Add App Check token to Auth requests

[lisajian]

Discussion

Includes App Check token in Auth header requests to backend, if present. Passes App Check token to widget via the URL fragment

As part of go/auth-app-check-sdk
Internal bug link: b/265453815

Testing

yarn test passes in packages/auth and packages/auth-compat

API Changes

N/A

[changeset-bot]

🦋 Changeset detected

Latest commit: 968629d

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages

Name	Type
@firebase/auth	Minor
@firebase/auth-compat	Minor
firebase	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[google-oss-bot]

Size Report ¹

Affected Products

• @firebase/auth

  Type	Base (0bab0b7)	Merge (3bea516)	Diff
  browser	156 kB	158 kB	+1.13 kB (+0.7%)
  cordova	184 kB	186 kB	+1.65 kB (+0.9%)
  esm5	205 kB	206 kB	+1.74 kB (+0.9%)
  main	148 kB	150 kB	+1.14 kB (+0.8%)
  module	156 kB	158 kB	+1.13 kB (+0.7%)
  react-native	168 kB	169 kB	+1.15 kB (+0.7%)

• @firebase/auth/cordova

  Type	Base (0bab0b7)	Merge (3bea516)	Diff
  browser	184 kB	186 kB	+1.65 kB (+0.9%)
  module	184 kB	186 kB	+1.65 kB (+0.9%)

• @firebase/auth/internal

  Type	Base (0bab0b7)	Merge (3bea516)	Diff
  browser	167 kB	168 kB	+1.13 kB (+0.7%)
  esm5	218 kB	220 kB	+1.74 kB (+0.8%)
  main	184 kB	186 kB	+1.70 kB (+0.9%)
  module	167 kB	168 kB	+1.13 kB (+0.7%)

• @firebase/auth/react-native

  Type	Base (0bab0b7)	Merge (3bea516)	Diff
  browser	168 kB	169 kB	+1.15 kB (+0.7%)
  module	168 kB	169 kB	+1.15 kB (+0.7%)

• bundle

  Type	Base (0bab0b7)	Merge (3bea516)	Diff
  auth (Anonymous)	67.4 kB	67.9 kB	+498 B (+0.7%)
  auth (EmailAndPassword)	71.5 kB	72.0 kB	+498 B (+0.7%)
  auth (GoogleFBTwitterGitHubPopup)	93.9 kB	94.5 kB	+668 B (+0.7%)
  auth (GooglePopup)	91.1 kB	91.8 kB	+668 B (+0.7%)
  auth (GoogleRedirect)	91.4 kB	92.0 kB	+668 B (+0.7%)
  auth (Phone)	77.6 kB	78.1 kB	+498 B (+0.6%)

• firebase

  Type	Base (0bab0b7)	Merge (3bea516)	Diff
  firebase-auth-compat.js	126 kB	126 kB	+579 B (+0.5%)
  firebase-auth-cordova.js	138 kB	139 kB	+956 B (+0.7%)
  firebase-auth-react-native.js	150 kB	150 kB	+745 B (+0.5%)
  firebase-auth.js	117 kB	118 kB	+603 B (+0.5%)
  firebase-compat.js	747 kB	748 kB	+569 B (+0.1%)

Test Logs

• Base (0bab0b7): https://github.com/firebase/firebase-js-sdk/actions/runs/4058991317
• Merge (3bea516): https://github.com/firebase/firebase-js-sdk/actions/runs/4058995285

1. https://storage.googleapis.com/firebase-sdk-metric-reports/mNW9hfzby0.html

[google-oss-bot]

Size Analysis Report ¹

This report is too large (229,775 characters) to be displayed here in a GitHub comment. Please use the below link to see the full report on Google Cloud Storage.

Test Logs

• Base (0bab0b7): https://github.com/firebase/firebase-js-sdk/actions/runs/4058991317
• Merge (3bea516): https://github.com/firebase/firebase-js-sdk/actions/runs/4058995285

1. https://storage.googleapis.com/firebase-sdk-metric-reports/QzzmN0pBfT.html

[sam-gc]

Generally LGTM pending some comments

[sam-gc]

Why are we getting rid of the anon function here? I think we copied this from Firestore originally (not exactly sure why it's done this way)

[lisajian]

Yeahh, I wasn't sure why we had the anon function either and didn't notice a difference in behavior with / without it? I think Firestore currently doesn't use an anon function:

firebase-js-sdk/packages/firestore/src/register.ts

Line 45 in 825e648

const firestoreInstance = new Firestore(

Will leave this open if other folks have an opinion about it

[prameshj]

+1 to remove the anon function if we did not observe any behavior change

[lisajian]

Cool cool

[sam-gc]

I also added @prameshj to give her a chance to double check things

[prameshj]

Thanks for looping me in! Mostly LGTM, one question about _openRedirect test case.

[prameshj]

@renkelvin