Merge pull request #2708 from wmathurin/master

Cherry picking fixes for 13.0.1

Author: wmathurin

libs/SalesforceSDK/src/com/salesforce/androidsdk/auth/AuthenticationUtilities.kt

@@ -42,9 +42,9 @@ import com.salesforce.androidsdk.analytics.SalesforceAnalyticsManager
 import com.salesforce.androidsdk.app.Features.FEATURE_BIOMETRIC_AUTH
 import com.salesforce.androidsdk.app.Features.FEATURE_SCREEN_LOCK
 import com.salesforce.androidsdk.app.SalesforceSDKManager
-import com.salesforce.androidsdk.auth.OAuth2.IdServiceResponse
 import com.salesforce.androidsdk.auth.OAuth2.TokenEndpointResponse
 import com.salesforce.androidsdk.auth.OAuth2.addAuthorizationHeader
+import com.salesforce.androidsdk.auth.OAuth2.callIdentityService
 import com.salesforce.androidsdk.auth.OAuth2.revokeRefreshToken
 import com.salesforce.androidsdk.config.RuntimeConfig.getRuntimeConfig
 import com.salesforce.androidsdk.push.PushMessaging.register
@@ -55,8 +55,10 @@ import com.salesforce.androidsdk.security.ScreenLockManager
 import com.salesforce.androidsdk.util.SalesforceSDKLogger.e
 import com.salesforce.androidsdk.util.SalesforceSDKLogger.w
 import kotlinx.coroutines.CoroutineScope
+import kotlinx.coroutines.Dispatchers.Default
 import kotlinx.coroutines.Dispatchers.IO
 import kotlinx.coroutines.launch
+import kotlinx.coroutines.withContext
 import okhttp3.HttpUrl
 import okhttp3.Interceptor
 import okhttp3.Request.Builder
@@ -83,7 +85,7 @@ private const val TAG = "AuthenticationUtilities"
  *  * Creates an Account.
  *  * Checks for any CA/ECA settings such as Screen Lock or Biometric Authentication.
  */
-internal fun onAuthFlowComplete(
+internal suspend fun onAuthFlowComplete(
     tokenResponse: TokenEndpointResponse,
     loginServer: String,
     consumerKey: String,
@@ -113,14 +115,17 @@ internal fun onAuthFlowComplete(
         return
     }
 
-    var userIdentity: IdServiceResponse? = null
-    runCatching {
-        userIdentity = OAuth2.callIdentityService(
-            HttpAccess.DEFAULT,
-            tokenResponse.idUrlWithInstance,
-            tokenResponse.authToken,
-        )
-    }
+    val userIdentity = runCatching {
+        withContext(Default) {
+            callIdentityService(
+                HttpAccess.DEFAULT,
+                tokenResponse.idUrlWithInstance,
+                tokenResponse.authToken,
+            )
+        }
+    }.onFailure { throwable ->
+        w(TAG, "Cannot fetch user identity due to an error.", throwable)
+    }.getOrNull()
 
     val mustBeManagedApp = userIdentity?.customPermissions?.optBoolean(MUST_BE_MANAGED_APP_PERM) ?: false
     if (mustBeManagedApp && !getRuntimeConfig(context).isManagedApp) {
@@ -231,21 +236,21 @@ internal fun onAuthFlowComplete(
     // Screen lock required by mobile policy
     if (userIdentity?.screenLockTimeout?.compareTo(0) == 1) {
         SalesforceSDKManager.getInstance().registerUsedAppFeature(FEATURE_SCREEN_LOCK)
-        val timeoutInMills = (userIdentity?.screenLockTimeout ?: 0) * 1000 * 60
+        val timeoutInMills = userIdentity.screenLockTimeout * 1000 * 60
         (SalesforceSDKManager.getInstance().screenLockManager as ScreenLockManager?)?.storeMobilePolicy(
             account,
-            userIdentity?.screenLock ?: false,
+            userIdentity.screenLock,
             timeoutInMills
         )
     }
 
