvider.prototype._credential = function (params) {
      _assert(params.idToken || params.accessToken, "argument-error" /* ARGUMENT_ERROR */);
      // For OAuthCredential, sign in method is same as providerId.
      return OAuthCredential._fromParams(__assign(__assign({}, params), { providerId: this.providerId, signInMethod: this.providerId }));
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link UserCredential}.
   *
   * @param userCredential - The user credential.
   */
  OAuthProvider.credentialFromResult = function (userCredential) {
      return OAuthProvider.oauthCredentialFromTaggedObject(userCredential);
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link AuthError} which was
   * thrown during a sign-in, link, or reauthenticate operation.
   *
   * @param userCredential - The user credential.
   */
  OAuthProvider.credentialFromError = function (error) {
      return OAuthProvider.oauthCredentialFromTaggedObject((error.customData || {}));
  };
  OAuthProvider.oauthCredentialFromTaggedObject = function (_a) {
      var tokenResponse = _a._tokenResponse;
      if (!tokenResponse) {
          return null;
      }
      var _b = tokenResponse, oauthIdToken = _b.oauthIdToken, oauthAccessToken = _b.oauthAccessToken, oauthTokenSecret = _b.oauthTokenSecret, pendingToken = _b.pendingToken, nonce = _b.nonce, providerId = _b.providerId;
      if (!oauthAccessToken &&
          !oauthTokenSecret &&
          !oauthIdToken &&
          !pendingToken) {
          return null;
      }
      if (!providerId) {
          return null;
      }
      try {
          return new OAuthProvider(providerId)._credential({
              idToken: oauthIdToken,
              accessToken: oauthAccessToken,
              nonce: nonce,
              pendingToken: pendingToken
          });
      }
      catch (e) {
          return null;
      }
  };
  return OAuthProvider;
5452}(BaseOAuthProvider));
5453
5454/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5470/**
* Provider for generating an {@link OAuthCredential} for {@link ProviderId}.FACEBOOK.
*
* @example
* ```javascript
* // Sign in using a redirect.
* const provider = new FacebookAuthProvider();
* // Start a sign in process for an unauthenticated user.
* provider.addScope('user_birthday');
* await signInWithRedirect(auth, provider);
* // This will trigger a full page redirect away from your app
*
* // After returning from the redirect when your app initializes you can obtain the result
* const result = await getRedirectResult(auth);
* if (result) {
*   // This is the signed-in user
*   const user = result.user;
*   // This gives you a Facebook Access Token.
*   const credential = FacebookAuthProvider.credentialFromResult(result);
*   const token = credential.accessToken;
* }
* ```
*
* @example
* ```javascript
* // Sign in using a popup.
* const provider = new FacebookAuthProvider();
* provider.addScope('user_birthday');
* const result = await signInWithPopup(auth, provider);
*
* // The signed-in user info.
* const user = result.user;
* // This gives you a Facebook Access Token.
* const credential = FacebookAuthProvider.credentialFromResult(result);
* const token = credential.accessToken;
* ```
*
* @public
*/
5509var FacebookAuthProvider = /** @class */ (function (_super) {
  __extends(FacebookAuthProvider, _super);
  function FacebookAuthProvider() {
      return _super.call(this, "facebook.com" /* FACEBOOK */) || this;
  }
  /**
   * Creates a credential for Facebook.
   *
   * @example
   * ```javascript
   * // `event` from the Facebook auth.authResponseChange callback.
   * const credential = FacebookAuthProvider.credential(event.authResponse.accessToken);
   * const result = await signInWithCredential(credential);
   * ```
   *
   * @param accessToken - Facebook access token.
   */
  FacebookAuthProvider.credential = function (accessToken) {
      return OAuthCredential._fromParams({
          providerId: FacebookAuthProvider.PROVIDER_ID,
          signInMethod: FacebookAuthProvider.FACEBOOK_SIGN_IN_METHOD,
          accessToken: accessToken
      });
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link UserCredential}.
   *
   * @param userCredential - The user credential.
   */
  FacebookAuthProvider.credentialFromResult = function (userCredential) {
      return FacebookAuthProvider.credentialFromTaggedObject(userCredential);
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link AuthError} which was
   * thrown during a sign-in, link, or reauthenticate operation.
   *
   * @param userCredential - The user credential.
   */
  FacebookAuthProvider.credentialFromError = function (error) {
      return FacebookAuthProvider.credentialFromTaggedObject((error.customData || {}));
  };
  FacebookAuthProvider.credentialFromTaggedObject = function (_a) {
      var tokenResponse = _a._tokenResponse;
      if (!tokenResponse || !('oauthAccessToken' in tokenResponse)) {
          return null;
      }
      if (!tokenResponse.oauthAccessToken) {
          return null;
      }
      try {
          return FacebookAuthProvider.credential(tokenResponse.oauthAccessToken);
      }
      catch (_b) {
          return null;
      }
  };
  /** Always set to {@link SignInMethod}.FACEBOOK. */
  FacebookAuthProvider.FACEBOOK_SIGN_IN_METHOD = "facebook.com" /* FACEBOOK */;
  /** Always set to {@link ProviderId}.FACEBOOK. */
  FacebookAuthProvider.PROVIDER_ID = "facebook.com" /* FACEBOOK */;
  return FacebookAuthProvider;
5570}(BaseOAuthProvider));
5571
5572/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5588/**
* Provider for generating an an {@link OAuthCredential} for {@link ProviderId}.GOOGLE.
*
* @example
* ```javascript
* // Sign in using a redirect.
* const provider = new GoogleAuthProvider();
* // Start a sign in process for an unauthenticated user.
* provider.addScope('profile');
* provider.addScope('email');
* await signInWithRedirect(auth, provider);
* // This will trigger a full page redirect away from your app
*
* // After returning from the redirect when your app initializes you can obtain the result
* const result = await getRedirectResult(auth);
* if (result) {
*   // This is the signed-in user
*   const user = result.user;
*   // This gives you a Google Access Token.
*   const credential = GoogleAuthProvider.credentialFromResult(result);
*   const token = credential.accessToken;
* }
* ```
*
* @example
* ```javascript
* // Sign in using a popup.
* const provider = new GoogleAuthProvider();
* provider.addScope('profile');
* provider.addScope('email');
* const result = await signInWithPopup(auth, provider);
*
* // The signed-in user info.
* const user = result.user;
* // This gives you a Google Access Token.
* const credential = GoogleAuthProvider.credentialFromResult(result);
* const token = credential.accessToken;
* ```
*
* @public
*/
5629var GoogleAuthProvider = /** @class */ (function (_super) {
  __extends(GoogleAuthProvider, _super);
  function GoogleAuthProvider() {
      var _this = _super.call(this, "google.com" /* GOOGLE */) || this;
      _this.addScope('profile');
      return _this;
  }
  /**
   * Creates a credential for Google. At least one of ID token and access token is required.
   *
   * @example
   * ```javascript
   * // \`googleUser\` from the onsuccess Google Sign In callback.
   * const credential = GoogleAuthProvider.credential(googleUser.getAuthResponse().id_token);
   * const result = await signInWithCredential(credential);
   * ```
   *
   * @param idToken - Google ID token.
   * @param accessToken - Google access token.
   */
  GoogleAuthProvider.credential = function (idToken, accessToken) {
      return OAuthCredential._fromParams({
          providerId: GoogleAuthProvider.PROVIDER_ID,
          signInMethod: GoogleAuthProvider.GOOGLE_SIGN_IN_METHOD,
          idToken: idToken,
          accessToken: accessToken
      });
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link UserCredential}.
   *
   * @param userCredential - The user credential.
   */
  GoogleAuthProvider.credentialFromResult = function (userCredential) {
      return GoogleAuthProvider.credentialFromTaggedObject(userCredential);
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link AuthError} which was
   * thrown during a sign-in, link, or reauthenticate operation.
   *
   * @param userCredential - The user credential.
   */
  GoogleAuthProvider.credentialFromError = function (error) {
      return GoogleAuthProvider.credentialFromTaggedObject((error.customData || {}));
  };
  GoogleAuthProvider.credentialFromTaggedObject = function (_a) {
      var tokenResponse = _a._tokenResponse;
      if (!tokenResponse) {
          return null;
      }
      var _b = tokenResponse, oauthIdToken = _b.oauthIdToken, oauthAccessToken = _b.oauthAccessToken;
      if (!oauthIdToken && !oauthAccessToken) {
          // This could be an oauth 1 credential or a phone credential
          return null;
      }
      try {
          return GoogleAuthProvider.credential(oauthIdToken, oauthAccessToken);
      }
      catch (_c) {
          return null;
      }
  };
  /** Always set to {@link SignInMethod}.GOOGLE. */
  GoogleAuthProvider.GOOGLE_SIGN_IN_METHOD = "google.com" /* GOOGLE */;
  /** Always set to {@link ProviderId}.GOOGLE. */
  GoogleAuthProvider.PROVIDER_ID = "google.com" /* GOOGLE */;
  return GoogleAuthProvider;
5696}(BaseOAuthProvider));
5697
5698/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5714/**
* Provider for generating an {@link OAuthCredential} for {@link ProviderId}.GITHUB.
*
* @remarks
* GitHub requires an OAuth 2.0 redirect, so you can either handle the redirect directly, or use
* the {@link signInWithPopup} handler:
*
* @example
* ```javascript
* // Sign in using a redirect.
* const provider = new GithubAuthProvider();
* // Start a sign in process for an unauthenticated user.
* provider.addScope('repo');
* await signInWithRedirect(auth, provider);
* // This will trigger a full page redirect away from your app
*
* // After returning from the redirect when your app initializes you can obtain the result
* const result = await getRedirectResult(auth);
* if (result) {
*   // This is the signed-in user
*   const user = result.user;
*   // This gives you a Github Access Token.
*   const credential = GithubAuthProvider.credentialFromResult(result);
*   const token = credential.accessToken;
* }
* ```
*
* @example
* ```javascript
* // Sign in using a popup.
* const provider = new GithubAuthProvider();
* provider.addScope('repo');
* const result = await signInWithPopup(auth, provider);
*
* // The signed-in user info.
* const user = result.user;
* // This gives you a Github Access Token.
