1. Implemented finalizePasskeyEnrollment rpc call

2. Defined finalizePasskeyEnrollment Request and Response object
3. Added unit tests

FirebaseAuth/Sources/Backend/FIRAuthBackend.h

@@ -60,6 +60,8 @@
 @class FIRGetRecaptchaConfigResponse;
 @class FIRStartPasskeyEnrollmentRequest;
 @class FIRStartPasskeyEnrollmentResponse;
+@class FIRFinalizePasskeyEnrollmentRequest;
+@class FIRFinalizePasskeyEnrollmentResponse;
 
 @protocol FIRAuthBackendImplementation;
 @protocol FIRAuthBackendRPCIssuer;
@@ -266,6 +268,17 @@ endpoint.
 typedef void (^FIRStartPasskeyEnrollmentResponseCallback)(
     FIRStartPasskeyEnrollmentResponse *_Nullable response, NSError *_Nullable error);
 
+/**
+ @typedef FIRFinalizePasskeyEnrollmentResponseCallback
+ @brief The type of block used to return the result of a call to the startPasskeyEnrollment
+endpoint.
+ @param response The received response, if any.
+ @param error The error which occurred, if any.
+ @remarks One of response or error will be non-nil.
+ */
+typedef void (^FIRFinalizePasskeyEnrollmentResponseCallback)(
+    FIRFinalizePasskeyEnrollmentResponse *_Nullable response, NSError *_Nullable error);
+
 /** @class FIRAuthBackend
     @brief Simple static class with methods representing the backend RPCs.
     @remarks All callback blocks passed as method parameters are invoked asynchronously on the
@@ -471,6 +484,14 @@ typedef void (^FIRStartPasskeyEnrollmentResponseCallback)(
  */
 + (void)startPasskeyEnrollment:(FIRStartPasskeyEnrollmentRequest *)request
                       callback:(FIRStartPasskeyEnrollmentResponseCallback)callback;
+
+/** @fn finalizePasskeyEnrollment:callback:
+    @brief Sends the platform created public info to the finalizePasskeyEnrollment endpoint.
+    @param request The request parameters.
+    @param callback The callback.
+ */
++ (void)finalizePasskeyEnrollment:(FIRFinalizePasskeyEnrollmentRequest *)request
+                         callback:(FIRFinalizePasskeyEnrollmentResponseCallback)callback;
 #endif
 
 /** @fn revokeToken:callback:
@@ -656,6 +677,14 @@ typedef void (^FIRStartPasskeyEnrollmentResponseCallback)(
  */
 - (void)startPasskeyEnrollment:(FIRStartPasskeyEnrollmentRequest *)request
                       callback:(FIRStartPasskeyEnrollmentResponseCallback)callback;
+
+/** @fn finalizePasskeyEnrollment:callback:
+    @brief Calls the finalizePasskeyEnrollment endpoint, which is responsible for sending the platform credential details to GCIP backend to exchange the access token and refresh token.
+    @param request The request parameters.
+    @param callback The callback.
+ */
+- (void)finalizePasskeyEnrollment:(FIRFinalizePasskeyEnrollmentRequest *)request
+                         callback:(FIRFinalizePasskeyEnrollmentResponseCallback)callback;
 #endif
 
 /** @fn revokeToken:callback:

FirebaseAuth/Sources/Backend/FIRAuthBackend.m

@@ -64,12 +64,16 @@
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyAssertionResponse.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyClientRequest.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyClientResponse.h"
+#import "FirebaseAuth/Sources/Backend/RPC/FIRStartPasskeyEnrollmentRequest.h"
+#import "FirebaseAuth/Sources/Backend/RPC/FIRStartPasskeyEnrollmentResponse.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyCustomTokenRequest.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyCustomTokenResponse.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyPasswordRequest.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyPasswordResponse.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyPhoneNumberRequest.h"
 #import "FirebaseAuth/Sources/Backend/RPC/FIRVerifyPhoneNumberResponse.h"
+#import "FirebaseAuth/Sources/Backend/RPC/FIRFinalizePasskeyEnrollmentRequest.h"
+#import "FirebaseAuth/Sources/Backend/RPC/FIRFinalizePasskeyEnrollmentResponse.h"
 #import "FirebaseAuth/Sources/Utilities/FIRAuthErrorUtils.h"
 #import "FirebaseCore/Extension/FirebaseCoreInternal.h"
 
