* Added a new otpExpirationDuration flag, as autoRetrievalTimeOutDuration is a completely different parameter.

Author: rithik-dev

CHANGELOG.md

@@ -1,7 +1,9 @@
 ## [1.0.5] - 10/07/2022
 
 * BREAKING: Renamed flag timeOutDuration to autoRetrievalTimeOutDuration
-* BREAKING: Updated verifyOTP function signature to not take a named argument
+* BREAKING: Renamed verifyOTP to verifyOtp
+* BREAKING: Updated verifyOtp function signature to not take a named argument, and accept otp as a positional argument
+* Added a new otpExpirationDuration flag, as autoRetrievalTimeOutDuration is a completely different parameter.
 * Added callback onCodeSent and flag signOutOnSuccessfulVerification
 * Added isSendingCode flag to controller
 * Optimized code to reduce number of rebuilds

README.md

@@ -290,7 +290,8 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
       child: FirebasePhoneAuthHandler(
         phoneNumber: widget.phoneNumber,
         signOutOnSuccessfulVerification: false,
-        autoRetrievalTimeOutDuration: const Duration(seconds: 60),
+        autoRetrievalTimeOutDuration: const Duration(seconds: 30),
+        otpExpirationDuration: const Duration(seconds: 60),
         onCodeSent: () {
           log(VerifyPhoneNumberScreen.id, msg: 'OTP sent!');
         },
@@ -329,16 +330,16 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
               actions: [
                 if (controller.codeSent)
                   TextButton(
-                    onPressed: controller.timerIsActive
-                        ? null
-                        : () async {
+                    onPressed: controller.isOtpExpired
+                        ? () async {
                             log(VerifyPhoneNumberScreen.id, msg: 'Resend OTP');
                             await controller.sendOTP();
-                          },
+                          }
+                        : null,
                     child: Text(
-                      controller.timerIsActive
-                          ? '${controller.timerCount.inSeconds}s'
-                          : 'Resend',
+                      controller.isOtpExpired
+                          ? 'Resend'
+                          : '${controller.otpExpirationTimeLeft.inSeconds}s',
                       style: const TextStyle(color: Colors.blue, fontSize: 18),
                     ),
                   ),
@@ -370,7 +371,7 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
                       ),
                       const SizedBox(height: 10),
                       const Divider(),
-                      if (controller.timerIsActive)
+                      if (controller.isListeningForOtpAutoRetrieve)
                         Column(
                           children: const [
                             CustomLoader(),
@@ -403,11 +404,11 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
                         onFocusChange: (hasFocus) async {
                           if (hasFocus) await _scrollToBottomOnKeyboardOpen();
                         },
-                        onSubmit: (enteredOTP) async {
-                          final isValidOTP =
-                              await controller.verifyOTP(enteredOTP);
+                        onSubmit: (enteredOtp) async {
+                          final isValidOtp =
+                              await controller.verifyOtp(enteredOtp);
                           // Incorrect OTP
-                          if (!isValidOTP) {
+                          if (!isValidOtp) {
                             showSnackBar('The entered OTP is invalid!');
                           }
                         },