* const credential = GithubAuthProvider.credentialFromResult(result);
* const token = credential.accessToken;
* ```
* @public
*/
5756var GithubAuthProvider = /** @class */ (function (_super) {
  __extends(GithubAuthProvider, _super);
  function GithubAuthProvider() {
      return _super.call(this, "github.com" /* GITHUB */) || this;
  }
  /**
   * Creates a credential for Github.
   *
   * @param accessToken - Github access token.
   */
  GithubAuthProvider.credential = function (accessToken) {
      return OAuthCredential._fromParams({
          providerId: GithubAuthProvider.PROVIDER_ID,
          signInMethod: GithubAuthProvider.GITHUB_SIGN_IN_METHOD,
          accessToken: accessToken
      });
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link UserCredential}.
   *
   * @param userCredential - The user credential.
   */
  GithubAuthProvider.credentialFromResult = function (userCredential) {
      return GithubAuthProvider.credentialFromTaggedObject(userCredential);
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link AuthError} which was
   * thrown during a sign-in, link, or reauthenticate operation.
   *
   * @param userCredential - The user credential.
   */
  GithubAuthProvider.credentialFromError = function (error) {
      return GithubAuthProvider.credentialFromTaggedObject((error.customData || {}));
  };
  GithubAuthProvider.credentialFromTaggedObject = function (_a) {
      var tokenResponse = _a._tokenResponse;
      if (!tokenResponse || !('oauthAccessToken' in tokenResponse)) {
          return null;
      }
      if (!tokenResponse.oauthAccessToken) {
          return null;
      }
      try {
          return GithubAuthProvider.credential(tokenResponse.oauthAccessToken);
      }
      catch (_b) {
          return null;
      }
  };
  /** Always set to {@link SignInMethod}.GITHUB. */
  GithubAuthProvider.GITHUB_SIGN_IN_METHOD = "github.com" /* GITHUB */;
  /** Always set to {@link ProviderId}.GITHUB. */
  GithubAuthProvider.PROVIDER_ID = "github.com" /* GITHUB */;
  return GithubAuthProvider;
5810}(BaseOAuthProvider));
5811
5812/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5828var IDP_REQUEST_URI = 'http://localhost';
5829/**
* @public
*/
5832var SAMLAuthCredential = /** @class */ (function (_super) {
  __extends(SAMLAuthCredential, _super);
  /** @internal */
  function SAMLAuthCredential(providerId, pendingToken) {
      var _this = _super.call(this, providerId, providerId) || this;
      _this.pendingToken = pendingToken;
      return _this;
  }
  /** @internal */
  SAMLAuthCredential.prototype._getIdTokenResponse = function (auth) {
      var request = this.buildRequest();
      return signInWithIdp(auth, request);
  };
  /** @internal */
  SAMLAuthCredential.prototype._linkToIdToken = function (auth, idToken) {
      var request = this.buildRequest();
      request.idToken = idToken;
      return signInWithIdp(auth, request);
  };
  /** @internal */
  SAMLAuthCredential.prototype._getReauthenticationResolver = function (auth) {
      var request = this.buildRequest();
      request.autoCreate = false;
      return signInWithIdp(auth, request);
  };
  /** {@inheritdoc AuthCredential.toJSON}  */
  SAMLAuthCredential.prototype.toJSON = function () {
      return {
          signInMethod: this.signInMethod,
          providerId: this.providerId,
          pendingToken: this.pendingToken
      };
  };
  /**
   * Static method to deserialize a JSON representation of an object into an
   * {@link  AuthCredential}.
   *
   * @param json - Input can be either Object or the stringified representation of the object.
   * When string is provided, JSON.parse would be called first.
   *
   * @returns If the JSON input does not represent an {@link  AuthCredential}, null is returned.
   */
  SAMLAuthCredential.fromJSON = function (json) {
      var obj = typeof json === 'string' ? JSON.parse(json) : json;
      var providerId = obj.providerId, signInMethod = obj.signInMethod, pendingToken = obj.pendingToken;
      if (!providerId ||
          !signInMethod ||
          !pendingToken ||
          providerId !== signInMethod) {
          return null;
      }
      return new SAMLAuthCredential(providerId, pendingToken);
  };
  /**
   * Helper static method to avoid exposing the constructor to end users.
   *
   * @internal
   */
  SAMLAuthCredential._create = function (providerId, pendingToken) {
      return new SAMLAuthCredential(providerId, pendingToken);
  };
  SAMLAuthCredential.prototype.buildRequest = function () {
      return {
          requestUri: IDP_REQUEST_URI,
          returnSecureToken: true,
          pendingToken: this.pendingToken
      };
  };
  return SAMLAuthCredential;
5901}(AuthCredential));
5902
5903/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
5919var SAML_PROVIDER_PREFIX = 'saml.';
5920/**
* An {@link AuthProvider} for SAML.
*
* @public
*/
5925var SAMLAuthProvider = /** @class */ (function (_super) {
  __extends(SAMLAuthProvider, _super);
  /**
   * Constructor. The providerId must start with "saml."
   * @param providerId - SAML provider ID.
   */
  function SAMLAuthProvider(providerId) {
      var _this = this;
      _assert(providerId.startsWith(SAML_PROVIDER_PREFIX), "argument-error" /* ARGUMENT_ERROR */);
      _this = _super.call(this, providerId) || this;
      return _this;
  }
  /**
   * Generates an {@link AuthCredential} from a {@link UserCredential} after a
   * successful SAML flow completes.
   *
   * @remarks
   *
   * For example, to get an {@link AuthCredential}, you could write the
   * following code:
   *
   * ```js
   * const userCredential = await signInWithPopup(auth, samlProvider);
   * const credential = SAMLAuthProvider.credentialFromResult(userCredential);
   * ```
   *
   * @param userCredential - The user credential.
   */
  SAMLAuthProvider.credentialFromResult = function (userCredential) {
      return SAMLAuthProvider.samlCredentialFromTaggedObject(userCredential);
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link AuthError} which was
   * thrown during a sign-in, link, or reauthenticate operation.
   *
   * @param userCredential - The user credential.
   */
  SAMLAuthProvider.credentialFromError = function (error) {
      return SAMLAuthProvider.samlCredentialFromTaggedObject((error.customData || {}));
  };
  /**
   * Creates an {@link AuthCredential} from a JSON string or a plain object.
   * @param json - A plain object or a JSON string
   */
  SAMLAuthProvider.credentialFromJSON = function (json) {
      var credential = SAMLAuthCredential.fromJSON(json);
      _assert(credential, "argument-error" /* ARGUMENT_ERROR */);
      return credential;
  };
  SAMLAuthProvider.samlCredentialFromTaggedObject = function (_a) {
      var tokenResponse = _a._tokenResponse;
      if (!tokenResponse) {
          return null;
      }
      var _b = tokenResponse, pendingToken = _b.pendingToken, providerId = _b.providerId;
      if (!pendingToken || !providerId) {
          return null;
      }
      try {
          return SAMLAuthCredential._create(providerId, pendingToken);
      }
      catch (e) {
          return null;
      }
  };
  return SAMLAuthProvider;
5991}(FederatedAuthProvider));
5992
5993/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6009/**
* Provider for generating an {@link OAuthCredential} for {@link ProviderId}.TWITTER.
*
* @example
* ```javascript
* // Sign in using a redirect.
* const provider = new TwitterAuthProvider();
* // Start a sign in process for an unauthenticated user.
* await signInWithRedirect(auth, provider);
* // This will trigger a full page redirect away from your app
*
* // After returning from the redirect when your app initializes you can obtain the result
* const result = await getRedirectResult(auth);
* if (result) {
*   // This is the signed-in user
*   const user = result.user;
*   // This gives you a Twitter Access Token and Secret.
*   const credential = TwitterAuthProvider.credentialFromResult(result);
*   const token = credential.accessToken;
*   const secret = credential.secret;
* }
* ```
*
* @example
* ```javascript
* // Sign in using a popup.
* const provider = new TwitterAuthProvider();
* const result = await signInWithPopup(auth, provider);
*
* // The signed-in user info.
* const user = result.user;
* // This gives you a Twitter Access Token and Secret.
* const credential = TwitterAuthProvider.credentialFromResult(result);
* const token = credential.accessToken;
* const secret = credential.secret;
* ```
*
* @public
*/
6048var TwitterAuthProvider = /** @class */ (function (_super) {
  __extends(TwitterAuthProvider, _super);
  function TwitterAuthProvider() {
      return _super.call(this, "twitter.com" /* TWITTER */) || this;
  }
  /**
   * Creates a credential for Twitter.
   *
   * @param token - Twitter access token.
   * @param secret - Twitter secret.
   */
  TwitterAuthProvider.credential = function (token, secret) {
      return OAuthCredential._fromParams({
          providerId: TwitterAuthProvider.PROVIDER_ID,
          signInMethod: TwitterAuthProvider.TWITTER_SIGN_IN_METHOD,
          oauthToken: token,
          oauthTokenSecret: secret
      });
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link UserCredential}.
   *
   * @param userCredential - The user credential.
   */
  TwitterAuthProvider.credentialFromResult = function (userCredential) {
      return TwitterAuthProvider.credentialFromTaggedObject(userCredential);
  };
  /**
   * Used to extract the underlying {@link OAuthCredential} from a {@link AuthError} which was
   * thrown during a sign-in, link, or reauthenticate operation.
   *
   * @param userCredential - The user credential.
