Merge pull request firebase#312 from firebase/kc-appcheck

Add App Check snippets

Author: kroikie

appcheck/.gitignore

@@ -0,0 +1,15 @@
+*.iml
+.gradle
+/local.properties
+/.idea/caches
+/.idea/libraries
+/.idea/modules.xml
+/.idea/workspace.xml
+/.idea/navEditor.xml
+/.idea/assetWizardSettings.xml
+.DS_Store
+/build
+/captures
+.externalNativeBuild
+.cxx
+local.properties

appcheck/app/.gitignore

@@ -0,0 +1 @@
+/build

appcheck/app/build.gradle

@@ -0,0 +1,43 @@
+apply plugin: 'com.android.application'
+apply plugin: 'kotlin-android'
+apply plugin: 'com.google.gms.google-services'  // Google Services plugin
+
+android {
+    compileSdkVersion 30
+
+    defaultConfig {
+        applicationId "com.google.firebase.example.appcheck"
+        minSdkVersion 16
+        targetSdkVersion 30
+        versionCode 1
+        versionName "1.0"
+
+        testInstrumentationRunner "androidx.test.runner.AndroidJUnitRunner"
+    }
+
+    buildTypes {
+        release {
+            minifyEnabled false
+            proguardFiles getDefaultProguardFile('proguard-android-optimize.txt'), 'proguard-rules.pro'
+        }
+    }
+    compileOptions {
+        sourceCompatibility JavaVersion.VERSION_1_8
+        targetCompatibility JavaVersion.VERSION_1_8
+    }
+}
+
+dependencies {
+    implementation 'androidx.appcompat:appcompat:1.3.1'
+    implementation 'com.google.android.material:material:1.4.0'
+    implementation 'androidx.constraintlayout:constraintlayout:2.0.4'
+
+    implementation 'com.google.firebase:firebase-appcheck:16.0.0-beta02'
+    implementation 'com.google.firebase:firebase-appcheck-debug:16.0.0-beta02'
+    implementation 'com.google.firebase:firebase-appcheck-safetynet:16.0.0-beta02'
+
+    implementation 'com.squareup.retrofit2:retrofit:2.9.0'
+
+    implementation "androidx.core:core-ktx:1.6.0"
+    implementation "org.jetbrains.kotlin:kotlin-stdlib-jdk7:$kotlin_version"
+}

appcheck/app/google-services.json

@@ -0,0 +1,39 @@
+{
+  "project_info": {
+    "project_number": "948708767782",
+    "project_id": "app-check-snippets",
+    "storage_bucket": "app-check-snippets.appspot.com"
+  },
+  "client": [
+    {
+      "client_info": {
+        "mobilesdk_app_id": "1:948708767782:android:2e694ab930ef4c3b4c4ee7",
+        "android_client_info": {
+          "package_name": "com.google.firebase.example.appcheck"
+        }
+      },
+      "oauth_client": [
+        {
+          "client_id": "948708767782-2e42ddfu4rcsbe5nv9qat94q6v9c12bf.apps.googleusercontent.com",
+          "client_type": 3
+        }
+      ],
+      "api_key": [
+        {
+          "current_key": "AIzaSyABXlodP5O5vv9d0nObDcgNHSmWpcA5wLc"
+        }
+      ],
+      "services": {
+        "appinvite_service": {
+          "other_platform_oauth_client": [
+            {
+              "client_id": "948708767782-2e42ddfu4rcsbe5nv9qat94q6v9c12bf.apps.googleusercontent.com",
+              "client_type": 3
+            }
+          ]
+        }
+      }
+    }
+  ],
+  "configuration_version": "1"
+}

appcheck/app/proguard-rules.pro

@@ -0,0 +1,21 @@
+# Add project specific ProGuard rules here.
+# You can control the set of applied configuration files using the
+# proguardFiles setting in build.gradle.
+#
+# For more details, see
+#   http://developer.android.com/guide/developing/tools/proguard.html
+
+# If your project uses WebView with JS, uncomment the following
+# and specify the fully qualified class name to the JavaScript interface
+# class:
+#-keepclassmembers class fqcn.of.javascript.interface.for.webview {
+#   public *;
+#}
+
+# Uncomment this to preserve the line number information for
+# debugging stack traces.
+#-keepattributes SourceFile,LineNumberTable
+
+# If you keep the line number information, uncomment this to
+# hide the original source file name.
+#-renamesourcefileattribute SourceFile

