Updated sample app to support auth_time

AkshatG6 · AkshatG6 · commit e911834cc45d · 2025-09-15T08:55:36.000-07:00
diff --git a/Samples/Swift/DaysUntilBirthday/Shared/DaysUntilBirthday.swift b/Samples/Swift/DaysUntilBirthday/Shared/DaysUntilBirthday.swift
@@ -29,6 +29,7 @@ struct DaysUntilBirthday: App {
           GIDSignIn.sharedInstance.restorePreviousSignIn { user, error in
             if let user = user {
               self.authViewModel.state = .signedIn(user)
+              self.authViewModel.authTime = UserDefaults.standard.object(forKey: "authTime") as? Date
             } else if let error = error {
               self.authViewModel.state = .signedOut
               print("There was an error restoring the previous sign-in: \(error)")
diff --git a/Samples/Swift/DaysUntilBirthday/Shared/Services/GoogleSignInAuthenticator.swift b/Samples/Swift/DaysUntilBirthday/Shared/Services/GoogleSignInAuthenticator.swift
@@ -36,12 +36,14 @@ final class GoogleSignInAuthenticator: ObservableObject {
       return
     }
     let manualNonce = UUID().uuidString
+    let tokenClaims: Set<GIDTokenClaim> = Set([GIDTokenClaim.authTime()])
 
     GIDSignIn.sharedInstance.signIn(
       withPresenting: rootViewController,
       hint: nil,
       additionalScopes: nil,
-      nonce: manualNonce
+      nonce: manualNonce,
+      tokenClaims: tokenClaims
     ) { signInResult, error in
       guard let signInResult = signInResult else {
         print("Error! \(String(describing: error))")
@@ -57,6 +59,10 @@ final class GoogleSignInAuthenticator: ObservableObject {
         assertionFailure("ERROR: Returned nonce doesn't match manual nonce!")
         return
       }
+      if let authTimeDate = self.decodeAuthTime(fromJWT: idToken) {
+        self.authViewModel.authTime = authTimeDate
+        UserDefaults.standard.set(authTimeDate, forKey: "authTime")
+      }
       self.authViewModel.state = .signedIn(signInResult.user)
     }
 
@@ -66,11 +72,27 @@ final class GoogleSignInAuthenticator: ObservableObject {
       return
     }
 
-    GIDSignIn.sharedInstance.signIn(withPresenting: presentingWindow) { signInResult, error in
+    let tokenClaims: Set<GIDTokenClaim> = Set([GIDTokenClaim.authTime()])
+
+    GIDSignIn.sharedInstance.signIn(
+      withPresenting: presentingWindow,
+      tokenClaims: tokenClaims
+      ) { signInResult, error in
       guard let signInResult = signInResult else {
         print("Error! \(String(describing: error))")
         return
       }
+
+      // If the idToken is nil, we cannot get the authTime, so we treat this
+      // as a failure for the app's sign-in flow and return.
+      guard let idToken = signInResult.user.idToken?.tokenString else {
+        print("Error: idToken is missing from signInResult.")
+        return
+      }
+      if let authTimeDate = self.decodeAuthTime(fromJWT: idToken) {
+        self.authViewModel.authTime = authTimeDate
+        UserDefaults.standard.set(authTimeDate, forKey: "authTime")
+      }
       self.authViewModel.state = .signedIn(signInResult.user)
     }
 #endif
@@ -154,6 +176,16 @@ private extension GoogleSignInAuthenticator {
     return nonce
   }
 
+  func decodeAuthTime(fromJWT jwt: String) -> Date? {
+    let segments = jwt.components(separatedBy: ".")
+    guard segments.count > 1,
+          let parts = decodeJWTSegment(segments[1]),
+          let authTimeInterval = parts["auth_time"] as? TimeInterval else {
+      return nil
+    }
+    return Date(timeIntervalSince1970: authTimeInterval)
+  }
+
   func decodeJWTSegment(_ segment: String) -> [String: Any]? {
     guard let segmentData = base64UrlDecode(segment),
           let segmentJSON = try? JSONSerialization.jsonObject(with: segmentData, options: []),
diff --git a/Samples/Swift/DaysUntilBirthday/Shared/ViewModels/AuthenticationViewModel.swift b/Samples/Swift/DaysUntilBirthday/Shared/ViewModels/AuthenticationViewModel.swift
@@ -22,6 +22,7 @@ final class AuthenticationViewModel: ObservableObject {
   /// The user's log in status.
   /// - note: This will publish updates when its value changes.
   @Published var state: State
+  @Published var authTime: Date?
   private var authenticator: GoogleSignInAuthenticator {
     return GoogleSignInAuthenticator(authViewModel: self)
   }
@@ -69,7 +70,13 @@ final class AuthenticationViewModel: ObservableObject {
   @MainActor func addBirthdayReadScope(completion: @escaping () -> Void) {
       authenticator.addBirthdayReadScope(completion: completion)
   }
-
+  
+  var formattedAuthTimeString: String? {
+          guard let date = authTime else { return nil }
+          let formatter = DateFormatter()
+          formatter.dateFormat = "dd/MM/yyyy"
+          return formatter.string(from: date)
+  }
 }
 
 extension AuthenticationViewModel {
diff --git a/Samples/Swift/DaysUntilBirthday/iOS/UserProfileView.swift b/Samples/Swift/DaysUntilBirthday/iOS/UserProfileView.swift
@@ -35,6 +35,9 @@ struct UserProfileView: View {
               Text(userProfile.name)
                 .font(.headline)
               Text(userProfile.email)
+              if let authTimeString = authViewModel.formattedAuthTimeString {
+                  Text("Last sign-in date: \(authTimeString)")
+              }
             }
           }
           NavigationLink(NSLocalizedString("View Days Until Birthday", comment: "View birthday days"),
diff --git a/Samples/Swift/DaysUntilBirthday/macOS/UserProfileView.swift b/Samples/Swift/DaysUntilBirthday/macOS/UserProfileView.swift
@@ -19,6 +19,9 @@ struct UserProfileView: View {
               Text(userProfile.name)
                 .font(.headline)
               Text(userProfile.email)
+              if let authTimeString = authViewModel.formattedAuthTimeString {
+                  Text("Last sign-in date: \(authTimeString)")
+              }
             }
           }
           Button(NSLocalizedString("Sign Out", comment: "Sign out button"), action: signOut)

Original file line number	Diff line number	Diff line change
`@@ -35,6 +35,9 @@ struct UserProfileView: View {`
`35`	`35`	`Text(userProfile.name)`
`36`	`36`	`.font(.headline)`
`37`	`37`	`Text(userProfile.email)`
	`38`	`+ if let authTimeString = authViewModel.formattedAuthTimeString {`
	`39`	`+ Text("Last sign-in date: \(authTimeString)")`
	`40`	`+ }`
`38`	`41`	`}`
`39`	`42`	`}`
`40`	`43`	`NavigationLink(NSLocalizedString("View Days Until Birthday", comment: "View birthday days"),`
Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,9 @@ struct UserProfileView: View {`
`19`	`19`	`Text(userProfile.name)`
`20`	`20`	`.font(.headline)`
`21`	`21`	`Text(userProfile.email)`
	`22`	`+ if let authTimeString = authViewModel.formattedAuthTimeString {`
	`23`	`+ Text("Last sign-in date: \(authTimeString)")`
	`24`	`+ }`
`22`	`25`	`}`
`23`	`26`	`}`
`24`	`27`	`Button(NSLocalizedString("Sign Out", comment: "Sign out button"), action: signOut)`