   */
  TwitterAuthProvider.credentialFromError = function (error) {
      return TwitterAuthProvider.credentialFromTaggedObject((error.customData || {}));
  };
  TwitterAuthProvider.credentialFromTaggedObject = function (_a) {
      var tokenResponse = _a._tokenResponse;
      if (!tokenResponse) {
          return null;
      }
      var _b = tokenResponse, oauthAccessToken = _b.oauthAccessToken, oauthTokenSecret = _b.oauthTokenSecret;
      if (!oauthAccessToken || !oauthTokenSecret) {
          return null;
      }
      try {
          return TwitterAuthProvider.credential(oauthAccessToken, oauthTokenSecret);
      }
      catch (_c) {
          return null;
      }
  };
  /** Always set to {@link SignInMethod}.TWITTER. */
  TwitterAuthProvider.TWITTER_SIGN_IN_METHOD = "twitter.com" /* TWITTER */;
  /** Always set to {@link ProviderId}.TWITTER. */
  TwitterAuthProvider.PROVIDER_ID = "twitter.com" /* TWITTER */;
  return TwitterAuthProvider;
6105}(BaseOAuthProvider));
6106
6107/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6123function signUp(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signUp" /* SIGN_UP */, _addTidIfNecessary(auth, request))];
      });
  });
6129}
6130
6131/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6147var UserCredentialImpl = /** @class */ (function () {
  function UserCredentialImpl(params) {
      this.user = params.user;
      this.providerId = params.providerId;
      this._tokenResponse = params._tokenResponse;
      this.operationType = params.operationType;
  }
  UserCredentialImpl._fromIdTokenResponse = function (auth, operationType, idTokenResponse, isAnonymous) {
      if (isAnonymous === void 0) { isAnonymous = false; }
      return __awaiter(this, void 0, void 0, function () {
          var user, providerId, userCred;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, UserImpl._fromIdTokenResponse(auth, idTokenResponse, isAnonymous)];
                  case 1:
                      user = _a.sent();
                      providerId = providerIdForResponse(idTokenResponse);
                      userCred = new UserCredentialImpl({
                          user: user,
                          providerId: providerId,
                          _tokenResponse: idTokenResponse,
                          operationType: operationType
                      });
                      return [2 /*return*/, userCred];
              }
          });
      });
  };
  UserCredentialImpl._forOperation = function (user, operationType, response) {
      return __awaiter(this, void 0, void 0, function () {
          var providerId;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0: return [4 /*yield*/, user._updateTokensIfNecessary(response, /* reload */ true)];
                  case 1:
                      _a.sent();
                      providerId = providerIdForResponse(response);
                      return [2 /*return*/, new UserCredentialImpl({
                              user: user,
                              providerId: providerId,
                              _tokenResponse: response,
                              operationType: operationType
                          })];
              }
          });
      });
  };
  return UserCredentialImpl;
6195}());
6196function providerIdForResponse(response) {
  if (response.providerId) {
      return response.providerId;
  }
  if ('phoneNumber' in response) {
      return "phone" /* PHONE */;
  }
  return null;
6204}
6205
6206/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6222/**
* Asynchronously signs in as an anonymous user.
*
* @remarks
* If there is already an anonymous user signed in, that user will be returned; otherwise, a
* new anonymous user identity will be created and returned.
*
* @param auth - The {@link Auth} instance.
*
* @public
*/
6233function signInAnonymously(auth) {
  var _a;
  return __awaiter(this, void 0, void 0, function () {
      var authInternal, response, userCredential;
      return __generator(this, function (_b) {
          switch (_b.label) {
              case 0:
                  authInternal = _castAuth(auth);
                  return [4 /*yield*/, authInternal._initializationPromise];
              case 1:
                  _b.sent();
                  if ((_a = authInternal.currentUser) === null || _a === void 0 ? void 0 : _a.isAnonymous) {
                      // If an anonymous user is already signed in, no need to sign them in again.
                      return [2 /*return*/, new UserCredentialImpl({
                              user: authInternal.currentUser,
                              providerId: null,
                              operationType: "signIn" /* SIGN_IN */
                          })];
                  }
                  return [4 /*yield*/, signUp(authInternal, {
                          returnSecureToken: true
                      })];
              case 2:
                  response = _b.sent();
                  return [4 /*yield*/, UserCredentialImpl._fromIdTokenResponse(authInternal, "signIn" /* SIGN_IN */, response, true)];
              case 3:
                  userCredential = _b.sent();
                  return [4 /*yield*/, authInternal._updateCurrentUser(userCredential.user)];
              case 4:
                  _b.sent();
                  return [2 /*return*/, userCredential];
          }
      });
  });
6267}
6268
6269/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6285var MultiFactorError = /** @class */ (function (_super) {
  __extends(MultiFactorError, _super);
  function MultiFactorError(auth, error, operationType, user) {
      var _a;
      var _this = _super.call(this, error.code, error.message) || this;
      _this.operationType = operationType;
      _this.user = user;
      // https://github.com/Microsoft/TypeScript-wiki/blob/master/Breaking-Changes.md#extending-built-ins-like-error-array-and-map-may-no-longer-work
      Object.setPrototypeOf(_this, MultiFactorError.prototype);
      _this.customData = {
          appName: auth.name,
          tenantId: (_a = auth.tenantId) !== null && _a !== void 0 ? _a : undefined,
          _serverResponse: error.customData._serverResponse,
          operationType: operationType,
      };
      return _this;
  }
  MultiFactorError._fromErrorAndOperation = function (auth, error, operationType, user) {
      return new MultiFactorError(auth, error, operationType, user);
  };
  return MultiFactorError;
6306}(FirebaseError));
6307function _processCredentialSavingMfaContextIfNecessary(auth, operationType, credential, user) {
  var idTokenProvider = operationType === "reauthenticate" /* REAUTHENTICATE */
      ? credential._getReauthenticationResolver(auth)
      : credential._getIdTokenResponse(auth);
  return idTokenProvider.catch(function (error) {
      if (error.code === "auth/" + "multi-factor-auth-required" /* MFA_REQUIRED */) {
          throw MultiFactorError._fromErrorAndOperation(auth, error, operationType, user);
      }
      throw error;
  });
6317}
6318
6319/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6335/**
* Takes a set of UserInfo provider data and converts it to a set of names
*/
6338function providerDataAsNames(providerData) {
  return new Set(providerData
      .map(function (_a) {
      var providerId = _a.providerId;
      return providerId;
  })
      .filter(function (pid) { return !!pid; }));
6345}
6346
6347/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6363/**
* Unlinks a provider from a user account.
*
* @param user - The user.
* @param providerId - The provider to unlink.
*
* @public
*/
6371function unlink(user, providerId) {
  return __awaiter(this, void 0, void 0, function () {
      var userInternal, providerUserInfo, _a, _b, providersLeft;
      var _c;
      return __generator(this, function (_d) {
          switch (_d.label) {
              case 0:
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, _assertLinkedStatus(true, userInternal, providerId)];
              case 1:
                  _d.sent();
                  _a = deleteLinkedAccounts;
                  _b = [userInternal.auth];
                  _c = {};
                  return [4 /*yield*/, userInternal.getIdToken()];
              case 2: return [4 /*yield*/, _a.apply(void 0, _b.concat([(_c.idToken = _d.sent(),
                          _c.deleteProvider = [providerId],
                          _c)]))];
              case 3:
                  providerUserInfo = (_d.sent()).providerUserInfo;
                  providersLeft = providerDataAsNames(providerUserInfo || []);
                  userInternal.providerData = userInternal.providerData.filter(function (pd) {
                      return providersLeft.has(pd.providerId);
                  });
                  if (!providersLeft.has("phone" /* PHONE */)) {
                      userInternal.phoneNumber = null;
                  }
                  return [4 /*yield*/, userInternal.auth._persistUserIfCurrent(userInternal)];
              case 4:
                  _d.sent();
                  return [2 /*return*/, userInternal];
          }
      });
  });
6405}
6406function _link(user, credential, bypassAuthState) {
  if (bypassAuthState === void 0) { bypassAuthState = false; }
  return __awaiter(this, void 0, void 0, function () {
      var response, _a, _b, _c, _d, _e;
      return __generator(this, function (_f) {
          switch (_f.label) {
              case 0:
                  _a = _logoutIfInvalidated;
                  _b = [user];
                  _d = (_c = credential)._linkToIdToken;
                  _e = [user.auth];
                  return [4 /*yield*/, user.getIdToken()];
              case 1: return [4 /*yield*/, _a.apply(void 0, _b.concat([_d.apply(_c, _e.concat([_f.sent()])), bypassAuthState]))];
              case 2:
                  response = _f.sent();
                  return [2 /*return*/, UserCredentialImpl._forOperation(user, "link" /* LINK */, response)];
          }
      });
  });
6425}
6426function _assertLinkedStatus(expected, user, provider) {
  return __awaiter(this, void 0, void 0, function () {
      var providerIds, code;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, _reloadWithoutSaving(user)];
              case 1:
                  _a.sent();
                  providerIds = providerDataAsNames(user.providerData);
                  code = expected === false
                      ? "provider-already-linked" /* PROVIDER_ALREADY_LINKED */
                      : "no-such-provider" /* NO_SUCH_PROVIDER */;
                  _assert(providerIds.has(provider) === expected, user.auth, code);
                  return [2 /*return*/];
          }
      });
  });
6443}
6444
6445/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6461function _reauthenticate(user, credential, bypassAuthState) {
  if (bypassAuthState === void 0) { bypassAuthState = false; }
  return __awaiter(this, void 0, void 0, function () {
      var auth, operationType, response, parsed, localId, e_1;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  auth = user.auth;
                  operationType = "reauthenticate" /* REAUTHENTICATE */;
                  _a.label = 1;
              case 1:
                  _a.trys.push([1, 3, , 4]);
                  return [4 /*yield*/, _logoutIfInvalidated(user, _processCredentialSavingMfaContextIfNecessary(auth, operationType, credential, user), bypassAuthState)];
              case 2:
                  response = _a.sent();
                  _assert(response.idToken, auth, "internal-error" /* INTERNAL_ERROR */);
                  parsed = _parseToken(response.idToken);
                  _assert(parsed, auth, "internal-error" /* INTERNAL_ERROR */);
                  localId = parsed.sub;
                  _assert(user.uid === localId, auth, "user-mismatch" /* USER_MISMATCH */);
                  return [2 /*return*/, UserCredentialImpl._forOperation(user, operationType, response)];
              case 3:
                  e_1 = _a.sent();
                  // Convert user deleted error into user mismatch
                  if ((e_1 === null || e_1 === void 0 ? void 0 : e_1.code) === "auth/" + "user-not-found" /* USER_DELETED */) {
                      _fail(auth, "user-mismatch" /* USER_MISMATCH */);
                  }
                  throw e_1;
              case 4: return [2 /*return*/];
          }
      });
  });
6493}
6494
6495/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6511function _signInWithCredential(auth, credential, bypassAuthState) {
  if (bypassAuthState === void 0) { bypassAuthState = false; }
  return __awaiter(this, void 0, void 0, function () {
      var operationType, response, userCredential;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  operationType = "signIn" /* SIGN_IN */;
                  return [4 /*yield*/, _processCredentialSavingMfaContextIfNecessary(auth, operationType, credential)];
              case 1:
                  response = _a.sent();
                  return [4 /*yield*/, UserCredentialImpl._fromIdTokenResponse(auth, operationType, response)];
              case 2:
                  userCredential = _a.sent();
                  if (!!bypassAuthState) return [3 /*break*/, 4];
                  return [4 /*yield*/, auth._updateCurrentUser(userCredential.user)];
              case 3:
                  _a.sent();
                  _a.label = 4;
              case 4: return [2 /*return*/, userCredential];
          }
      });
  });
6534}
6535/**
* Asynchronously signs in with the given credentials.