@@ -680,6 +684,10 @@ + (void)startPasskeyEnrollment:(FIRStartPasskeyEnrollmentRequest *)request
                       callback:(FIRStartPasskeyEnrollmentResponseCallback)callback {
   [[self implementation] startPasskeyEnrollment:request callback:callback];
 }
+
++ (void)finalizePasskeyEnrollment:(FIRFinalizePasskeyEnrollmentRequest *)request callback:(FIRFinalizePasskeyEnrollmentResponseCallback)callback {
+  [[self implementation] finalizePasskeyEnrollment:request callback:callback];
+}
 #endif
 
 + (void)revokeToken:(FIRRevokeTokenRequest *)request
@@ -1122,6 +1130,20 @@ - (void)startPasskeyEnrollment:(FIRStartPasskeyEnrollmentRequest *)request
                  callback(response, nil);
                }];
 }
+
+- (void)finalizePasskeyEnrollment:(FIRFinalizePasskeyEnrollmentRequest *)request callback:(FIRFinalizePasskeyEnrollmentResponseCallback)callback {
+  FIRFinalizePasskeyEnrollmentResponse *response = [[FIRFinalizePasskeyEnrollmentResponse alloc] init];
+  [self callWithRequest:request
+               response:response
+               callback:^(NSError *error) {
+                 if (error) {
+                   callback(nil, error);
+                   return;
+                 }
+                 callback(response, nil);
+               }];
+}
+
 #endif
 
 - (void)revokeToken:(FIRRevokeTokenRequest *)request

FirebaseAuth/Sources/Backend/FIRAuthRPCResponse.h

@@ -23,7 +23,7 @@ NS_ASSUME_NONNULL_BEGIN
  */
 @protocol FIRAuthRPCResponse <NSObject>
 
-/** @fn setFieldsWithDictionary:error:
+/** @fn setWithDictionary:error:
     @brief Sets the response instance from the decoded JSON response.
     @param dictionary The dictionary decoded from HTTP JSON response.
     @param error An out field for an error which occurred constructing the request.

FirebaseAuth/Sources/Backend/RPC/FIRFinalizePasskeyEnrollmentRequest.h

@@ -0,0 +1,68 @@
+/*
+ * Copyright 2023 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+#import "FirebaseAuth/Sources/Backend/FIRAuthRPCRequest.h"
+#import "FirebaseAuth/Sources/Backend/FIRIdentityToolkitRequest.h"
+#import <AuthenticationServices/ASAuthorizationPlatformPublicKeyCredentialRegistration.h>
+
+NS_ASSUME_NONNULL_BEGIN
+
+/** @class FIRFinalizePasskeyEnrollmentRequest
+    @brief Represents the parameters for the finalizePasskeyEnrollment endpoint.
+ */
+@interface FIRFinalizePasskeyEnrollmentRequest : FIRIdentityToolkitRequest <FIRAuthRPCRequest>
+
+/**
+ @property IDToken
+ @brief The raw user access token.
+ */
+@property(nonatomic, copy, readonly) NSString *IDToken;
+
+/**
+ @property name
+ @brief The passkey name.
+ */
+@property(nonatomic, copy, readonly) NSString *name;
+
+/**
+ @property credentialID
+ @brief The credential ID.
+ */
+@property(nonatomic, copy, readonly) NSString *credentialID;
+
+/**
+ @property clientDataJson
+ @brief The CollectedClientData object from the authenticator.
+ */
+@property(nonatomic, copy, readonly) NSString *clientDataJson;
+
+/**
+ 
+ @property attestationObject
+ @brief The attestation object from the authenticator.
+ */
+@property(nonatomic, copy, readonly) NSString *attestationObject;
+
+- (nullable instancetype)initWithIDToken:(NSString *)IDToken
+                                    name:(NSString *)name
+                            credentialID:(NSString *)credentialID
+                          clientDataJson:(NSString *)clientDataJson
+                       attestationObject:(NSString *)attestationObject
+                    requestConfiguration:(FIRAuthRequestConfiguration *)requestConfiguration;
+
+@end
+
+NS_ASSUME_NONNULL_END

