firebase
diff --git a/‎FirebaseAuth/Sources/Auth/FIRAuth.m‎
Lines changed: 3 additions & 2 deletions b/‎FirebaseAuth/Sources/Auth/FIRAuth.m‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎FirebaseAuth/Sources/MultiFactor/FIRMultiFactorResolver+Internal.h‎
Lines changed: 1 addition & 1 deletion b/‎FirebaseAuth/Sources/MultiFactor/FIRMultiFactorResolver+Internal.h‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎FirebaseAuth/Sources/MultiFactor/FIRMultiFactorResolver.m‎
Lines changed: 1 addition & 1 deletion b/‎FirebaseAuth/Sources/MultiFactor/FIRMultiFactorResolver.m‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎FirebaseAuth/Sources/Swift/AuthProvider/GameCenterAuthProvider.swift‎
Lines changed: 58 additions & 15 deletions b/‎FirebaseAuth/Sources/Swift/AuthProvider/GameCenterAuthProvider.swift‎
Lines changed: 58 additions & 15 deletions
diff --git a/‎FirebaseAuth/Sources/Swift/Backend/AuthBackend.swift‎
Lines changed: 9 additions & 4 deletions b/‎FirebaseAuth/Sources/Swift/Backend/AuthBackend.swift‎
Lines changed: 9 additions & 4 deletions
diff --git a/‎FirebaseAuth/Sources/Swift/Backend/AuthRequestConfiguration.swift‎
Lines changed: 7 additions & 1 deletion b/‎FirebaseAuth/Sources/Swift/Backend/AuthRequestConfiguration.swift‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎FirebaseAuth/Sources/Swift/Backend/IdentityToolkitRequest.swift‎
Lines changed: 2 additions & 12 deletions b/‎FirebaseAuth/Sources/Swift/Backend/IdentityToolkitRequest.swift‎
Lines changed: 2 additions & 12 deletions
diff --git a/‎FirebaseAuth/Sources/Swift/Backend/RPC/SignInWithGameCenterRequest.swift‎
Lines changed: 23 additions & 1 deletion b/‎FirebaseAuth/Sources/Swift/Backend/RPC/SignInWithGameCenterRequest.swift‎
Lines changed: 23 additions & 1 deletion
diff --git a/‎FirebaseAuth/Sources/Swift/Backend/RPC/SignInWithGameCenterResponse.swift‎
Lines changed: 4 additions & 0 deletions b/‎FirebaseAuth/Sources/Swift/Backend/RPC/SignInWithGameCenterResponse.swift‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎FirebaseAuth/Sources/Swift/Utilities/AuthErrorUtils.swift‎
Lines changed: 4 additions & 2 deletions b/‎FirebaseAuth/Sources/Swift/Utilities/AuthErrorUtils.swift‎
Lines changed: 4 additions & 2 deletions
@@ -460,8 +460,9 @@ - (nullable instancetype)initWithAPIKey:(NSString *)APIKey
     _listenerHandles = [NSMutableArray array];
     _requestConfiguration = [[FIRAuthRequestConfiguration alloc] initWithAPIKey:APIKey
                                                                           appID:appID
-                                                                           auth:self
-                                                                heartbeatLogger:heartbeatLogger];
+                                                                           auth:self];
+    // TODO: heartbeat
+    // heartbeatLogger:heartbeatLogger];
     _firebaseAppName = [appName copy];
 #if TARGET_OS_IOS
     _settings = [[FIRAuthSettings alloc] init];
 
@@ -26,7 +26,7 @@ NS_ASSUME_NONNULL_BEGIN
 
 - (instancetype)initWithMFAPendingCredential:(NSString *_Nullable)MFAPendingCredential
                                        hints:(NSArray<FIRMultiFactorInfo *> *)hints
-                                        auth:(FIRAuth *)auth;
+                                        auth:(FIRAuth *_Nullable)auth;
 
 @end
 
 
@@ -32,7 +32,7 @@ @implementation FIRMultiFactorResolver
 
 - (instancetype)initWithMFAPendingCredential:(NSString *_Nullable)MFAPendingCredential
                                        hints:(NSArray<FIRMultiFactorInfo *> *)hints
-                                        auth:(FIRAuth *)auth {
+                                        auth:(FIRAuth *_Nullable)auth {
   self = [super init];
   if (self) {
     _MFAPendingCredential = MFAPendingCredential;
 