*
* @remarks
* An {@link AuthProvider} can be used to generate the credential.
*
* @param auth - The {@link Auth} instance.
* @param credential - The auth credential.
*
* @public
*/
6546function signInWithCredential(auth, credential) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _signInWithCredential(_castAuth(auth), credential)];
      });
  });
6552}
6553/**
* Links the user account with the given credentials.
*
* @remarks
* An {@link AuthProvider} can be used to generate the credential.
*
* @param user - The user.
* @param credential - The auth credential.
*
* @public
*/
6564function linkWithCredential(user, credential) {
  return __awaiter(this, void 0, void 0, function () {
      var userInternal;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, _assertLinkedStatus(false, userInternal, credential.providerId)];
              case 1:
                  _a.sent();
                  return [2 /*return*/, _link(userInternal, credential)];
          }
      });
  });
6578}
6579/**
* Re-authenticates a user using a fresh credential.
*
* @remarks
* Use before operations such as {@link updatePassword} that require tokens from recent sign-in
* attempts. This method can be used to recover from a `CREDENTIAL_TOO_OLD_LOGIN_AGAIN` error.
*
* @param user - The user.
* @param credential - The auth credential.
*
* @public
*/
6591function reauthenticateWithCredential(user, credential) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _reauthenticate(getModularInstance(user), credential)];
      });
  });
6597}
6598
6599/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6615function signInWithCustomToken$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performSignInRequest(auth, "POST" /* POST */, "/v1/accounts:signInWithCustomToken" /* SIGN_IN_WITH_CUSTOM_TOKEN */, _addTidIfNecessary(auth, request))];
      });
  });
6621}
6622
6623/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6639/**
* Asynchronously signs in using a custom token.
*
* @remarks
* Custom tokens are used to integrate Firebase Auth with existing auth systems, and must
* be generated by an auth backend using the
* {@link https://firebase.google.com/docs/reference/admin/node/admin.auth.Auth#createcustomtoken | createCustomToken}
* method in the {@link https://firebase.google.com/docs/auth/admin | Admin SDK} .
*
* Fails with an error if the token is invalid, expired, or not accepted by the Firebase Auth service.
*
* @param auth - The {@link Auth} instance.
* @param customToken - The custom token to sign in with.
*
* @public
*/
6655function signInWithCustomToken(auth, customToken) {
  return __awaiter(this, void 0, void 0, function () {
      var authInternal, response, cred;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  authInternal = _castAuth(auth);
                  return [4 /*yield*/, signInWithCustomToken$1(authInternal, {
                          token: customToken,
                          returnSecureToken: true
                      })];
              case 1:
                  response = _a.sent();
                  return [4 /*yield*/, UserCredentialImpl._fromIdTokenResponse(authInternal, "signIn" /* SIGN_IN */, response)];
              case 2:
                  cred = _a.sent();
                  return [4 /*yield*/, authInternal._updateCurrentUser(cred.user)];
              case 3:
                  _a.sent();
                  return [2 /*return*/, cred];
          }
      });
  });
6678}
6679
6680/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6696var MultiFactorInfoImpl = /** @class */ (function () {
  function MultiFactorInfoImpl(factorId, response) {
      this.factorId = factorId;
      this.uid = response.mfaEnrollmentId;
      this.enrollmentTime = new Date(response.enrolledAt).toUTCString();
      this.displayName = response.displayName;
  }
  MultiFactorInfoImpl._fromServerResponse = function (auth, enrollment) {
      if ('phoneInfo' in enrollment) {
          return PhoneMultiFactorInfoImpl._fromServerResponse(auth, enrollment);
      }
      return _fail(auth, "internal-error" /* INTERNAL_ERROR */);
  };
  return MultiFactorInfoImpl;
6710}());
6711var PhoneMultiFactorInfoImpl = /** @class */ (function (_super) {
  __extends(PhoneMultiFactorInfoImpl, _super);
  function PhoneMultiFactorInfoImpl(response) {
      var _this = _super.call(this, "phone" /* PHONE */, response) || this;
      _this.phoneNumber = response.phoneInfo;
      return _this;
  }
  PhoneMultiFactorInfoImpl._fromServerResponse = function (_auth, enrollment) {
      return new PhoneMultiFactorInfoImpl(enrollment);
  };
  return PhoneMultiFactorInfoImpl;
6722}(MultiFactorInfoImpl));
6723
6724/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6740function _setActionCodeSettingsOnRequest(auth, request, actionCodeSettings) {
  var _a;
  _assert(((_a = actionCodeSettings.url) === null || _a === void 0 ? void 0 : _a.length) > 0, auth, "invalid-continue-uri" /* INVALID_CONTINUE_URI */);
  _assert(typeof actionCodeSettings.dynamicLinkDomain === 'undefined' ||
      actionCodeSettings.dynamicLinkDomain.length > 0, auth, "invalid-dynamic-link-domain" /* INVALID_DYNAMIC_LINK_DOMAIN */);
  request.continueUrl = actionCodeSettings.url;
  request.dynamicLinkDomain = actionCodeSettings.dynamicLinkDomain;
  request.canHandleCodeInApp = actionCodeSettings.handleCodeInApp;
  if (actionCodeSettings.iOS) {
      _assert(actionCodeSettings.iOS.bundleId.length > 0, auth, "missing-ios-bundle-id" /* MISSING_IOS_BUNDLE_ID */);
      request.iOSBundleId = actionCodeSettings.iOS.bundleId;
  }
  if (actionCodeSettings.android) {
      _assert(actionCodeSettings.android.packageName.length > 0, auth, "missing-android-pkg-name" /* MISSING_ANDROID_PACKAGE_NAME */);
      request.androidInstallApp = actionCodeSettings.android.installApp;
      request.androidMinimumVersionCode =
          actionCodeSettings.android.minimumVersion;
      request.androidPackageName = actionCodeSettings.android.packageName;
  }
6759}
6760
6761/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
6777/**
* Sends a password reset email to the given email address.
*
* @remarks
* To complete the password reset, call {@link confirmPasswordReset} with the code supplied in
* the email sent to the user, along with the new password specified by the user.
*
* @example
* ```javascript
* const actionCodeSettings = {
*   url: 'https://www.example.com/?email=user@example.com',
*   iOS: {
*      bundleId: 'com.example.ios'
*   },
*   android: {
*     packageName: 'com.example.android',
*     installApp: true,
*     minimumVersion: '12'
*   },
*   handleCodeInApp: true
* };
* await sendPasswordResetEmail(auth, 'user@example.com', actionCodeSettings);
* // Obtain code from user.
* await confirmPasswordReset('user@example.com', code);
* ```
*
* @param auth - The {@link Auth} instance.
* @param email - The user's email address.
* @param actionCodeSettings - The {@link ActionCodeSettings}.
*
* @public
*/
6809function sendPasswordResetEmail(auth, email, actionCodeSettings) {
  return __awaiter(this, void 0, void 0, function () {
      var authModular, request;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  authModular = getModularInstance(auth);
                  request = {
                      requestType: "PASSWORD_RESET" /* PASSWORD_RESET */,
                      email: email
                  };
                  if (actionCodeSettings) {
                      _setActionCodeSettingsOnRequest(authModular, request, actionCodeSettings);
                  }
                  return [4 /*yield*/, sendPasswordResetEmail$1(authModular, request)];
              case 1:
                  _a.sent();
                  return [2 /*return*/];
          }
      });
  });
6830}
6831/**
* Completes the password reset process, given a confirmation code and new password.
*
* @param auth - The {@link Auth} instance.
* @param oobCode - A confirmation code sent to the user.
* @param newPassword - The new password.
*
* @public
*/
6840function confirmPasswordReset(auth, oobCode, newPassword) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, resetPassword(getModularInstance(auth), {
                      oobCode: oobCode,
                      newPassword: newPassword
                  })];
              case 1:
                  _a.sent();
                  return [2 /*return*/];
          }
      });
  });
6854}
6855/**
* Applies a verification code sent to the user by email or other out-of-band mechanism.
*
* @param auth - The {@link Auth} instance.
* @param oobCode - A verification code sent to the user.
*
* @public
*/
6863function applyActionCode(auth, oobCode) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, applyActionCode$1(getModularInstance(auth), { oobCode: oobCode })];
              case 1:
                  _a.sent();
                  return [2 /*return*/];
          }
      });
  });
6874}
6875/**
* Checks a verification code sent to the user by email or other out-of-band mechanism.
*
* @returns metadata about the code.
*
* @param auth - The {@link Auth} instance.
* @param oobCode - A verification code sent to the user.
*
* @public
*/
6885function checkActionCode(auth, oobCode) {
  return __awaiter(this, void 0, void 0, function () {
      var authModular, response, operation, multiFactorInfo;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  authModular = getModularInstance(auth);
                  return [4 /*yield*/, resetPassword(authModular, { oobCode: oobCode })];
              case 1:
                  response = _a.sent();
                  operation = response.requestType;
                  _assert(operation, authModular, "internal-error" /* INTERNAL_ERROR */);
                  switch (operation) {
                      case "EMAIL_SIGNIN" /* EMAIL_SIGNIN */:
                          break;
                      case "VERIFY_AND_CHANGE_EMAIL" /* VERIFY_AND_CHANGE_EMAIL */:
                          _assert(response.newEmail, authModular, "internal-error" /* INTERNAL_ERROR */);
                          break;
                      case "REVERT_SECOND_FACTOR_ADDITION" /* REVERT_SECOND_FACTOR_ADDITION */:
                          _assert(response.mfaInfo, authModular, "internal-error" /* INTERNAL_ERROR */);
                      // fall through
                      default:
                          _assert(response.email, authModular, "internal-error" /* INTERNAL_ERROR */);
                  }
                  multiFactorInfo = null;
                  if (response.mfaInfo) {
                      multiFactorInfo = MultiFactorInfoImpl._fromServerResponse(_castAuth(authModular), response.mfaInfo);
                  }
                  return [2 /*return*/, {
                          data: {
                              email: (response.requestType === "VERIFY_AND_CHANGE_EMAIL" /* VERIFY_AND_CHANGE_EMAIL */
                                  ? response.newEmail
                                  : response.email) || null,
                              previousEmail: (response.requestType === "VERIFY_AND_CHANGE_EMAIL" /* VERIFY_AND_CHANGE_EMAIL */
                                  ? response.email
                                  : response.newEmail) || null,
                              multiFactorInfo: multiFactorInfo
                          },
                          operation: operation
                      }];
          }
      });
  });
6928}
6929/**
* Checks a password reset code sent to the user by email or other out-of-band mechanism.