example/lib/screens/verify_phone_number_screen.dart

@@ -67,7 +67,8 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
       child: FirebasePhoneAuthHandler(
         phoneNumber: widget.phoneNumber,
         signOutOnSuccessfulVerification: false,
-        autoRetrievalTimeOutDuration: const Duration(seconds: 60),
+        autoRetrievalTimeOutDuration: const Duration(seconds: 30),
+        otpExpirationDuration: const Duration(seconds: 60),
         onCodeSent: () {
           log(VerifyPhoneNumberScreen.id, msg: 'OTP sent!');
         },
@@ -106,16 +107,16 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
               actions: [
                 if (controller.codeSent)
                   TextButton(
-                    onPressed: controller.timerIsActive
-                        ? null
-                        : () async {
+                    onPressed: controller.isOtpExpired
+                        ? () async {
                             log(VerifyPhoneNumberScreen.id, msg: 'Resend OTP');
                             await controller.sendOTP();
-                          },
+                          }
+                        : null,
                     child: Text(
-                      controller.timerIsActive
-                          ? '${controller.timerCount.inSeconds}s'
-                          : 'Resend',
+                      controller.isOtpExpired
+                          ? 'Resend'
+                          : '${controller.otpExpirationTimeLeft.inSeconds}s',
                       style: const TextStyle(color: Colors.blue, fontSize: 18),
                     ),
                   ),
@@ -147,7 +148,7 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
                       ),
                       const SizedBox(height: 10),
                       const Divider(),
-                      if (controller.timerIsActive)
+                      if (controller.isListeningForOtpAutoRetrieve)
                         Column(
                           children: const [
                             CustomLoader(),
@@ -180,11 +181,11 @@ class _VerifyPhoneNumberScreenState extends State<VerifyPhoneNumberScreen>
                         onFocusChange: (hasFocus) async {
                           if (hasFocus) await _scrollToBottomOnKeyboardOpen();
                         },
-                        onSubmit: (enteredOTP) async {
-                          final isValidOTP =
-                              await controller.verifyOTP(enteredOTP);
+                        onSubmit: (enteredOtp) async {
+                          final isValidOtp =
+                              await controller.verifyOtp(enteredOtp);
                           // Incorrect OTP
-                          if (!isValidOTP) {
+                          if (!isValidOtp) {
                             showSnackBar('The entered OTP is invalid!');
                           }
                         },

lib/src/auth_controller.dart

@@ -8,7 +8,7 @@ class FirebasePhoneAuthController extends ChangeNotifier {
       Provider.of<FirebasePhoneAuthController>(context, listen: listen);
 
   /// {@macro autoRetrievalTimeOutDuration}
-  static const kAutoRetrievalTimeOutDuration = Duration(seconds: 60);
+  static const kAutoRetrievalTimeOutDuration = Duration(minutes: 1);
 
   /// Firebase auth instance using the default [FirebaseApp].
   static final FirebaseAuth _auth = FirebaseAuth.instance;
@@ -31,7 +31,10 @@ class FirebasePhoneAuthController extends ChangeNotifier {
   String? _verificationId;
 
   /// Timer object for SMS auto-retrieval.
-  Timer? _timer;
+  Timer? _otpAutoRetrievalTimer;
+
+  /// Timer object for OTP expiration.
+  Timer? _otpExpirationTimer;
 
   /// Whether OTP to the given phoneNumber is sent or not.
   bool codeSent = false;
@@ -63,26 +66,54 @@ class FirebasePhoneAuthController extends ChangeNotifier {
     required bool signOutOnSuccessfulVerification,
     RecaptchaVerifier? recaptchaVerifierForWeb,
     Duration autoRetrievalTimeOutDuration = kAutoRetrievalTimeOutDuration,
+    Duration otpExpirationDuration = kAutoRetrievalTimeOutDuration,
   }) {
     _phoneNumber = phoneNumber;
     _signOutOnSuccessfulVerification = signOutOnSuccessfulVerification;
     _onLoginSuccess = onLoginSuccess;
     _onCodeSent = onCodeSent;
     _onLoginFailed = onLoginFailed;
     _autoRetrievalTimeOutDuration = autoRetrievalTimeOutDuration;
+    _otpExpirationDuration = otpExpirationDuration;
     if (kIsWeb) _recaptchaVerifierForWeb = recaptchaVerifierForWeb;
   }
 