@@ -27,33 +27,63 @@
         @brief Creates an `AuthCredential` for a Game Center sign in.
      */
     open class func getCredential(completion: @escaping (AuthCredential?, Error?) -> Void) {
-      // TODO: Linking GameKit.framework without using it on macOS results in App Store rejection.
+      /**
+       Linking GameKit.framework without using it on macOS results in App Store rejection.
+       Thus we don't link GameKit.framework to our SDK directly. `optionalLocalPlayer` is used for
+       checking whether the APP that consuming our SDK has linked GameKit.framework. If not, a
+       `GameKitNotLinkedError` will be raised.
+       **/
+      guard let _: AnyClass = NSClassFromString("GKLocalPlayer") else {
+        completion(nil, AuthErrorUtils.gameKitNotLinkedError())
+        return
+      }
+
       let localPlayer = GKLocalPlayer.local
-      if !localPlayer.isAuthenticated {
-        // TODO: pass right error
-        completion(nil, nil)
+      guard localPlayer.isAuthenticated else {
+        completion(nil, AuthErrorUtils.localPlayerNotAuthenticatedError())
         return
       }
-      localPlayer
-        .generateIdentityVerificationSignature { publicKeyURL, signature, salt, timestamp, error in
-          if error != nil {
+
+      if #available(iOS 13.5, macOS 10.15.5, macCatalyst 13.5, tvOS 13.4.8, *) {
+        localPlayer.fetchItems { publicKeyURL, signature, salt, timestamp, error in
+          if let error = error {
             completion(nil, error)
           } else {
-            /**
-             @c `localPlayer.alias` is actually the displayname needed, instead of
-             `localPlayer.displayname`. For more information, check
-             https://developer.apple.com/documentation/gamekit/gkplayer
-             **/
-            let displayName = localPlayer.alias
             let credential = GameCenterAuthCredential(withPlayerID: localPlayer.playerID,
+                                                      teamPlayerID: localPlayer.teamPlayerID,
+                                                      gamePlayerID: localPlayer.gamePlayerID,
                                                       publicKeyURL: publicKeyURL,
                                                       signature: signature,
                                                       salt: salt,
                                                       timestamp: timestamp,
-                                                      displayName: displayName)
+                                                      displayName: localPlayer.displayName)
             completion(credential, nil)
           }
         }
+      } else {
+        localPlayer
+          .generateIdentityVerificationSignature { publicKeyURL, signature, salt, timestamp, error in
+            if error != nil {
+              completion(nil, error)
+            } else {
+              /**
+               @c `localPlayer.alias` is actually the displayname needed, instead of
+               `localPlayer.displayname`. For more information, check
+               https://developer.apple.com/documentation/gamekit/gkplayer
+               **/
+              let displayName = localPlayer.alias
+              let credential = GameCenterAuthCredential(withPlayerID: localPlayer.playerID,
+                                                        teamPlayerID: nil,
+                                                        gamePlayerID: nil,
+                                                        publicKeyURL: publicKeyURL,
+                                                        signature: signature,
+                                                        salt: salt,
+                                                        timestamp: timestamp,
+                                                        displayName: displayName)
+              completion(credential, nil)
+            }
+          }
+      }
     }
 
     /** @fn
@@ -77,6 +107,8 @@
   @objc(FIRGameCenterAuthCredential) public class GameCenterAuthCredential: AuthCredential,
     NSSecureCoding {
     @objc public let playerID: String
+    @objc public let teamPlayerID: String?
+    @objc public let gamePlayerID: String?
     @objc public let publicKeyURL: URL?
     @objc public let signature: Data?
     @objc public let salt: Data?
@@ -86,15 +118,20 @@
     /**
         @brief Designated initializer.
         @param playerID The ID of the Game Center local player.
+        @param teamPlayerID The teamPlayerID of the Game Center local player.
+        @param gamePlayerID The gamePlayerID of the Game Center local player.
         @param publicKeyURL The URL for the public encryption key.
         @param signature The verification signature generated.
         @param salt A random string used to compute the hash and keep it randomized.
         @param timestamp The date and time that the signature was created.
         @param displayName The display name of the Game Center player.
      */
-    init(withPlayerID playerID: String, publicKeyURL: URL?, signature: Data?, salt: Data?,
+    init(withPlayerID playerID: String, teamPlayerID: String?, gamePlayerID: String?,
+         publicKeyURL: URL?, signature: Data?, salt: Data?,
          timestamp: UInt64, displayName: String) {
       self.playerID = playerID
+      self.teamPlayerID = teamPlayerID
+      self.gamePlayerID = gamePlayerID
       self.publicKeyURL = publicKeyURL
       self.signature = signature
       self.salt = salt
@@ -107,6 +144,8 @@
 