*
* @returns the user's email address if valid.
*
* @param auth - The {@link Auth} instance.
* @param code - A verification code sent to the user.
*
* @public
*/
6939function verifyPasswordResetCode(auth, code) {
  return __awaiter(this, void 0, void 0, function () {
      var data;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0: return [4 /*yield*/, checkActionCode(getModularInstance(auth), code)];
              case 1:
                  data = (_a.sent()).data;
                  // Email should always be present since a code was sent to it
                  return [2 /*return*/, data.email];
          }
      });
  });
6952}
6953/**
* Creates a new user account associated with the specified email address and password.
*
* @remarks
* On successful creation of the user account, this user will also be signed in to your application.
*
* User account creation can fail if the account already exists or the password is invalid.
*
* Note: The email address acts as a unique identifier for the user and enables an email-based
* password reset. This function will create a new user account and set the initial user password.
*
* @param auth - The {@link Auth} instance.
* @param email - The user's email address.
* @param password - The user's chosen password.
*
* @public
*/
6970function createUserWithEmailAndPassword(auth, email, password) {
  return __awaiter(this, void 0, void 0, function () {
      var authInternal, response, userCredential;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  authInternal = _castAuth(auth);
                  return [4 /*yield*/, signUp(authInternal, {
                          returnSecureToken: true,
                          email: email,
                          password: password
                      })];
              case 1:
                  response = _a.sent();
                  return [4 /*yield*/, UserCredentialImpl._fromIdTokenResponse(authInternal, "signIn" /* SIGN_IN */, response)];
              case 2:
                  userCredential = _a.sent();
                  return [4 /*yield*/, authInternal._updateCurrentUser(userCredential.user)];
              case 3:
                  _a.sent();
                  return [2 /*return*/, userCredential];
          }
      });
  });
6994}
6995/**
* Asynchronously signs in using an email and password.
*
* @remarks
* Fails with an error if the email address and password do not match.
*
* Note: The user's password is NOT the password used to access the user's email account. The
* email address serves as a unique identifier for the user, and the password is used to access
* the user's account in your Firebase project. See also: {@link createUserWithEmailAndPassword}.
*
* @param auth - The {@link Auth} instance.
* @param email - The users email address.
* @param password - The users password.
*
* @public
*/
7011function signInWithEmailAndPassword(auth, email, password) {
  return signInWithCredential(getModularInstance(auth), EmailAuthProvider.credential(email, password));
7013}
7014
7015/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7031/**
* Sends a sign-in email link to the user with the specified email.
*
* @remarks
* The sign-in operation has to always be completed in the app unlike other out of band email
* actions (password reset and email verifications). This is because, at the end of the flow,
* the user is expected to be signed in and their Auth state persisted within the app.
*
* To complete sign in with the email link, call {@link signInWithEmailLink} with the email
* address and the email link supplied in the email sent to the user.
*
* @example
* ```javascript
* const actionCodeSettings = {
*   url: 'https://www.example.com/?email=user@example.com',
*   iOS: {
*      bundleId: 'com.example.ios'
*   },
*   android: {
*     packageName: 'com.example.android',
*     installApp: true,
*     minimumVersion: '12'
*   },
*   handleCodeInApp: true
* };
* await sendSignInLinkToEmail(auth, 'user@example.com', actionCodeSettings);
* // Obtain emailLink from the user.
* if(isSignInWithEmailLink(auth, emailLink)) {
*   await signInWithEmailLink(auth, 'user@example.com', emailLink);
* }
* ```
*
* @param authInternal - The {@link Auth} instance.
* @param email - The user's email address.
* @param actionCodeSettings - The {@link ActionCodeSettings}.
*
* @public
*/
7069function sendSignInLinkToEmail(auth, email, actionCodeSettings) {
  return __awaiter(this, void 0, void 0, function () {
      var authModular, request;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  authModular = getModularInstance(auth);
                  request = {
                      requestType: "EMAIL_SIGNIN" /* EMAIL_SIGNIN */,
                      email: email
                  };
                  _assert(actionCodeSettings.handleCodeInApp, authModular, "argument-error" /* ARGUMENT_ERROR */);
                  if (actionCodeSettings) {
                      _setActionCodeSettingsOnRequest(authModular, request, actionCodeSettings);
                  }
                  return [4 /*yield*/, sendSignInLinkToEmail$1(authModular, request)];
              case 1:
                  _a.sent();
                  return [2 /*return*/];
          }
      });
  });
7091}
7092/**
* Checks if an incoming link is a sign-in with email link suitable for {@link signInWithEmailLink}.
*
* @param auth - The {@link Auth} instance.
* @param emailLink - The link sent to the user's email address.
*
* @public
*/
7100function isSignInWithEmailLink(auth, emailLink) {
  var actionCodeUrl = ActionCodeURL.parseLink(emailLink);
  return (actionCodeUrl === null || actionCodeUrl === void 0 ? void 0 : actionCodeUrl.operation) === "EMAIL_SIGNIN" /* EMAIL_SIGNIN */;
7103}
7104/**
* Asynchronously signs in using an email and sign-in email link.
*
* @remarks
* If no link is passed, the link is inferred from the current URL.
*
* Fails with an error if the email address is invalid or OTP in email link expires.
*
* Note: Confirm the link is a sign-in email link before calling this method firebase.auth.Auth.isSignInWithEmailLink.
*
* @example
* ```javascript
* const actionCodeSettings = {
*   url: 'https://www.example.com/?email=user@example.com',
*   iOS: {
*      bundleId: 'com.example.ios'
*   },
*   android: {
*     packageName: 'com.example.android',
*     installApp: true,
*     minimumVersion: '12'
*   },
*   handleCodeInApp: true
* };
* await sendSignInLinkToEmail(auth, 'user@example.com', actionCodeSettings);
* // Obtain emailLink from the user.
* if(isSignInWithEmailLink(auth, emailLink)) {
*   await signInWithEmailLink(auth, 'user@example.com', emailLink);
* }
* ```
*
* @param auth - The {@link Auth} instance.
* @param email - The user's email address.
* @param emailLink - The link sent to the user's email address.
*
* @public
*/
7141function signInWithEmailLink(auth, email, emailLink) {
  return __awaiter(this, void 0, void 0, function () {
      var authModular, credential;
      return __generator(this, function (_a) {
          authModular = getModularInstance(auth);
          credential = EmailAuthProvider.credentialWithLink(email, emailLink || _getCurrentUrl());
          // Check if the tenant ID in the email link matches the tenant ID on Auth
          // instance.
          _assert(credential._tenantId === (authModular.tenantId || null), authModular, "tenant-id-mismatch" /* TENANT_ID_MISMATCH */);
          return [2 /*return*/, signInWithCredential(authModular, credential)];
      });
  });
7153}
7154
7155/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7171function createAuthUri(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:createAuthUri" /* CREATE_AUTH_URI */, _addTidIfNecessary(auth, request))];
      });
  });
7177}
7178
7179/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7195/**
* Gets the list of possible sign in methods for the given email address.
*
* @remarks
* This is useful to differentiate methods of sign-in for the same provider, eg.
* {@link EmailAuthProvider} which has 2 methods of sign-in,
* {@link SignInMethod}.EMAIL_PASSWORD and
* {@link SignInMethod}.EMAIL_LINK.
*
* @param auth - The {@link Auth} instance.
* @param email - The user's email address.
*
* @public
*/
7209function fetchSignInMethodsForEmail(auth, email) {
  return __awaiter(this, void 0, void 0, function () {
      var continueUri, request, signinMethods;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  continueUri = _isHttpOrHttps() ? _getCurrentUrl() : 'http://localhost';
                  request = {
                      identifier: email,
                      continueUri: continueUri
                  };
                  return [4 /*yield*/, createAuthUri(getModularInstance(auth), request)];
              case 1:
                  signinMethods = (_a.sent()).signinMethods;
                  return [2 /*return*/, signinMethods || []];
          }
      });
  });
7227}
7228/**
* Sends a verification email to a user.
*
* @remarks
* The verification process is completed by calling {@link applyActionCode}.
*
* @example
* ```javascript
* const actionCodeSettings = {
*   url: 'https://www.example.com/?email=user@example.com',
*   iOS: {
*      bundleId: 'com.example.ios'
*   },
*   android: {
*     packageName: 'com.example.android',
*     installApp: true,
*     minimumVersion: '12'
*   },
*   handleCodeInApp: true
* };
* await sendEmailVerification(user, actionCodeSettings);
* // Obtain code from the user.
* await applyActionCode(auth, code);
* ```
*
* @param user - The user.
* @param actionCodeSettings - The {@link ActionCodeSettings}.
*
* @public
*/
7258function sendEmailVerification(user, actionCodeSettings) {
  return __awaiter(this, void 0, void 0, function () {
      var userInternal, idToken, request, email;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, user.getIdToken()];
              case 1:
                  idToken = _a.sent();
                  request = {
                      requestType: "VERIFY_EMAIL" /* VERIFY_EMAIL */,
                      idToken: idToken
                  };
                  if (actionCodeSettings) {
                      _setActionCodeSettingsOnRequest(userInternal.auth, request, actionCodeSettings);
                  }
                  return [4 /*yield*/, sendEmailVerification$1(userInternal.auth, request)];
              case 2:
                  email = (_a.sent()).email;
                  if (!(email !== user.email)) return [3 /*break*/, 4];
                  return [4 /*yield*/, user.reload()];
              case 3:
                  _a.sent();
                  _a.label = 4;
              case 4: return [2 /*return*/];
          }
      });
  });
7287}
7288/**
* Sends a verification email to a new email address.
