Android Components > Service > Firefox Accounts (FxA)
A library for integrating with Firefox Accounts.
The Firefox Accounts Android Component provides a way for Android applications to do the following:
- Obtain OAuth tokens that can be used to access the user's data in Mozilla-hosted services like Firefox Sync
- Fetch client-side scoped keys needed for end-to-end encryption of that data
- Fetch a user's profile to personalize the application
See also the sample app for help with integrating this component into your application.
Use gradle to download the library from JCenter:
implementation "org.mozilla.components:fxa:{latest-version}This tutorial is for version 0.15 of the FxA client.
First you need some OAuth information. Generate a client_id, redirectUrl and find out the scopes for your application.
See Firefox Account documentation for that.
Once you have the OAuth info, you can start adding FxAClient to your Android project.
As part of the OAuth flow your application will be opening up a WebView or a Custom Tab.
Currently the SDK does not provide the WebView, you have to write it yourself.
Create a global account object:
var account: FirefoxAccount? = nullYou will need to save state for FxA in your app, this example just uses SharedPreferences. We suggest using the Android Keystore for this data.
Define variables to help save state for FxA:
val STATE_PREFS_KEY = "fxaAppState"
val STATE_KEY = "fxaState"Then you can write the following:
getSharedPreferences(FXA_STATE_PREFS_KEY, Context.MODE_PRIVATE).getString(FXA_STATE_KEY, "").let {
FirefoxAccount.fromJSONString(it).then({
account = it
FxaResult<Void>()
}, {
Config.custom(CONFIG_URL).whenComplete { value: Config ->
account = FirefoxAccount(value, CLIENT_ID, REDIRECT_URL)
}
FxaResult<Void>()
})
}For more info on the chainable Promise-like type
FxaResult, check out the source code here
The code above checks if you have some existing state for FxA, otherwise it configures it.
You can now attempt to fetch the FxA profile. The first time the application starts it won't have any state, so
account.getProfile() will fail and proceed to the account.beginOAuthFlow branch and it will open the FxA OAuth login
in the web view.
account.getProfile().then({ profile: Profile ->
// Render the profile
val txtView: TextView = findViewById(R.id.txtView)
runOnUiThread {
txtView.text = profile.displayName
}
FxaResult<Void>()
}, { exception: Exception ->
account?.beginOAuthFlow(scopes, wantsKeys)?.whenComplete { openWebView(it) }
FxaResult<Void>()
})When spawning the WebView, be sure to override the OnPageStarted function to intercept the redirect url and fetch the code + state parameters:
override fun onPageStarted(view: WebView?, url: String?, favicon: Bitmap?) {
if (url != null && url.startsWith(redirectUrl)) {
val uri = Uri.parse(url)
val mCode = uri.getQueryParameter("code")
val mState = uri.getQueryParameter("state")
if (mCode != null && mState != null) {
// Pass the code and state parameters back to your main activity
listener?.onLoginComplete(mCode, mState, this@LoginFragment)
}
}
super.onPageStarted(view, url, favicon)
}Finally, complete the OAuth flow, try to retrieve the profile information, then save your login state once you've gotten valid profile information:
account?.completeOAuthFlow(code, state)?.then {
account?.getProfile()
}.whenComplete { profile: Profile ->
runOnUiThread {
txtView.text = profile.displayName
}
account?.toJSONString().let {
getSharedPreferences(FXA_STATE_PREFS_KEY, Context.MODE_PRIVATE).edit()
.putString(FXA_STATE_KEY, it).apply()
}
}This Source Code Form is subject to the terms of the Mozilla Public
License, v. 2.0. If a copy of the MPL was not distributed with this
file, You can obtain one at http://mozilla.org/MPL/2.0/