     public func encode(with coder: NSCoder) {
       coder.encode("playerID")
+      coder.encode("teamPlayerID")
+      coder.encode("gamePlayerID")
       coder.encode("publicKeyURL")
       coder.encode("signature")
       coder.encode("salt")
@@ -116,11 +155,15 @@
 
     public required init?(coder: NSCoder) {
       guard let playerID = coder.decodeObject(forKey: "playerID") as? String,
+            let teamPlayerID = coder.decodeObject(forKey: "teamPlayerID") as? String,
+            let gamePlayerID = coder.decodeObject(forKey: "gamePlayerID") as? String,
             let timestamp = coder.decodeObject(forKey: "timestamp") as? UInt64,
             let displayName = coder.decodeObject(forKey: "displayName") as? String else {
         return nil
       }
       self.playerID = playerID
+      self.teamPlayerID = teamPlayerID
+      self.gamePlayerID = gamePlayerID
       self.timestamp = timestamp
       self.displayName = displayName
       publicKeyURL = coder.decodeObject(forKey: "publicKeyURL") as? URL
 
@@ -170,7 +170,11 @@ private class AuthBackendRPCImplementation: NSObject, AuthBackendImplementation
     post(withRequest: request, response: response) { error in
       if let error = error {
         callback(nil, error)
-      } else if let mfaError = AuthBackendRPCImplementation.generateMFAError(response: response) {
+      } else if let mfaError = AuthBackendRPCImplementation.generateMFAError(response: response,
+                                                                             auth: request
+                                                                               .requestConfiguration(
+                                                                               )
+                                                                               .auth) {
         callback(nil, mfaError)
       } else {
         callback(response, nil)
@@ -179,7 +183,7 @@ private class AuthBackendRPCImplementation: NSObject, AuthBackendImplementation
   }
 
   #if os(iOS)
-    private class func generateMFAError(response: AuthRPCResponse) -> Error? {
+    private class func generateMFAError(response: AuthRPCResponse, auth: Auth?) -> Error? {
       if let mfaResponse = response as? EmailLinkSignInResponse,
          mfaResponse.IDToken == nil,
          let enrollments = mfaResponse.MFAInfo {
@@ -189,14 +193,15 @@ private class AuthBackendRPCImplementation: NSObject, AuthBackendImplementation
         }
         return AuthErrorUtils.secondFactorRequiredError(
           pendingCredential: mfaResponse.MFAPendingCredential,
-          hints: info
+          hints: info,
+          auth: auth
         )
       } else {
         return nil
       }
     }
   #else
-    private class func generateMFAError(response: AuthRPCResponse) -> Error? {
+    private class func generateMFAError(response: AuthRPCResponse, auth: Auth?) -> Error? {
       return nil
     }
   #endif
 
@@ -33,6 +33,11 @@ import Foundation
   //    @brief The Firebase appID used in the request.
   // */
   @objc public var appID: String
+
+  /** @property auth
+      @brief The FIRAuth instance used in the request.
+   */
+  @objc public weak var auth: Auth?
   //
   /// ** @property heartbeatLogger
   //    @brief The heartbeat logger used to add heartbeats to the corresponding request's header.
@@ -55,9 +60,10 @@ import Foundation
    @brief Designated initializer.
    @param APIKey The API key to be used in the request.
    */
-  @objc public init(APIKey: String, appID: String) {
+  @objc public init(APIKey: String, appID: String, auth: Auth? = nil) {
     self.APIKey = APIKey
     self.appID = appID
+    self.auth = auth
   }
 
   // TODO:
 
@@ -13,7 +13,6 @@
 // limitations under the License.
 
 import Foundation
-@_implementationOnly import FirebaseCore
 
 private let kHttpsProtocol = "https:"
 private let kHttpProtocol = "http:"
@@ -46,7 +45,7 @@ private let kIdentityPlatformStagingAPIHost =
   /** @property tenantID
    @brief The tenant ID of the request. nil if none is available.
    */
-  var tenantID: String?
+  @objc public let tenantID: String?
 