-  /// After a [Duration] of [timerCount], the library no more waits for SMS auto-retrieval.
-  Duration get timerCount =>
-      Duration(seconds: _autoRetrievalTimeOutDuration.inSeconds - (_timer?.tick ?? 0));
+  /// [otpExpirationTimeLeft] can be used to display a reverse countdown, starting from
+  /// [_otpExpirationDuration.inSeconds]s till 0, and can show the resend
+  /// button, to let user request a new OTP.
+  Duration get otpExpirationTimeLeft {
+    final otpTickDuration = Duration(
+      seconds: (_otpExpirationTimer?.tick ?? 0),
+    );
+    return _otpExpirationDuration - otpTickDuration;
+  }
+
+  /// [autoRetrievalTimeLeft] can be used to display a reverse countdown, starting from
+  /// [_autoRetrievalTimeOutDuration.inSeconds]s till 0, and can show the
+  /// the listening for OTP view, and also the time left.
+  ///
+  /// After this timer is exhausted, the device no longer tries to auto-fetch
+  /// the OTP, and requires user to manually enter it.
+  Duration get autoRetrievalTimeLeft {
+    final otpTickDuration = Duration(
+      seconds: (_otpAutoRetrievalTimer?.tick ?? 0),
+    );
+    return _autoRetrievalTimeOutDuration - otpTickDuration;
+  }
+
+  /// Whether the otp has expired or not.
+  bool get isOtpExpired => !(_otpExpirationTimer?.isActive ?? false);
 
-  /// Whether the timer is active or not.
-  bool get timerIsActive => _timer?.isActive ?? false;
+  /// Whether the otp retrieval timer is active or not.
+  bool get isListeningForOtpAutoRetrieve =>
+      _otpAutoRetrievalTimer?.isActive ?? false;
 
   /// {@macro autoRetrievalTimeOutDuration}
   static Duration _autoRetrievalTimeOutDuration = kAutoRetrievalTimeOutDuration;
 
+  /// {@macro otpExpirationDuration}
+  static Duration _otpExpirationDuration = kAutoRetrievalTimeOutDuration;
+
   /// Verify the OTP sent to [_phoneNumber] and login user is OTP was correct.
   ///
   /// Returns true if the [otp] passed was correct and the user was logged in successfully.
@@ -93,9 +124,10 @@ class FirebasePhoneAuthController extends ChangeNotifier {
   ///
   /// Also, [_onLoginFailed] is called with [FirebaseAuthException]
   /// object to handle the error.
-  Future<bool> verifyOTP(String otp) async {
+  Future<bool> verifyOtp(String otp) async {
     if ((!kIsWeb && _verificationId == null) ||
         (kIsWeb && _webConfirmationResult == null)) return false;
+
     try {
       if (kIsWeb) {
         final userCredential = await _webConfirmationResult!.confirm(otp);
@@ -148,7 +180,6 @@ class FirebasePhoneAuthController extends ChangeNotifier {
       _forceResendingToken = forceResendingToken;
       codeSent = true;
       _onCodeSent?.call();
-      notifyListeners();
       _setTimer();
     }
 
@@ -187,7 +218,7 @@ class FirebasePhoneAuthController extends ChangeNotifier {
   }
 
   /// Called when the otp is verified either automatically (OTP auto fetched)
-  /// or [verifyOTP] was called with the correct OTP.
+  /// or [verifyOtp] was called with the correct OTP.
   ///
   /// If true is returned that means the user was logged in successfully.
   ///
@@ -225,12 +256,28 @@ class FirebasePhoneAuthController extends ChangeNotifier {
 
   /// Set timer after code sent.
   void _setTimer() {
-    _timer = Timer.periodic(const Duration(seconds: 1), (timer) {
-      if (timer.tick == _autoRetrievalTimeOutDuration.inSeconds) _timer?.cancel();
-      try {
-        notifyListeners();
-      } catch (_) {}
-    });
+    _otpExpirationTimer = Timer.periodic(
+      const Duration(seconds: 1),
+      (timer) {
+        if (timer.tick == _otpExpirationDuration.inSeconds) {
+          _otpExpirationTimer?.cancel();
+        }
+        try {
+          notifyListeners();
+        } catch (_) {}
+      },
+    );
+    _otpAutoRetrievalTimer = Timer.periodic(
+      const Duration(seconds: 1),
+      (timer) {
+        if (timer.tick == _autoRetrievalTimeOutDuration.inSeconds) {
+          _otpAutoRetrievalTimer?.cancel();
+        }
+        try {
+          notifyListeners();
+        } catch (_) {}
+      },
+    );
     notifyListeners();
   }
 