*
* @remarks
* The user's email will be updated to the new one after being verified.
*
* If you have a custom email action handler, you can complete the verification process by calling
* {@link applyActionCode}.
*
* @example
* ```javascript
* const actionCodeSettings = {
*   url: 'https://www.example.com/?email=user@example.com',
*   iOS: {
*      bundleId: 'com.example.ios'
*   },
*   android: {
*     packageName: 'com.example.android',
*     installApp: true,
*     minimumVersion: '12'
*   },
*   handleCodeInApp: true
* };
* await verifyBeforeUpdateEmail(user, 'newemail@example.com', actionCodeSettings);
* // Obtain code from the user.
* await applyActionCode(auth, code);
* ```
*
* @param user - The user.
* @param newEmail - The new email address to be verified before update.
* @param actionCodeSettings - The {@link ActionCodeSettings}.
*
* @public
*/
7322function verifyBeforeUpdateEmail(user, newEmail, actionCodeSettings) {
  return __awaiter(this, void 0, void 0, function () {
      var userInternal, idToken, request, email;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, user.getIdToken()];
              case 1:
                  idToken = _a.sent();
                  request = {
                      requestType: "VERIFY_AND_CHANGE_EMAIL" /* VERIFY_AND_CHANGE_EMAIL */,
                      idToken: idToken,
                      newEmail: newEmail
                  };
                  if (actionCodeSettings) {
                      _setActionCodeSettingsOnRequest(userInternal.auth, request, actionCodeSettings);
                  }
                  return [4 /*yield*/, verifyAndChangeEmail(userInternal.auth, request)];
              case 2:
                  email = (_a.sent()).email;
                  if (!(email !== user.email)) return [3 /*break*/, 4];
                  // If the local copy of the email on user is outdated, reload the
                  // user.
                  return [4 /*yield*/, user.reload()];
              case 3:
                  // If the local copy of the email on user is outdated, reload the
                  // user.
                  _a.sent();
                  _a.label = 4;
              case 4: return [2 /*return*/];
          }
      });
  });
7356}
7357
7358/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7374function updateProfile$1(auth, request) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, _performApiRequest(auth, "POST" /* POST */, "/v1/accounts:update" /* SET_ACCOUNT_INFO */, request)];
      });
  });
7380}
7381
7382/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7398/**
* Updates a user's profile data.
*
* @param user - The user.
* @param profile - The profile's `displayName` and `photoURL` to update.
*
* @public
*/
7406function updateProfile(user, _a) {
  var displayName = _a.displayName, photoUrl = _a.photoURL;
  return __awaiter(this, void 0, void 0, function () {
      var userInternal, idToken, profileRequest, response, passwordProvider;
      return __generator(this, function (_b) {
          switch (_b.label) {
              case 0:
                  if (displayName === undefined && photoUrl === undefined) {
                      return [2 /*return*/];
                  }
                  userInternal = getModularInstance(user);
                  return [4 /*yield*/, userInternal.getIdToken()];
              case 1:
                  idToken = _b.sent();
                  profileRequest = {
                      idToken: idToken,
                      displayName: displayName,
                      photoUrl: photoUrl,
                      returnSecureToken: true
                  };
                  return [4 /*yield*/, _logoutIfInvalidated(userInternal, updateProfile$1(userInternal.auth, profileRequest))];
              case 2:
                  response = _b.sent();
                  userInternal.displayName = response.displayName || null;
                  userInternal.photoURL = response.photoUrl || null;
                  passwordProvider = userInternal.providerData.find(function (_a) {
                      var providerId = _a.providerId;
                      return providerId === "password" /* PASSWORD */;
                  });
                  if (passwordProvider) {
                      passwordProvider.displayName = userInternal.displayName;
                      passwordProvider.photoURL = userInternal.photoURL;
                  }
                  return [4 /*yield*/, userInternal._updateTokensIfNecessary(response)];
              case 3:
                  _b.sent();
                  return [2 /*return*/];
          }
      });
  });
7446}
7447/**
* Updates the user's email address.
*
* @remarks
* An email will be sent to the original email address (if it was set) that allows to revoke the
* email address change, in order to protect them from account hijacking.
*
* Important: this is a security sensitive operation that requires the user to have recently signed
* in. If this requirement isn't met, ask the user to authenticate again and then call
* {@link reauthenticateWithCredential}.
*
* @param user - The user.
* @param newEmail - The new email address.
*
* @public
*/
7463function updateEmail(user, newEmail) {
  return updateEmailOrPassword(getModularInstance(user), newEmail, null);
7465}
7466/**
* Updates the user's password.
*
* @remarks
* Important: this is a security sensitive operation that requires the user to have recently signed
* in. If this requirement isn't met, ask the user to authenticate again and then call
* {@link reauthenticateWithCredential}.
*
* @param user - The user.
* @param newPassword - The new password.
*
* @public
*/
7479function updatePassword(user, newPassword) {
  return updateEmailOrPassword(getModularInstance(user), null, newPassword);
7481}
7482function updateEmailOrPassword(user, email, password) {
  return __awaiter(this, void 0, void 0, function () {
      var auth, idToken, request, response;
      return __generator(this, function (_a) {
          switch (_a.label) {
              case 0:
                  auth = user.auth;
                  return [4 /*yield*/, user.getIdToken()];
              case 1:
                  idToken = _a.sent();
                  request = {
                      idToken: idToken,
                      returnSecureToken: true
                  };
                  if (email) {
                      request.email = email;
                  }
                  if (password) {
                      request.password = password;
                  }
                  return [4 /*yield*/, _logoutIfInvalidated(user, updateEmailPassword(auth, request))];
              case 2:
                  response = _a.sent();
                  return [4 /*yield*/, user._updateTokensIfNecessary(response, /* reload */ true)];
              case 3:
                  _a.sent();
                  return [2 /*return*/];
          }
      });
  });
7512}
7513
7514/**
* @license
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7530/**
* Parse the `AdditionalUserInfo` from the ID token response.
*
*/
7534function _fromIdTokenResponse(idTokenResponse) {
  var _a, _b;
  if (!idTokenResponse) {
      return null;
  }
  var providerId = idTokenResponse.providerId;
  var profile = idTokenResponse.rawUserInfo
      ? JSON.parse(idTokenResponse.rawUserInfo)
      : {};
  var isNewUser = idTokenResponse.isNewUser ||
      idTokenResponse.kind === "identitytoolkit#SignupNewUserResponse" /* SignupNewUser */;
  if (!providerId && (idTokenResponse === null || idTokenResponse === void 0 ? void 0 : idTokenResponse.idToken)) {
      var signInProvider = (_b = (_a = _parseToken(idTokenResponse.idToken)) === null || _a === void 0 ? void 0 : _a.firebase) === null || _b === void 0 ? void 0 : _b['sign_in_provider'];
      if (signInProvider) {
          var filteredProviderId = signInProvider !== "anonymous" /* ANONYMOUS */ &&
              signInProvider !== "custom" /* CUSTOM */
              ? signInProvider
              : null;
          // Uses generic class in accordance with the legacy SDK.
          return new GenericAdditionalUserInfo(isNewUser, filteredProviderId);
      }
  }
  if (!providerId) {
      return null;
  }
  switch (providerId) {
      case "facebook.com" /* FACEBOOK */:
          return new FacebookAdditionalUserInfo(isNewUser, profile);
      case "github.com" /* GITHUB */:
          return new GithubAdditionalUserInfo(isNewUser, profile);
      case "google.com" /* GOOGLE */:
          return new GoogleAdditionalUserInfo(isNewUser, profile);
      case "twitter.com" /* TWITTER */:
          return new TwitterAdditionalUserInfo(isNewUser, profile, idTokenResponse.screenName || null);
      case "custom" /* CUSTOM */:
      case "anonymous" /* ANONYMOUS */:
          return new GenericAdditionalUserInfo(isNewUser, null);
      default:
          return new GenericAdditionalUserInfo(isNewUser, providerId, profile);
  }
7574}
7575var GenericAdditionalUserInfo = /** @class */ (function () {
  function GenericAdditionalUserInfo(isNewUser, providerId, profile) {
      if (profile === void 0) { profile = {}; }
      this.isNewUser = isNewUser;
      this.providerId = providerId;
      this.profile = profile;
  }
  return GenericAdditionalUserInfo;
7583}());
7584var FederatedAdditionalUserInfoWithUsername = /** @class */ (function (_super) {
  __extends(FederatedAdditionalUserInfoWithUsername, _super);
  function FederatedAdditionalUserInfoWithUsername(isNewUser, providerId, profile, username) {
      var _this = _super.call(this, isNewUser, providerId, profile) || this;
      _this.username = username;
      return _this;
  }
  return FederatedAdditionalUserInfoWithUsername;
7592}(GenericAdditionalUserInfo));
7593var FacebookAdditionalUserInfo = /** @class */ (function (_super) {
  __extends(FacebookAdditionalUserInfo, _super);
  function FacebookAdditionalUserInfo(isNewUser, profile) {
      return _super.call(this, isNewUser, "facebook.com" /* FACEBOOK */, profile) || this;
  }
  return FacebookAdditionalUserInfo;
7599}(GenericAdditionalUserInfo));
7600var GithubAdditionalUserInfo = /** @class */ (function (_super) {
  __extends(GithubAdditionalUserInfo, _super);
  function GithubAdditionalUserInfo(isNewUser, profile) {
      return _super.call(this, isNewUser, "github.com" /* GITHUB */, profile, typeof (profile === null || profile === void 0 ? void 0 : profile.login) === 'string' ? profile === null || profile === void 0 ? void 0 : profile.login : null) || this;
  }
  return GithubAdditionalUserInfo;
7606}(FederatedAdditionalUserInfoWithUsername));
7607var GoogleAdditionalUserInfo = /** @class */ (function (_super) {
  __extends(GoogleAdditionalUserInfo, _super);
  function GoogleAdditionalUserInfo(isNewUser, profile) {
      return _super.call(this, isNewUser, "google.com" /* GOOGLE */, profile) || this;
  }
  return GoogleAdditionalUserInfo;
7613}(GenericAdditionalUserInfo));
7614var TwitterAdditionalUserInfo = /** @class */ (function (_super) {
  __extends(TwitterAdditionalUserInfo, _super);
  function TwitterAdditionalUserInfo(isNewUser, profile, screenName) {
      return _super.call(this, isNewUser, "twitter.com" /* TWITTER */, profile, screenName) || this;
  }
  return TwitterAdditionalUserInfo;
7620}(FederatedAdditionalUserInfoWithUsername));
7621/**
* Extracts provider specific {@link AdditionalUserInfo} for the given credential.
