Android RxJava library for Social auth (Google, Facebook) and Smart Lock For Passwords
To use this library your minSdkVersion
must be >= 15.
In your project level build.gradle :
allprojects {
repositories {
...
maven { url "https://jitpack.io" }
}
}
In your app level build.gradle :
dependencies {
compile 'com.github.pchmn:RxSocialAuth:2.0.1-beta'
}
In order to use this library with Google Sign-In and Facebook Login, you need to prepare your project.
Follow the official guide : https://developers.google.com/identity/sign-in/android/start-integrating
In short :
- Put your
google-services.json
into the/app
directory of your project - Add the dependency
classpath 'com.google.gms:google-services:3.0.0'
to your project-levelbuild.gradle
- Add the plugin
apply plugin: 'com.google.gms.google-services'
at the end of your app-levelbuild.gradle
- Add the dependency
compile 'com.google.android.gms:play-services-auth:10.0.1'
to your app-levelbuild.gradle
- Create an app ID on the facebook developer website : https://developers.facebook.com/ and activate Facebook Login on the console administration.
- Add your facebook app ID in the strings.xml (or keys.xml) of your project like this :
<string name="facebook_app_id">you_app_id</string>
- Modify your Manifest.xml like this :
<application android:label="@string/app_name" ...>
...
<meta-data
android:name="com.facebook.sdk.ApplicationId"
android:value="@string/facebook_app_id" />
...
</application>
- You don't have to add the facebook SDK in your project, it is already included in this library
If you have trouble when trying to authenticate users, maybe you have to add the users you're trying to authenticate in your test users. See http://stackoverflow.com/questions/41861564/server-error-code-1675030-message-error-performing-query
This class represents a social account and has these methods :
String getProvider()
String getId()
String getAccessToken()
String getEmail()
String getFirstname()
String getLastname()
String getDisplayName()
Uri getPhotoUri()
These methods can return a null object according to the permissions you asked or didn't ask when you signed in the user.
This class represents the status of a request and has these methods :
int getStatusCode()
String getMessage()
boolean isSuccess()
boolean isCanceled()
Create a RxGoogleAuth
object using the RxGoogleAuth.Builder
builder.
// build RxGoogleAuth object
// 'this' represents a FragmentActivity
RxGoogleAuth rxGoogleAuth = new RxGoogleAuth.Builder(this)
.requestIdToken(getString(R.string.oauth_google_key))
.requestEmail()
.requestProfile()
.disableAutoSignIn()
.enableSmartLock(true)
.build();
You can configure the builder with these methods :
requestEmail()
: Request the emailrequestProfile()
: Request the profile (mandatory to get the profile picture)requestIdToken(String clientId)
: Request an id token for authenticated users (mandatory to get the profile picture)disableAutoSignIn()
: Clear the account previously selected by the user, so the user will have to pick an accountenableSmartLock(boolean enable)
: Enable or disable Smart Lock For Passwords. If enabled, it will save automatically the credential in Smart Lock For Passwords
signIn()
and silentSignIn(Credential credential)
methods return an Observable<RxAccount>
.
I think I found a bug in the Google Sign-In API with the silentSignIn()
method. If the user you try to silent sign in doesn't have a Google+ account, no matter if you set the requestProfile()
options, you won't have his profile.
// sign in
rxGoogleAuth.signIn()
.subscribe(rxAccount -> {
// user is signed in
// use the rxAccount object as you want
Log.d(TAG, "name: " + rxAccount.getDisplayName());
Log.d(TAG, "email: " + rxAccount.getEmail());
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
// silent sign in
// you have to pass a credential object in order to silent sign in
// if it fails the credential will be deleted from smart lock for passwords
rxGoogleAuth.silentSignIn(Credential credential)
.subscribe(rxAccount -> {
// user is signed in
// use the rxAccount object as you want
Log.d(TAG, "name: " + rxAccount.getDisplayName());
Log.d(TAG, "email: " + rxAccount.getEmail());
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
signOut()
and revokeAccess()
methods return an Observable<RxStatus>
.
// sign out
rxGoogleAuth.signOut()
.subscribe(rxStatus -> {
if(rxStatus.isSuccess()) {
// user is signed out
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
// revoke access
rxGoogleAuth.revokeAccess()
.subscribe(rxStatus -> {
if(rxStatus.isSuccess()) {
// access is revoked
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
Create a RxFacebookAuth
object using the RxFacebookAuth.Builder
builder.
// build RxFacebookAuth object
// 'this' represents a FragmentActivity
RxFacebookAuth rxFacebookAuth = new RxFacebookAuth.Builder(this)
.enableSmartLock(true)
.requestEmail()
.requestProfile()
.requestPhotoSize(200, 200)
    .build();
You can configure the builder with these methods :
requestEmail()
: Request the emailrequestProfile()
: Request the profile (mandatory to get the profile picture)requestPhotoSize(int width, int height)
: Request a specific photo size, cause request profileenableSmartLock(boolean enable)
: Enable or disable Smart Lock For Passwords. If enabled, it will save automatically the credential in Smart Lock For Passwords
Like with Google Sign-In, the signIn()
method will return an Observable<RxAccount>
.
// sign in
rxFacebookAuth.signIn()
.subscribe(rxAccount -> {
// user is signed in
// use the rxAccount object as you want
Log.d(TAG, "name: " + rxAccount.getDisplayName());
Log.d(TAG, "email: " + rxAccount.getEmail());
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
signOut()
method returns an Observable<RxStatus>
.