FirebaseAuth/Sources/Backend/RPC/FIRFinalizePasskeyEnrollmentRequest.m

@@ -0,0 +1,127 @@
+/*
+ * Copyright 2023 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+#import "FirebaseAuth/Sources/Backend/RPC/FIRFinalizePasskeyEnrollmentRequest.h"
+NS_ASSUME_NONNULL_BEGIN
+
+/**
+ @var kFinalizePasskeyEnrollmentEndPoint
+ @brief GCIP endpoint for finalizePasskeyEnrollment rpc
+ */
+static NSString *const kFinalizePasskeyEnrollmentEndPoint = @"accounts/passkeyEnrollment:finalize";
+
+/**
+ @var kTenantIDKey
+ @brief The key for the tenant id value in the request.
+ */
+static NSString *const kTenantIDKey = @"tenantId";
+
+/**
+ @var kIDTokenKey
+ @brief The key for idToken value in the request.
+ */
+static NSString *const kIDTokenKey = @"idToken";
+
+/**
+ @var kAuthRegistrationRespKey
+ @brief The key for registration object from the authenticator.
+ */
+static NSString *const kAuthRegistrationRespKey = @"authenticatorRegistrationResponse";
+
+/**
+ @var kNameKey
+ @brief The key of passkey name.
+ */
+static NSString *const kNameKey = @"name";
+
+/**
+ @var kCredentialIDKey
+ @brief The key for registered credential identifier.
+ */
+static NSString *const kCredentialIDKey = @"credentialId";
+
+/**
+ @var kAuthAttestationRespKey
+ @brief The key for attestation response from a FIDO authenticator.
+ */
+static NSString *const kAuthAttestationRespKey = @"authenticatorAttestationResponse";
+
+/**
+ @var kClientDataJsonKey
+ @brief The key for CollectedClientData object from the authenticator.
+ */
+static NSString *const kClientDataJsonKey = @"clientDataJson";
+
+/**
+ @var kAttestationObject
+ @brief The key for the attestation object from the authenticator.
+ */
+static NSString *const kAttestationObject = @"attestationObject";
+
+
+@implementation FIRFinalizePasskeyEnrollmentRequest
+
+- (nullable instancetype)initWithIDToken:(NSString *)IDToken
+                                    name:(NSString *)name
+                            credentialID:(NSString *)credentialID
+                          clientDataJson:(NSString *)clientDataJson
+                       attestationObject:(NSString *)attestationObject requestConfiguration:(FIRAuthRequestConfiguration *)requestConfiguration {
+  self = [super initWithEndpoint:kFinalizePasskeyEnrollmentEndPoint
+            requestConfiguration:requestConfiguration];
+  if (self) {
+    self.useIdentityPlatform = YES;
+    _IDToken = IDToken;
+    _name = name;
+    _credentialID = credentialID;
+    _clientDataJson = clientDataJson;
+    _attestationObject = attestationObject;
+  }
+  return self;
+}
+
+- (nullable id)unencodedHTTPRequestBodyWithError:(NSError *__autoreleasing _Nullable *)error {
+  NSMutableDictionary *postBody = [NSMutableDictionary dictionary];
+  NSMutableDictionary *authRegistrationResponse = [NSMutableDictionary dictionary];
+  NSMutableDictionary *authAttestationResponse = [NSMutableDictionary dictionary];
+
+  if (_IDToken) {
+    postBody[kIDTokenKey] = _IDToken;
+  }
+  if (_name) {
+    postBody[kNameKey] = _name;
+  }
+  if (_credentialID) {
+    authRegistrationResponse[kCredentialIDKey] = _credentialID;
+  }
+  if (_clientDataJson) {
+    authAttestationResponse[kClientDataJsonKey] = _clientDataJson;
+  }
+  if (_attestationObject) {
+    authAttestationResponse[kAttestationObject] = _attestationObject;
+  }
+  if (self.tenantID) {
+    postBody[kTenantIDKey] = self.tenantID;
+  }
+
+  authRegistrationResponse[kAuthAttestationRespKey] = authAttestationResponse;
+  postBody[kAuthRegistrationRespKey] = authRegistrationResponse;
+
+  return [postBody copy];
+}
+
+@end
+
+NS_ASSUME_NONNULL_END

FirebaseAuth/Sources/Backend/RPC/FIRFinalizePasskeyEnrollmentResponse.h

@@ -0,0 +1,41 @@
+/*
+ * Copyright 2023 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+#import "FirebaseAuth/Sources/Backend/FIRAuthRPCResponse.h"
+
+NS_ASSUME_NONNULL_BEGIN
+
+/**
+ @class FIRFinalizePasskeyEnrollmentResponse
+ @brief Represents the response from the startPasskeyEnrollment endpoint.
+ */
+@interface FIRFinalizePasskeyEnrollmentResponse : NSObject <FIRAuthRPCResponse>
+
+/**
+ @property idToken
+ @brief The user raw access token.
+ */
+@property(nonatomic, readonly, copy) NSString *idToken;
+
+/**
+ @property refershToken
+ @brief Refresh token for the authenticated user.
+ */
+@property(nonatomic, copy, readonly) NSData *refreshToken;
+
+@end
+
+NS_ASSUME_NONNULL_END