*
* @param userCredential - The user credential.
*
* @public
*/
7628function getAdditionalUserInfo(userCredential) {
  var _a = userCredential, user = _a.user, _tokenResponse = _a._tokenResponse;
  if (user.isAnonymous && !_tokenResponse) {
      // Handle the special case where signInAnonymously() gets called twice.
      // No network call is made so there's nothing to actually fill this in
      return {
          providerId: null,
          isNewUser: false,
          profile: null
      };
  }
  return _fromIdTokenResponse(_tokenResponse);
7640}
7641
7642/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7658// Non-optional auth methods.
7659/**
* Changes the type of persistence on the {@link Auth} instance for the currently saved
* `Auth` session and applies this type of persistence for future sign-in requests, including
* sign-in with redirect requests.
*
* @remarks
* This makes it easy for a user signing in to specify whether their session should be
* remembered or not. It also makes it easier to never persist the `Auth` state for applications
* that are shared by other users or have sensitive data.
*
* @example
* ```javascript
* setPersistence(auth, browserSessionPersistence);
* ```
*
* @param auth - The {@link Auth} instance.
* @param persistence - The {@link Persistence} to use.
* @returns A `Promise` that resolves once the persistence change has completed
*
* @public
*/
7680function setPersistence(auth, persistence) {
  return getModularInstance(auth).setPersistence(persistence);
7682}
7683/**
* Adds an observer for changes to the signed-in user's ID token, which includes sign-in,
* sign-out, and token refresh events.
*
* @param auth - The {@link Auth} instance.
* @param nextOrObserver - callback triggered on change.
* @param error - callback triggered on error.
* @param completed - callback triggered when observer is removed.
*
* @public
*/
7694function onIdTokenChanged(auth, nextOrObserver, error, completed) {
  return getModularInstance(auth).onIdTokenChanged(nextOrObserver, error, completed);
7696}
7697/**
* Adds a blocking callback that runs before an auth state change
* sets a new user.
*
* @param auth - The {@link Auth} instance.
* @param callback - callback triggered before new user value is set.
*   If this throws, it blocks the user from being set.
* @param onAbort - callback triggered if a later `beforeAuthStateChanged()`
*   callback throws, allowing you to undo any side effects.
*/
7707function beforeAuthStateChanged(auth, callback, onAbort) {
  return getModularInstance(auth).beforeAuthStateChanged(callback, onAbort);
7709}
7710/**
* Adds an observer for changes to the user's sign-in state.
*
* @remarks
* To keep the old behavior, see {@link onIdTokenChanged}.
*
* @param auth - The {@link Auth} instance.
* @param nextOrObserver - callback triggered on change.
* @param error - callback triggered on error.
* @param completed - callback triggered when observer is removed.
*
* @public
*/
7723function onAuthStateChanged(auth, nextOrObserver, error, completed) {
  return getModularInstance(auth).onAuthStateChanged(nextOrObserver, error, completed);
7725}
7726/**
* Sets the current language to the default device/browser preference.
*
* @param auth - The {@link Auth} instance.
*
* @public
*/
7733function useDeviceLanguage(auth) {
  getModularInstance(auth).useDeviceLanguage();
7735}
7736/**
* Asynchronously sets the provided user as {@link Auth.currentUser} on the
* {@link Auth} instance.
*
* @remarks
* A new instance copy of the user provided will be made and set as currentUser.
*
* This will trigger {@link onAuthStateChanged} and {@link onIdTokenChanged} listeners
* like other sign in methods.
*
* The operation fails with an error if the user to be updated belongs to a different Firebase
* project.
*
* @param auth - The {@link Auth} instance.
* @param user - The new {@link User}.
*
* @public
*/
7754function updateCurrentUser(auth, user) {
  return getModularInstance(auth).updateCurrentUser(user);
7756}
7757/**
* Signs out the current user.
*
* @param auth - The {@link Auth} instance.
*
* @public
*/
7764function signOut(auth) {
  return getModularInstance(auth).signOut();
7766}
7767/**
* Deletes and signs out the user.
*
* @remarks
* Important: this is a security-sensitive operation that requires the user to have recently
* signed in. If this requirement isn't met, ask the user to authenticate again and then call
* {@link reauthenticateWithCredential}.
*
* @param user - The user.
*
* @public
*/
7779function deleteUser(user) {
  return __awaiter(this, void 0, void 0, function () {
      return __generator(this, function (_a) {
          return [2 /*return*/, getModularInstance(user).delete()];
      });
  });
7785}
7786
7787var MultiFactorSessionImpl = /** @class */ (function () {
  function MultiFactorSessionImpl(type, credential) {
      this.type = type;
      this.credential = credential;
  }
  MultiFactorSessionImpl._fromIdtoken = function (idToken) {
      return new MultiFactorSessionImpl("enroll" /* ENROLL */, idToken);
  };
  MultiFactorSessionImpl._fromMfaPendingCredential = function (mfaPendingCredential) {
      return new MultiFactorSessionImpl("signin" /* SIGN_IN */, mfaPendingCredential);
  };
  MultiFactorSessionImpl.prototype.toJSON = function () {
      var _a;
      var key = this.type === "enroll" /* ENROLL */
          ? 'idToken'
          : 'pendingCredential';
      return {
          multiFactorSession: (_a = {},
              _a[key] = this.credential,
              _a)
      };
  };
  MultiFactorSessionImpl.fromJSON = function (obj) {
      var _a, _b;
      if (obj === null || obj === void 0 ? void 0 : obj.multiFactorSession) {
          if ((_a = obj.multiFactorSession) === null || _a === void 0 ? void 0 : _a.pendingCredential) {
              return MultiFactorSessionImpl._fromMfaPendingCredential(obj.multiFactorSession.pendingCredential);
          }
          else if ((_b = obj.multiFactorSession) === null || _b === void 0 ? void 0 : _b.idToken) {
              return MultiFactorSessionImpl._fromIdtoken(obj.multiFactorSession.idToken);
          }
      }
      return null;
  };
  return MultiFactorSessionImpl;
7822}());
7823
7824/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7840var MultiFactorResolverImpl = /** @class */ (function () {
  function MultiFactorResolverImpl(session, hints, signInResolver) {
      this.session = session;
      this.hints = hints;
      this.signInResolver = signInResolver;
  }
  /** @internal */
  MultiFactorResolverImpl._fromError = function (authExtern, error) {
      var _this = this;
      var auth = _castAuth(authExtern);
      var serverResponse = error.customData._serverResponse;
      var hints = (serverResponse.mfaInfo || []).map(function (enrollment) {
          return MultiFactorInfoImpl._fromServerResponse(auth, enrollment);
      });
      _assert(serverResponse.mfaPendingCredential, auth, "internal-error" /* INTERNAL_ERROR */);
      var session = MultiFactorSessionImpl._fromMfaPendingCredential(serverResponse.mfaPendingCredential);
      return new MultiFactorResolverImpl(session, hints, function (assertion) { return __awaiter(_this, void 0, void 0, function () {
          var mfaResponse, idTokenResponse, _a, userCredential;
          return __generator(this, function (_b) {
              switch (_b.label) {
                  case 0: return [4 /*yield*/, assertion._process(auth, session)];
                  case 1:
                      mfaResponse = _b.sent();
                      // Clear out the unneeded fields from the old login response
                      delete serverResponse.mfaInfo;
                      delete serverResponse.mfaPendingCredential;
                      idTokenResponse = __assign(__assign({}, serverResponse), { idToken: mfaResponse.idToken, refreshToken: mfaResponse.refreshToken });
                      _a = error.operationType;
                      switch (_a) {
                          case "signIn" /* SIGN_IN */: return [3 /*break*/, 2];
                          case "reauthenticate" /* REAUTHENTICATE */: return [3 /*break*/, 5];
                      }
                      return [3 /*break*/, 6];
                  case 2: return [4 /*yield*/, UserCredentialImpl._fromIdTokenResponse(auth, error.operationType, idTokenResponse)];
                  case 3:
                      userCredential = _b.sent();
                      return [4 /*yield*/, auth._updateCurrentUser(userCredential.user)];
                  case 4:
                      _b.sent();
                      return [2 /*return*/, userCredential];
                  case 5:
                      _assert(error.user, auth, "internal-error" /* INTERNAL_ERROR */);
                      return [2 /*return*/, UserCredentialImpl._forOperation(error.user, error.operationType, idTokenResponse)];
                  case 6:
                      _fail(auth, "internal-error" /* INTERNAL_ERROR */);
                      _b.label = 7;
                  case 7: return [2 /*return*/];
              }
          });
      }); });
  };
  MultiFactorResolverImpl.prototype.resolveSignIn = function (assertionExtern) {
      return __awaiter(this, void 0, void 0, function () {
          var assertion;
          return __generator(this, function (_a) {
              assertion = assertionExtern;
              return [2 /*return*/, this.signInResolver(assertion)];
          });
      });
  };
  return MultiFactorResolverImpl;
7901}());
7902/**
* Provides a {@link MultiFactorResolver} suitable for completion of a
* multi-factor flow.
*
* @param auth - The {@link Auth} instance.
* @param error - The {@link MultiFactorError} raised during a sign-in, or
* reauthentication operation.