// sign out
rxFacebookAuth.signOut()
.subscribe(rxStatus -> {
if(rxStatus.isSuccess()) {
// user is signed out
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
This class permits to access and sign out the current account without knowing if it is a Google account or a Facebook account. For example it is useful when you want to sign out the current user but you don't know if he/she is connected with a Google or a Facebook account.
This class uses the singleton pattern.
This method will signed out the current user from the app, and from the current provider. It will also disable auto sign in for Smart Lock for Passwords and for the current provider. So the user will be able to pick an other account when using the authentication method again.
// sign out
// 'this' represents a FragmentActivity
RxSocialAuth.getInstance().signOut(this)
.subscribe(rxStatus -> {
if(rxStatus.isSuccess()) {
// user is signed out
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
This method return a RxAccount
object representing the current user in the app. If the user is signed out, the RxAccount
object will be null.
// current user
RxAccount currentUser = RxSocialAuth.getInstance().getCurrentUser();
Create a RxSmartLockPasswords
object using the RxSmartLockPasswords.Builder
builder.
// build RxSmartLockPassword object
// 'this' represents a FragmentActivity
RxSmartLockPasswords rxSmartLockPasswords = new RxSmartLockPasswords.Builder(this)
.disableAutoSignIn()
.setAccountTypes(IdentityProviders.GOOGLE, IdentityProviders.FACEBOOK)
.build()
You can configure the builder with these methods :
setAccountTypes(String... accountTypes)
: Set the account types (identity providers)setPasswordLoginSupported(boolean supported)
: Enable returning credentials with a password, that is verified by the applicationdisableAutoSignIn()
: Disable auto sign
Automatically sign users into your app by using the Credentials API to request and retrieve stored credentials for your users.
If you want to retrieve a Facebook account credential, for example, you have to call .setAccountTypes(IdentityProviders.FACEBOOK)
on the builder of your RxSmartLockPassword
object before.
To retrieve user's stored credentials, use the requestCredential()
method on a RxSmartLockPassword
object. This method returns an Observable<CredentialRequestResult>
.
// request credential
rxSmartLockPassword.requestCredential()
.subscribe(credentialRequestResult -> {
if (credentialRequestResult.getStatus().isSuccess()) {
onCredentialRetrieved(credentialRequestResult.getCredential());
}
else {
resolveResult(credentialRequestResult.getStatus());
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
To retrieve user's stored credentials and automatically sign in the user with found credentials, use the requestCredentialAndAutoSignIn()
method. It will return an Observable<Object>
.
With this method you don't have to handle different cases. No matter if there is no stored credential, if there is only one stored credential, or if there are multiple stored credentials, the requestCredentialAndAutoSignIn()
method will do all the work.
-
If there is only one stored credential, or if the user picks one of the multiple stored credentials, this method will catch it :
- If the account type is
Google
orFacebook
, the user will be automatically sign in according to the provider, and the observer will receive aRxAccount
object in case of success. If it fails aThrowable
will be emitted. - If the account type is different from
Google
orFacebook
the observer will receive aCredential
object :- If the account type is null, this is a
LoginPassword
credential. In this case theCredential
object will contain the id and the password, and you'll have to authenticate the user manually with the credential. - If the account type is not null, it means that there is a provider, but different from
Google
orFacebook
, likeTwitter
for example
- If the account type is null, this is a
- If the account type is
-
If the user cancels or if there is no stored credential, a
Throwable
will be emitted.
// request credential and auto sign in
rxSmartLockPasswords.requestCredentialAndAutoSignIn()
.subscribe(o -> {
if(o instanceof RxAccount) {
// user is signed in using google or facebook
RxAccount rxAccount = (RxAccount) o;
Log.d(TAG, "provider: " + rxAccount.getProvider());
Log.d(TAG, "email: " + rxAccount.getEmail());
}
else if(o instanceof Credential) {
Credential credential = (Credential) o;
if(credential.getAccountType() == null) {
// credential contains login and password
signInWithLoginPassword(credential.getId(), credential.getPassword());
}
else {
// credential from other provider than Google or Facebook
handleCredential(credential);
}
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
private void signInWithLoginPassword(String login, String password) {
// authenticate the user like you want
}
private void handleCredential(Credential credential) {
// do your logic here
}
After users successfully sign in, create accounts, or change passwords, allow them to store their credentials to automate future authentication in your app.
To store a user's credentials, use the saveCredential(Credential credential)
method on a RxSmartLockPassword
object. It returns an Observable<RxStatus>
.
If you used RxGoogleAuth
or RxFacebookAuth
with the enableSmartLock(true)
option, the credential is stored automatically, and you don't have to use this method.
// save credential
rxSmartLockPassword.saveCredential(Credential credential)
.subscribe(rxStatus -> {
if(rxStatus.isSuccess()) {
// credential saved
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
To delete a stored credential, use the deleteCredential(Credential credential)
method on a RxSmartLockPassword
object. It returns an Observable<RxStatus>
.
// delete credential
rxSmartLockPassword.deleteCredential(Credential credential)
.subscribe(rxStatus -> {
if(rxStatus.isSuccess()) {
// credential deleted
}
}, throwable -> {
Log.e(TAG, throwable.getMessage());
});
A sample app with some use cases of the library is available on this link
This library is currently in beta
This library was greatly inspired by SocialLoginManager
Copyright 2017 pchmn
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.