   let _requestConfiguration: AuthRequestConfiguration
 
@@ -61,16 +60,7 @@ private let kIdentityPlatformStagingAPIHost =
     _requestConfiguration = requestConfiguration
     _useIdentityPlatform = useIdentityPlatform
     _useStaging = useStaging
-
-    // TODO: tenantID should be set via a parameter, since it might not be the default app (#10748)
-    // TODO: remove FirebaseCore import when #10748 is fixed.
-    // Automatically set the tenant ID. If the request is initialized before FIRAuth is configured,
-    // set tenant ID to nil.
-    if FirebaseApp.app() == nil {
-      tenantID = nil
-    } else {
-      tenantID = Auth.auth().tenantID
-    }
+    tenantID = requestConfiguration.auth?.tenantID
   }
 
   @objc public func containsPostBody() -> Bool {
 
@@ -27,6 +27,16 @@ public class SignInWithGameCenterRequest: IdentityToolkitRequest,
    */
   @objc public var playerID: String
 
+  /** @property teamPlayerID
+      @brief The team player ID of the Game Center local player.
+   */
+  @objc public var teamPlayerID: String?
+
+  /** @property gamePlayerID
+      @brief The game player ID of the Game Center local player.
+   */
+  @objc public var gamePlayerID: String?
+
   /** @property publicKeyURL
       @brief The URL for the public encryption key.
    */
@@ -65,16 +75,22 @@ public class SignInWithGameCenterRequest: IdentityToolkitRequest,
   /** @fn initWithPlayerID:publicKeyURL:signature:salt:timestamp:displayName:requestConfiguration:
       @brief Designated initializer.
       @param playerID The ID of the Game Center player.
+      @param teamPlayerID The teamPlayerID of the Game Center local player.
+      @param gamePlayerID The gamePlayerID of the Game Center local player.
       @param publicKeyURL The URL for the public encryption key.
       @param signature The verification signature generated.
       @param salt A random string used to compute the hash and keep it randomized.
       @param timestamp The date and time that the signature was created.
       @param displayName The display name of the Game Center player.
    */
-  @objc public init(playerID: String, publicKeyURL: URL, signature: Data, salt: Data,
+  @objc public init(playerID: String, teamPlayerID: String?, gamePlayerID: String?,
+                    publicKeyURL: URL,
+                    signature: Data, salt: Data,
                     timestamp: UInt64, displayName: String?,
                     requestConfiguration: AuthRequestConfiguration) {
     self.playerID = playerID
+    self.teamPlayerID = teamPlayerID
+    self.gamePlayerID = gamePlayerID
     self.publicKeyURL = publicKeyURL
     self.signature = signature
     self.salt = salt
@@ -96,6 +112,12 @@ public class SignInWithGameCenterRequest: IdentityToolkitRequest,
     if timestamp != 0 {
       postBody["timestamp"] = timestamp
     }
+    if let teamPlayerID {
+      postBody["teamPlayerId"] = teamPlayerID
+    }
+    if let gamePlayerID {
+      postBody["gamePlayerId"] = gamePlayerID
+    }
     if let accessToken {
       postBody["idToken"] = accessToken
     }
 
@@ -20,6 +20,8 @@ import Foundation
   @objc public var refreshToken: String?
   @objc public var localID: String?
   @objc public var playerID: String?
+  @objc public var teamPlayerID: String?
+  @objc public var gamePlayerID: String?
   @objc public var approximateExpirationDate: Date?
   @objc public var isNewUser: Bool = false
   @objc public var displayName: String?
@@ -35,6 +37,8 @@ import Foundation
     }
     refreshToken = dictionary["refreshToken"] as? String
     playerID = dictionary["playerId"] as? String
+    teamPlayerID = dictionary["teamPlayerId"] as? String
+    gamePlayerID = dictionary["gamePlayerId"] as? String
     isNewUser = dictionary["isNewUser"] as? Bool ?? false
     displayName = dictionary["displayName"] as? String
   }
 
@@ -547,13 +547,15 @@ private let kFIRAuthErrorMessageMalformedJWT =
   #if os(iOS)
     // TODO(ncooke3): Address the optionality of these arguments.
     @objc public static func secondFactorRequiredError(pendingCredential: String?,
-                                                       hints: [MultiFactorInfo]?)
+                                                       hints: [MultiFactorInfo]?,
+                                                       auth: Auth?)
       -> Error {
       var userInfo: [String: Any] = [:]
       if let pendingCredential = pendingCredential, let hints = hints {
         let resolver = MultiFactorResolver(
           mfaPendingCredential: pendingCredential,
-          hints: hints
+          hints: hints,
+          auth: auth
         )
         userInfo[FIRAuthErrorUserInfoMultiFactorResolverKey] = resolver
       }