*
* @public
*/
7912function getMultiFactorResolver(auth, error) {
  var _a;
  var authModular = getModularInstance(auth);
  var errorInternal = error;
  _assert(error.customData.operationType, authModular, "argument-error" /* ARGUMENT_ERROR */);
  _assert((_a = errorInternal.customData._serverResponse) === null || _a === void 0 ? void 0 : _a.mfaPendingCredential, authModular, "argument-error" /* ARGUMENT_ERROR */);
  return MultiFactorResolverImpl._fromError(authModular, errorInternal);
7919}
7920
7921/**
* @license
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
7937function withdrawMfa(auth, request) {
  return _performApiRequest(auth, "POST" /* POST */, "/v2/accounts/mfaEnrollment:withdraw" /* WITHDRAW_MFA */, _addTidIfNecessary(auth, request));
7939}
7940
7941var MultiFactorUserImpl = /** @class */ (function () {
  function MultiFactorUserImpl(user) {
      var _this = this;
      this.user = user;
      this.enrolledFactors = [];
      user._onReload(function (userInfo) {
          if (userInfo.mfaInfo) {
              _this.enrolledFactors = userInfo.mfaInfo.map(function (enrollment) {
                  return MultiFactorInfoImpl._fromServerResponse(user.auth, enrollment);
              });
          }
      });
  }
  MultiFactorUserImpl._fromUser = function (user) {
      return new MultiFactorUserImpl(user);
  };
  MultiFactorUserImpl.prototype.getSession = function () {
      return __awaiter(this, void 0, void 0, function () {
          var _a, _b;
          return __generator(this, function (_c) {
              switch (_c.label) {
                  case 0:
                      _b = (_a = MultiFactorSessionImpl)._fromIdtoken;
                      return [4 /*yield*/, this.user.getIdToken()];
                  case 1: return [2 /*return*/, _b.apply(_a, [_c.sent()])];
              }
          });
      });
  };
  MultiFactorUserImpl.prototype.enroll = function (assertionExtern, displayName) {
      return __awaiter(this, void 0, void 0, function () {
          var assertion, session, finalizeMfaResponse;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      assertion = assertionExtern;
                      return [4 /*yield*/, this.getSession()];
                  case 1:
                      session = (_a.sent());
                      return [4 /*yield*/, _logoutIfInvalidated(this.user, assertion._process(this.user.auth, session, displayName))];
                  case 2:
                      finalizeMfaResponse = _a.sent();
                      // New tokens will be issued after enrollment of the new second factors.
                      // They need to be updated on the user.
                      return [4 /*yield*/, this.user._updateTokensIfNecessary(finalizeMfaResponse)];
                  case 3:
                      // New tokens will be issued after enrollment of the new second factors.
                      // They need to be updated on the user.
                      _a.sent();
                      // The user needs to be reloaded to get the new multi-factor information
                      // from server. USER_RELOADED event will be triggered and `enrolledFactors`
                      // will be updated.
                      return [2 /*return*/, this.user.reload()];
              }
          });
      });
  };
  MultiFactorUserImpl.prototype.unenroll = function (infoOrUid) {
      return __awaiter(this, void 0, void 0, function () {
          var mfaEnrollmentId, idToken, idTokenResponse, e_1;
          return __generator(this, function (_a) {
              switch (_a.label) {
                  case 0:
                      mfaEnrollmentId = typeof infoOrUid === 'string' ? infoOrUid : infoOrUid.uid;
                      return [4 /*yield*/, this.user.getIdToken()];
                  case 1:
                      idToken = _a.sent();
                      return [4 /*yield*/, _logoutIfInvalidated(this.user, withdrawMfa(this.user.auth, {
                              idToken: idToken,
                              mfaEnrollmentId: mfaEnrollmentId
                          }))];
                  case 2:
                      idTokenResponse = _a.sent();
                      // Remove the second factor from the user's list.
                      this.enrolledFactors = this.enrolledFactors.filter(function (_a) {
                          var uid = _a.uid;
                          return uid !== mfaEnrollmentId;
                      });
                      // Depending on whether the backend decided to revoke the user's session,
                      // the tokenResponse may be empty. If the tokens were not updated (and they
                      // are now invalid), reloading the user will discover this and invalidate
                      // the user's state accordingly.
                      return [4 /*yield*/, this.user._updateTokensIfNecessary(idTokenResponse)];
                  case 3:
                      // Depending on whether the backend decided to revoke the user's session,
                      // the tokenResponse may be empty. If the tokens were not updated (and they
                      // are now invalid), reloading the user will discover this and invalidate
                      // the user's state accordingly.
                      _a.sent();
                      _a.label = 4;
                  case 4:
                      _a.trys.push([4, 6, , 7]);
                      return [4 /*yield*/, this.user.reload()];
                  case 5:
                      _a.sent();
                      return [3 /*break*/, 7];
                  case 6:
                      e_1 = _a.sent();
                      if (e_1.code !== "auth/" + "user-token-expired" /* TOKEN_EXPIRED */) {
                          throw e_1;
                      }
                      return [3 /*break*/, 7];
                  case 7: return [2 /*return*/];
              }
          });
      });
  };
  return MultiFactorUserImpl;
8049}());
8050var multiFactorUserCache = new WeakMap();
8051/**
* The {@link MultiFactorUser} corresponding to the user.
*
* @remarks
* This is used to access all multi-factor properties and operations related to the user.
*
* @param user - The user.
*
* @public
*/
8061function multiFactor(user) {
  var userModular = getModularInstance(user);
  if (!multiFactorUserCache.has(userModular)) {
      multiFactorUserCache.set(userModular, MultiFactorUserImpl._fromUser(userModular));
  }
  return multiFactorUserCache.get(userModular);
8067}
8068
8069/**
* @license
* Copyright 2017 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
*   http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
8085registerAuth("Worker" /* WORKER */);
8086function getAuth(app) {
  if (app === void 0) { app = getApp(); }
  // Unlike the other environments, we need to explicitly check if indexedDb is
  // available. That means doing the whole rigamarole
  var auth = _getProvider(app, "auth" /* AUTH */).getImmediate();
  // This promise is intended to float; auth initialization happens in the
  // background, meanwhile the auth object may be used by the app.
  // eslint-disable-next-line @typescript-eslint/no-floating-promises
  _getInstance(indexedDBLocalPersistence)
      ._isAvailable()
      .then(function (avail) {
      var deps = avail ? { persistence: indexedDBLocalPersistence } : {};
      _initializeAuthInstance(auth, deps);
  });
  return auth;
8101}
8102
8103export { ActionCodeOperation, ActionCodeURL, AuthCredential, AUTH_ERROR_CODES_MAP_DO_NOT_USE_INTERNALLY as AuthErrorCodes, EmailAuthCredential, EmailAuthProvider, FacebookAuthProvider, FactorId, GithubAuthProvider, GoogleAuthProvider, OAuthCredential, OAuthProvider, OperationType, PhoneAuthCredential, ProviderId, SAMLAuthProvider, SignInMethod, TwitterAuthProvider, applyActionCode, beforeAuthStateChanged, checkActionCode, confirmPasswordReset, connectAuthEmulator, createUserWithEmailAndPassword, debugErrorMap, deleteUser, fetchSignInMethodsForEmail, getAdditionalUserInfo, getAuth, getIdToken, getIdTokenResult, getMultiFactorResolver, inMemoryPersistence, indexedDBLocalPersistence, initializeAuth, isSignInWithEmailLink, linkWithCredential, multiFactor, onAuthStateChanged, onIdTokenChanged, parseActionCodeURL, prodErrorMap, reauthenticateWithCredential, reload, sendEmailVerification, sendPasswordResetEmail, sendSignInLinkToEmail, setPersistence, signInAnonymously, signInWithCredential, signInWithCustomToken, signInWithEmailAndPassword, signInWithEmailLink, signOut, unlink, updateCurrentUser, updateEmail, updatePassword, updateProfile, useDeviceLanguage, verifyBeforeUpdateEmail, verifyPasswordResetCode };
8104//# sourceMappingURL=index.webworker.esm5.js.map
1	`import { SDK_VERSION, _getProvider, _registerComponent, registerVersion, getApp } from '@firebase/app';`
2	`import { ErrorFactory, deepEqual, getUA, isBrowserExtension, isMobileCordova, isReactNative, FirebaseError, querystring, getModularInstance, base64Decode, createSubscribe, querystringDecode, extractQuerystring } from '@firebase/util';`
3	`import { __spreadArray, __assign, __awaiter, __generator, __rest, __extends } from 'tslib';`
4	`import { Logger, LogLevel } from '@firebase/logger';`
5	`import { Component } from '@firebase/component';`
6
7	`/**`
8	`* @license`
9	`* Copyright 2020 Google LLC`
10	`*`
11	`* Licensed under the Apache License, Version 2.0 (the "License");`
12	`* you may not use this file except in compliance with the License.`
13	`* You may obtain a copy of the License at`
14	`*`
15	`* http://www.apache.org/licenses/LICENSE-2.0`
16	`*`
17	`* Unless required by applicable law or agreed to in writing, software`
18	`* distributed under the License is distributed on an "AS IS" BASIS,`
19	`* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
20	`* See the License for the specific language governing permissions and`
21	`* limitations under the License.`
22	`*/`
23	`function _debugErrorMap() {`
24	`var _a;`
25	`return _a = {},`
26	`_a["admin-restricted-operation" /* ADMIN_ONLY_OPERATION */] = 'This operation is restricted to administrators only.',`
27	`_a["argument-error" /* ARGUMENT_ERROR */] = '',`
28	`_a["app-not-authorized" /* APP_NOT_AUTHORIZED */] = "This app, identified by the domain where it's hosted, is not " +`
29	`'authorized to use Firebase Authentication with the provided API key. ' +`
30	`'Review your key configuration in the Google API console.',`
31	`_a["app-not-installed" /* APP_NOT_INSTALLED */] = 'The requested mobile application corresponding to the identifier (' +`
32	`'Android package name or iOS bundle ID) provided is not installed on ' +`
33	`'this device.',`
34	`_a["captcha-check-failed" /* CAPTCHA_CHECK_FAILED */] = 'The reCAPTCHA response token provided is either invalid, expired, ' +`
35	`'already used or the domain associated with it does not match the list ' +`
36	`'of whitelisted domains.',`
37	`_a["code-expired" /* CODE_EXPIRED */] = 'The SMS code has expired. Please re-send the verification code to try ' +`
38	`'again.',`
39	`_a["cordova-not-ready" /* CORDOVA_NOT_READY */] = 'Cordova framework is not ready.',`
40	`_a["cors-unsupported" /* CORS_UNSUPPORTED */] = 'This browser is not supported.',`