@@ -253,10 +300,11 @@ class FirebasePhoneAuthController extends ChangeNotifier {
     _onCodeSent = null;
     _signOutOnSuccessfulVerification = false;
     _forceResendingToken = null;
-    _timer?.cancel();
-    _timer = null;
+    _otpExpirationTimer?.cancel();
+    _otpExpirationTimer = null;
     _phoneNumber = null;
     _autoRetrievalTimeOutDuration = kAutoRetrievalTimeOutDuration;
+    _otpExpirationDuration = kAutoRetrievalTimeOutDuration;
     _verificationId = null;
   }
 }

lib/src/auth_handler.dart

@@ -19,6 +19,7 @@ class FirebasePhoneAuthHandler extends StatefulWidget {
     this.onCodeSent,
     this.signOutOnSuccessfulVerification = false,
     this.autoRetrievalTimeOutDuration = FirebasePhoneAuthController.kAutoRetrievalTimeOutDuration,
+    this.otpExpirationDuration = FirebasePhoneAuthController.kAutoRetrievalTimeOutDuration,
     this.recaptchaVerifierForWebProvider,
   }) : super(key: key);
 
@@ -60,7 +61,7 @@ class FirebasePhoneAuthHandler extends StatefulWidget {
   /// essential user information.
   ///
   /// The boolean provided is whether the OTP was auto verified or
-  /// verified manually by calling [verifyOTP].
+  /// verified manually by calling [verifyOtp].
   ///
   /// True if auto verified and false is verified manually.
   ///
@@ -82,11 +83,29 @@ class FirebasePhoneAuthHandler extends StatefulWidget {
   ///
   /// Maximum allowed value is 2 minutes.
   ///
+  /// NOTE: The user can still use the OTP to sign in after
+  /// [autoRetrievalTimeOutDuration] duration, but the device
+  /// will not try to auto-fetch the OTP after this set duration.
+  ///
   /// Defaults to [FirebasePhoneAuthController.kAutoRetrievalTimeOutDuration].
   ///
   /// {@endtemplate}
   final Duration autoRetrievalTimeOutDuration;
 
+  /// {@template otpExpirationDuration}
+  ///
+  /// The OTP expiration duration, can be used to display a timer, and show
+  /// a resend button, to resend the OTP.
+  ///
+  /// Firebase does not document if the OTP ever expires, or anything
+  /// about it's validity. Hence, this can be used to show a timer, or force
+  /// user to request a new otp after a set duration.
+  ///
+  /// Defaults to [FirebasePhoneAuthController.kAutoRetrievalTimeOutDuration].
+  ///
+  /// {@endtemplate}
+  final Duration otpExpirationDuration;
+
   /// {@template recaptchaVerifierForWeb}
   ///
   /// Custom reCAPTCHA for web-based authentication.
@@ -141,6 +160,7 @@ class _FirebasePhoneAuthHandlerState extends State<FirebasePhoneAuthHandler> {
         onLoginSuccess: widget.onLoginSuccess,
         onLoginFailed: widget.onLoginFailed,
         autoRetrievalTimeOutDuration: widget.autoRetrievalTimeOutDuration,
+        otpExpirationDuration: widget.otpExpirationDuration,
         onCodeSent: widget.onCodeSent,
         signOutOnSuccessfulVerification: widget.signOutOnSuccessfulVerification,
         recaptchaVerifierForWeb: captcha,