     // Biometric authorization required by mobile policy
     if (userIdentity?.biometricAuth == true) {
         SalesforceSDKManager.getInstance().registerUsedAppFeature(FEATURE_BIOMETRIC_AUTH)
-        val timeoutInMills = (userIdentity?.biometricAuthTimeout ?: 0) * 60 * 1000
+        val timeoutInMills = userIdentity.biometricAuthTimeout * 60 * 1000
         (SalesforceSDKManager.getInstance().biometricAuthenticationManager as BiometricAuthenticationManager?)?.storeMobilePolicy(
             account,
-            userIdentity?.biometricAuth ?: false,
+            userIdentity.biometricAuth,
             timeoutInMills
         )
     }
@@ -307,7 +312,7 @@ private fun HttpUrl.isSalesforceUrl(): Boolean {
     // List from https://help.salesforce.com/s/articleView?language=en_US&id=sf.domain_name_url_formats.htm&type=5
     val salesforceHosts = listOf(".salesforce.com", ".force.com", ".sfdcopens.com", ".site.com", ".lightning.com",
         ".salesforce-sites.com", ".force-user-content.com", ".salesforce-experience.com", ".salesforce-scrt.com")
-    return salesforceHosts.map { host.endsWith(it) }.any() { it }
+    return salesforceHosts.map { host.endsWith(it) }.any { it }
 }
 
 private fun addAccount(account: UserAccount?) {

libs/SalesforceSDK/src/com/salesforce/androidsdk/auth/NativeLoginManager.kt

@@ -75,7 +75,8 @@ import com.salesforce.androidsdk.security.BiometricAuthenticationManager.Compani
 import com.salesforce.androidsdk.security.SalesforceKeyGenerator.getRandom128ByteKey
 import com.salesforce.androidsdk.security.SalesforceKeyGenerator.getSHA256Hash
 import com.salesforce.androidsdk.util.SalesforceSDKLogger
-import kotlinx.coroutines.Dispatchers
+import kotlinx.coroutines.Dispatchers.Default
+import kotlinx.coroutines.runBlocking
 import kotlinx.coroutines.withContext
 import okhttp3.MediaType.Companion.toMediaTypeOrNull
 import okhttp3.RequestBody
@@ -196,22 +197,24 @@ internal class NativeLoginManager(
         val tokenEndpointResponse = TokenEndpointResponse(tokenResponse.rawResponse)
         tokenResponse.consumeQuietly()
 
-        return withContext(Dispatchers.IO) {
+        return withContext(Default) {
             suspendCoroutine { continuation ->
-                onAuthFlowComplete(
-                    tokenResponse = tokenEndpointResponse,
-                    loginServer = loginUrl,
-                    consumerKey = clientId,
-                    onAuthFlowError = { error, errorDesc, e ->
-                        SalesforceSDKLogger.e(TAG, "$error: $errorDesc", e)
-                        continuation.resume(UnknownError)
-                    },
-                    onAuthFlowSuccess = { userAccount ->
-                        SalesforceSDKLogger.d(TAG, "onAuthFlowSuccess $userAccount")
-                        continuation.resume(Success)
-                    },
-                    nativeLogin = true,
-                )
+                runBlocking {
+                    onAuthFlowComplete(
+                        tokenResponse = tokenEndpointResponse,
+                        loginServer = loginUrl,
+                        consumerKey = clientId,
+                        onAuthFlowError = { error, errorDesc, e ->
+                            SalesforceSDKLogger.e(TAG, "$error: $errorDesc", e)
+                            continuation.resume(UnknownError)
+                        },
+                        onAuthFlowSuccess = { userAccount ->
+                            SalesforceSDKLogger.d(TAG, "onAuthFlowSuccess $userAccount")
+                            continuation.resume(Success)
+                        },
+                        nativeLogin = true,
+                    )
+                }
             }
         }
     }

libs/SalesforceSDK/src/com/salesforce/androidsdk/auth/idp/SPAuthCodeHelper.kt

@@ -83,7 +83,7 @@ internal class SPAuthCodeHelper private constructor (
         return tokenResponse
     }
 