appcheck/app/src/main/AndroidManifest.xml

@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<manifest xmlns:android="http://schemas.android.com/apk/res/android"
+    package="com.google.firebase.example.appcheck">
+
+    <application
+        android:allowBackup="true"
+        android:icon="@mipmap/ic_launcher"
+        android:label="@string/app_name"
+        android:roundIcon="@mipmap/ic_launcher_round"
+        android:supportsRtl="true"
+        android:theme="@style/Theme.AppCheckSnippets">
+        <activity android:name=".MainActivity">
+            <intent-filter>
+                <action android:name="android.intent.action.MAIN" />
+
+                <category android:name="android.intent.category.LAUNCHER" />
+            </intent-filter>
+        </activity>
+    </application>
+
+</manifest>

appcheck/app/src/main/java/com/google/firebase/example/appcheck/ApiWithAppCheckExample.java

@@ -0,0 +1,43 @@
+package com.google.firebase.example.appcheck;
+
+import androidx.annotation.NonNull;
+
+import com.google.android.gms.tasks.OnSuccessListener;
+import com.google.firebase.appcheck.AppCheckToken;
+import com.google.firebase.appcheck.FirebaseAppCheck;
+
+import java.util.List;
+
+import retrofit2.Call;
+import retrofit2.Retrofit;
+import retrofit2.http.GET;
+import retrofit2.http.Header;
+
+// [START appcheck_custom_backend]
+public class ApiWithAppCheckExample {
+    private interface YourExampleBackendService {
+        @GET("yourExampleEndpoint")
+        Call<List<String>> exampleData(
+                @Header("X-Firebase-AppCheck") String appCheckToken);
+    }
+
+    YourExampleBackendService yourExampleBackendService = new Retrofit.Builder()
+            .baseUrl("https://yourbackend.example.com/")
+            .build()
+            .create(YourExampleBackendService.class);
+
+    public void callApiExample() {
+        FirebaseAppCheck.getInstance()
+                .getAppCheckToken(false)
+                .addOnSuccessListener(new OnSuccessListener<AppCheckToken>() {
+                    @Override
+                    public void onSuccess(@NonNull AppCheckToken tokenResponse) {
+                        String appCheckToken = tokenResponse.getToken();
+                        Call<List<String>> apiCall =
+                                yourExampleBackendService.exampleData(appCheckToken);
+                        // ...
+                    }
+                });
+    }
+}
+// [END appcheck_custom_backend]

appcheck/app/src/main/java/com/google/firebase/example/appcheck/CustomProvider.java

@@ -0,0 +1,84 @@
+package com.google.firebase.example.appcheck;
+
+import android.content.Context;
+
+import androidx.annotation.NonNull;
+
+import com.google.android.gms.tasks.Task;
+import com.google.android.gms.tasks.Tasks;
+import com.google.firebase.FirebaseApp;
+import com.google.firebase.appcheck.AppCheckProvider;
+import com.google.firebase.appcheck.AppCheckProviderFactory;
+import com.google.firebase.appcheck.AppCheckToken;
+import com.google.firebase.appcheck.FirebaseAppCheck;
+
+public class CustomProvider {
+    // [START appcheck_custom_provider]
+    public class YourCustomAppCheckToken extends AppCheckToken {
+        private String token;
+        private long expiration;
+
+        YourCustomAppCheckToken(String token, long expiration) {
+            this.token = token;
+            this.expiration = expiration;
+        }
+
+        @NonNull
+        @Override
+        public String getToken() {
+            return token;
+        }
+
+        @Override
+        public long getExpireTimeMillis() {
+            return expiration;
+        }
+    }
+
+    public class YourCustomAppCheckProvider implements AppCheckProvider {
+        public YourCustomAppCheckProvider(FirebaseApp firebaseApp) {
+            // ...
+        }
+
+        @NonNull
+        @Override
+        public Task<AppCheckToken> getToken() {
+            // Logic to exchange proof of authenticity for an App Check token and
+            //   expiration time.
+            // [START_EXCLUDE]
+            long expirationFromServer = 0L;
+            String tokenFromServer = "token";
+            // [END_EXCLUDE]
+
+            // Refresh the token early to handle clock skew.
+            long expMillis = expirationFromServer * 1000L - 60000L;
+
+            // Create AppCheckToken object.
+            AppCheckToken appCheckToken =
+                    new YourCustomAppCheckToken(tokenFromServer, expMillis);
+
+            return Tasks.forResult(appCheckToken);
+        }
+    }
+    // [END appcheck_custom_provider]
+
+    // [START appcheck_custom_provider_factory]
+    public class YourCustomAppCheckProviderFactory implements AppCheckProviderFactory {
+        @NonNull
+        @Override
+        public AppCheckProvider create(@NonNull FirebaseApp firebaseApp) {
+            // Create and return an AppCheckProvider object.
+            return new YourCustomAppCheckProvider(firebaseApp);
+        }
+    }
+    // [END appcheck_custom_provider_factory]
+
+    private void init(Context context) {
+        // [START appcheck_initialize_custom_provider]
+        FirebaseApp.initializeApp(/*context=*/ context);
+        FirebaseAppCheck firebaseAppCheck = FirebaseAppCheck.getInstance();
+        firebaseAppCheck.installAppCheckProviderFactory(
+                new YourCustomAppCheckProviderFactory());
+        // [END appcheck_initialize_custom_provider]
+    }
+}

