Skip to content

[#574] Return errors from AppAuth:ResumeExternalUserAgentFlowWithURL#955

Open
w-goog wants to merge 35 commits into
masterfrom
feature/add-resume-external-flow-errors
Open

[#574] Return errors from AppAuth:ResumeExternalUserAgentFlowWithURL#955
w-goog wants to merge 35 commits into
masterfrom
feature/add-resume-external-flow-errors

Conversation

@w-goog
Copy link
Copy Markdown
Collaborator

@w-goog w-goog commented Apr 28, 2026

Asserts are Bad Bad Not Good(TM). This PR deprecates the extant method and points developers to a new edition which returns errors rather than crashing with asserts.

Two cases are handled:

  1. When shouldHandleURL is false, the function returns NO and sets an error.
  2. When _pendingEndSessionCallback is nil, the function now returns an error.

w-goog added 30 commits April 28, 2026 13:34
@w-goog
g-orchestrated: add OIDErrorCodeURLMismatch and OIDErrorCodeInvalidAu…
681d01c 
…thorizationFlow error codes
@w-goog
g-orchestrated: add resumeExternalUserAgentFlowWithURL:error: to prot…
81f0272 
…ocol, deprecate old method
@w-goog
g-orchestrated: implement resumeExternalUserAgentFlowWithURL:error: i…
d66de1f 
…n OIDAuthorizationSession
@w-goog
g-orchestrated: implement resumeExternalUserAgentFlowWithURL:error: i…
b86c33e 
…n OIDEndSessionImplementation
@w-goog
g-orchestrated: update resumeExternalUserAgentFlowWithURL call site i…
4437b2d 
…n iOS agent
@w-goog
g-orchestrated: update resumeExternalUserAgentFlowWithURL call site i…
125ea26 
…n Catalyst agent
@w-goog
g-orchestrated: update resumeExternalUserAgentFlowWithURL call site i…
667c141 
…n macOS agent
@w-goog
g-orchestrated: update resumeExternalUserAgentFlowWithURL call site i…
a1a0228 
…n redirect handler
@w-goog
g-orchestrated: add notes about preferred error-returning API in READ…
54f70a3 
…ME snippets
@w-goog
g-orchestrated: add CHANGELOG entry for error-returning API
19d20e4
@w-goog
g-orchestrated: update ObjC example to use error-returning API
4bd3e88
@w-goog
g-orchestrated: update ObjC-Carthage example to use error-returning API
710eec3
@w-goog
g-orchestrated: update macOS example to use error-returning API
56ef29b
@w-goog
g-orchestrated: add deprecation note to Swift example
2220eef
@w-goog
Merge codegen/error-returns-api
dce930c
@w-goog
Merge codegen/error-returns-impl
6c3de6a
@w-goog
Merge codegen/error-returns-callsites
06018a2
@w-goog
Merge codegen/error-returns-docs
bd0e75d
@w-goog
Demonstrate error handling in README ObjC snippet
62232e3
@w-goog
Demonstrate error handling in README Swift snippet
082c032
@w-goog
Demonstrate error handling in Swift-Carthage example
f378d1d
@w-goog
Suppress -Wdeprecated-implementations on resumeExternalUserAgentFlowW…
3ff64a6 
…ithURL: shims

The shims forward to the new error-returning variant for backward compatibility; their callers see the deprecation, but the shim itself must compile cleanly under -Werror.
@w-goog
Fix an additional instance of the deprecated API
b3ef79c
@w-goog
Merge branch 'master' into feature/add-resume-external-flow-errors
dad8f4b
@w-goog
g-orchestrated: clarify CHANGELOG note for deprecated API behavior ch…
d69f9ab 
…ange

The deprecated resumeExternalUserAgentFlowWithURL: now silently returns NO
on invalid state instead of raising NSException. Spell that out so callers
relying on @try/@catch around the old API aren't surprised.
@w-goog
g-orchestrated: migrate Example-iOS_Swift-SPM AppDelegate to throwing…
aaaf256 
… API

The new SwiftUI/SPM sample (added in #952) was using the deprecated
resumeExternalUserAgentFlow(with:); update it to use the throwing variant,
mirroring the Carthage Swift sample.
@w-goog
g-orchestrated: tighten OIDExternalUserAgentSession.h @return doc
e5f45f4 
Spell out both NO cases (URLMismatch + InvalidAuthorizationFlow) on the new
:error: method so callers know what NO can mean.
@w-goog
g-orchestrated: replace exception-prose error description with user-f…
78c51d8 
…acing string

OIDOAuthExceptionInvalidAuthorizationFlow is exception-prose, not error prose.
Use a clean inline localizedDescription at both call sites instead. The
constant remains in OIDError.{h,m} for backward compatibility.
@w-goog
g-orchestrated: tighten OIDError.h doc for OIDErrorCodeInvalidAuthori…
ea5fa5e 
…zationFlow

The previous wording ("may have already completed or was not started") was
speculative. Describe the actual trigger: the redirect URL was received but
no pending callback exists.
@w-goog
g-orchestrated: filter benign URLMismatch errors from README log exam…
4dbc8da 
…ples

The previous snippets logged every error from resumeExternalUserAgentFlowWithURL:error:,
which is noisy because OIDErrorCodeURLMismatch fires on every unrelated deeplink.
Only log on OIDErrorCodeInvalidAuthorizationFlow.
@w-goog w-goog requested review from camden-king and mingyokim and removed request for camden-king May 4, 2026 21:34
@brnnmrls brnnmrls self-requested a review May 12, 2026 17:37
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread CHANGELOG.md Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuthCore/OIDError.h Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuthCore/OIDAuthorizationService.m
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuthCore/OIDAuthorizationService.m Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuthCore/OIDAuthorizationService.m Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuthCore/OIDAuthorizationService.m Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuthCore/OIDAuthorizationService.m Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Comment thread Sources/AppAuth/macOS/OIDRedirectHTTPHandler.m Outdated
brnnmrls
brnnmrls reviewed May 13, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@brnnmrls brnnmrls left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Logic looks pretty good to me. Left nits in this review. Will give this one more pass once comments are resolved!

w-goog added 4 commits May 13, 2026 14:23
@w-goog
g-orchestrated: address PR #955 review nits (rename, colon alignment,…
0abe868 
… formatting)
@w-goog
g-orchestrated: fix 'isenabled' typo in CHANGELOG
ea165f1
@w-goog
g-orchestrated: align colons in OIDRedirectHTTPHandler.m wrap
abdca70
@w-goog
g-orchestrated: mark resumeExternalUserAgentFlowWithURL:error: as @op…
c27ebb3 
…tional

Adding the new error-returning method as a required member of the
OIDExternalUserAgentSession protocol would break source compatibility
for any external conformer. Marking it @optional keeps the addition
backwards compatible so this change can ship as a minor version bump
rather than a major one. The companion @required directive preserves
the required status of failExternalUserAgentFlowWithError:.
@w-goog w-goog requested a review from brnnmrls May 13, 2026 23:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@brnnmrls brnnmrls brnnmrls approved these changes

@mingyokim mingyokim Awaiting requested review from mingyokim

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@w-goog @brnnmrls