-    private fun completeLogin(tokenResponse: TokenEndpointResponse) {
+    private suspend fun completeLogin(tokenResponse: TokenEndpointResponse) {
         onAuthFlowComplete(
             tokenResponse = tokenResponse,
             loginServer = loginUrl,

libs/SalesforceSDK/src/com/salesforce/androidsdk/ui/LoginActivity.kt

@@ -97,6 +97,7 @@ import androidx.compose.ui.graphics.toArgb
 import androidx.core.content.ContextCompat
 import androidx.core.content.ContextCompat.getMainExecutor
 import androidx.core.net.toUri
+import androidx.core.view.WindowCompat
 import androidx.fragment.app.FragmentActivity
 import com.salesforce.androidsdk.R.color.sf__background
 import com.salesforce.androidsdk.R.color.sf__background_dark
@@ -137,6 +138,7 @@ import com.salesforce.androidsdk.util.SalesforceSDKLogger.e
 import com.salesforce.androidsdk.util.SalesforceSDKLogger.w
 import com.salesforce.androidsdk.util.UriFragmentParser
 import kotlinx.coroutines.CoroutineScope
+import kotlinx.coroutines.Dispatchers.Default
 import kotlinx.coroutines.Dispatchers.IO
 import kotlinx.coroutines.launch
 import org.json.JSONObject
@@ -519,7 +521,7 @@ open class LoginActivity : FragmentActivity() {
      * @param errorDesc The error description
      * @param e The exception
      */
-    protected fun onAuthFlowError(
+    protected open fun onAuthFlowError(
         error: String,
         errorDesc: String?,
         e: Throwable? = null,
@@ -884,11 +886,13 @@ open class LoginActivity : FragmentActivity() {
                                 )
 
                             else ->
-                                viewModel.onAuthFlowComplete(
-                                    TokenEndpointResponse(params),
-                                    ::onAuthFlowError,
-                                    ::onAuthFlowSuccess
-                                )
+                                CoroutineScope(Default).launch {
+                                    viewModel.onAuthFlowComplete(
+                                        TokenEndpointResponse(params),
+                                        ::onAuthFlowError,
+                                        ::onAuthFlowSuccess
+                                    )
+                                }
                         }
                     }
                 }
@@ -914,6 +918,10 @@ open class LoginActivity : FragmentActivity() {
 
                 viewModel.dynamicBackgroundColor.value = validateAndExtractBackgroundColor(result)
                     ?: return@evaluateJavascript
+
+                // Ensure Status Bar Icons are readable no matter which OS theme is used.
+                val useLightIcons = viewModel.dynamicBackgroundTheme.value == DARK
+                WindowCompat.getInsetsController(window, window.decorView).isAppearanceLightStatusBars = useLightIcons
             }.also {
                 if (!viewModel.authFinished.value) {
                     viewModel.loading.value = false

libs/SalesforceSDK/src/com/salesforce/androidsdk/ui/LoginViewModel.kt

@@ -54,6 +54,7 @@ import com.salesforce.androidsdk.auth.OAuth2.TokenEndpointResponse
 import com.salesforce.androidsdk.auth.OAuth2.exchangeCode
 import com.salesforce.androidsdk.auth.OAuth2.getFrontdoorUrl
 import com.salesforce.androidsdk.auth.defaultBuildAccountName
+import com.salesforce.androidsdk.auth.onAuthFlowComplete
 import com.salesforce.androidsdk.config.BootConfig
 import com.salesforce.androidsdk.security.SalesforceKeyGenerator.getRandom128ByteKey
 import com.salesforce.androidsdk.security.SalesforceKeyGenerator.getSHA256Hash
@@ -240,7 +241,7 @@ open class LoginViewModel(val bootConfig: BootConfig) : ViewModel() {
      * Called when the webview portion of the User Agent flow or the code exchange
      * portion of the Web Server is finished to create and the user.
      */
-    internal fun onAuthFlowComplete(
+    internal suspend fun onAuthFlowComplete(
         tr: TokenEndpointResponse,
         onAuthFlowError: (error: String, errorDesc: String?, e: Throwable?) -> Unit,
         onAuthFlowSuccess: (userAccount: UserAccount) -> Unit,
@@ -249,7 +250,7 @@ open class LoginViewModel(val bootConfig: BootConfig) : ViewModel() {
         // if the user tries to add another user right away.
         clearCookies()
         authCodeForJwtFlow = null
-        com.salesforce.androidsdk.auth.onAuthFlowComplete(
+        onAuthFlowComplete(
             tokenResponse = tr,
             loginServer = selectedServer.value ?: "", // This will never actually be null.
             consumerKey = clientId,