appcheck/app/src/main/java/com/google/firebase/example/appcheck/MainActivity.java

@@ -0,0 +1,37 @@
+package com.google.firebase.example.appcheck;
+
+import androidx.appcompat.app.AppCompatActivity;
+
+import android.os.Bundle;
+
+import com.google.firebase.FirebaseApp;
+import com.google.firebase.appcheck.FirebaseAppCheck;
+import com.google.firebase.appcheck.debug.DebugAppCheckProviderFactory;
+import com.google.firebase.appcheck.safetynet.SafetyNetAppCheckProviderFactory;
+
+public class MainActivity extends AppCompatActivity {
+
+    @Override
+    protected void onCreate(Bundle savedInstanceState) {
+        super.onCreate(savedInstanceState);
+        setContentView(R.layout.activity_main);
+    }
+
+    private void init() {
+        // [START appcheck_initialize]
+        FirebaseApp.initializeApp(/*context=*/ this);
+        FirebaseAppCheck firebaseAppCheck = FirebaseAppCheck.getInstance();
+        firebaseAppCheck.installAppCheckProviderFactory(
+                SafetyNetAppCheckProviderFactory.getInstance());
+        // [END appcheck_initialize]
+    }
+
+    private void initDebug() {
+        // [START appcheck_initialize_debug]
+        FirebaseApp.initializeApp(/*context=*/ this);
+        FirebaseAppCheck firebaseAppCheck = FirebaseAppCheck.getInstance();
+        firebaseAppCheck.installAppCheckProviderFactory(
+                DebugAppCheckProviderFactory.getInstance());
+        // [END appcheck_initialize_debug]
+    }
+}

appcheck/app/src/main/java/com/google/firebase/example/appcheck/kotlin/ApiWithAppCheckExample.kt

@@ -0,0 +1,34 @@
+package com.google.firebase.example.appcheck.kotlin
+
+import com.google.firebase.appcheck.FirebaseAppCheck
+import retrofit2.Call
+import retrofit2.Retrofit
+import retrofit2.http.GET
+import retrofit2.http.Header
+
+
+// [START appcheck_custom_backend]
+class ApiWithAppCheckExample {
+    interface YourExampleBackendService {
+        @GET("yourExampleEndpoint")
+        fun exampleData(
+            @Header("X-Firebase-AppCheck") appCheckToken: String
+        ): Call<List<String>>
+    }
+
+    var yourExampleBackendService: YourExampleBackendService = Retrofit.Builder()
+        .baseUrl("https://yourbackend.example.com/")
+        .build()
+        .create(YourExampleBackendService::class.java)
+
+    fun callApiExample() {
+        FirebaseAppCheck.getInstance()
+            .getAppCheckToken(false)
+            .addOnSuccessListener { tokenResponse ->
+                val appCheckToken = tokenResponse.token
+                val apiCall = yourExampleBackendService.exampleData(appCheckToken)
+                // ...
+            }
+    }
+}
+// [END appcheck_custom_backend]