116 results found
-
Support for "Facebook Login for Business"
For normal apps, one can add the "product" Facebook Login.
For apps that are categorized as "business", Facebook has this preferred auth mechanism called Facebook Login for Business (ref: https://developers.facebook.com/docs/development/create-an-app/other-app-types#step-3--select-an-app-type)
However, the latter has more requirements than the former and doesn't seem wo work in Firebase Auth
Users have to create a Login Configuration (which gives you a configuration id)
When using the SDK, pass the configuration id:
Documentation says:
When invoking the login dialog and setting the redirect URL, include your configuration ID as an optional parameter (although scope can still be included, we recommend that you do…2 votes -
2 votes
-
Make it Gemini know how to really fix this...
I been trying day and night to use this service with firebase studio and Gemini and all of its versions, clearly does not know how to fix this, at this point it says that my API is a placeholder.
this is one of the things that is stopping me to help society :( haha
2 votes -
Allow setting Refresh Token experation
Allow setting the experation time for refresh tokens. This is important in environments where security is paramount and would allow for user session to automatically expire after a given amount of time.
Currently this can be done with some work via the admin API, but seems to make much more sense as a setting, in line with other idPs such as Cognito1 and Auth02
2 votes -
Add more auth built-in auth methods
The way that Firebase helps developers quickly setup OAuth providers is amazing, but it would be really helpful if there were more providers to choose from. I'm sure you could do it if you set things up yourself, but making it easier to use services like LinkedIn would be really helpful.
2 votes -
The errors thrown for a wrong password and an account that does not exist should be different
This is a problem I have encountered while using Firebase with Swift. I want to be able to prompt the user to sign up if they do not have an account. However, the error returned from Auth.auth().signIn(withEmail, password) is the same if the user enters the wrong password or an email the doesn't exist. If the errors were different I would be able to show the sign up prompt only if that specific error is thrown.
2 votes -
Share phone number with project if Firebase knows that number via another project
Would be a HUGE cost saver given the increased pricing of SMS multi factor authentication.
If Firebase knows the phone number / email via another project, offer the app user to share their phone number with this app and skip costly SMS verification.
2 votes -
Enable auth by email only for allowed domains
Application that is intended only for students of one university and I want to restrict creating of new accounts only to students of the specific university. There is a workaround of setting rules for data access in database, but I want to disallow other people to create a new account. Cleaner solution.
2 votes -
Security key/WebAuthn 2FA
Currently, we only have the option to use TOTP 2fa or SMS. Security keys are quickly gaining popularity, as it is a more secure option. Please add this.
2 votes -
Add support to programmatically configure social providers for tenants
Add the ability to configure social authentication methods like Google, Facebook, etc. like how OIDC and SAML can be done.
Also, the ability to use the parent configuration for Google Authentication so it is just an enable like in the Web Console UI. This reduces the overhead code that we need to provide if all we are doing is splitting into different tenants for management reasons.
2 votes -
[Email Verification] Need to have a param to set expiration time
As of now, there is no way we can set a custom expiration time for the Email Signin with link authentication. Our use case is that we generate this link through admin sdk and then mail the users (as an invite).
Hence, it becomes really important for us to have a custom expiration time.
2 votes -
Need a .net MAUI support on Apple sign-in for authentication
Need a .net MAUI support on Apple sign-in for authentication
2 votes -
azure
For Firebase / Flutter administrators who would like to use Entra AD (Azure AD) for Flutter Android,iOS and Web apps, the administrative setup and documentation should be easy to follow. The administrative process should be consistent with the Google authentication scenario.
2 votes -
Does Native Support for Authentication for EHR Providers like Epic and Cerner
Authentication is a difficult part of getting healthcare apps out there, and rightfully so, patient data security is hugely important. If Firebase offered this natively, not only would development be faster, but fewer mistakes/vulnerabilities would be present in healthcare apps that integrate with EHR.
2 votes -
2 votes
-
Authentication feature in Android Wear / WearOS application
The ability to handle autentication and registration feature in android wear / wearos applications, using FirebaseUI or the official firebase auth library in gradle.
Ideally, the same features promoted to android apps but in the wearable world, taking in account the considerations related to battery, performance and data fetching and processing applied to wearables.
2 votes -
Authentication feature in Android Wear / WearOS application
The ability to handle autentication and registration feature in android wear / wearos applications, using FirebaseUI or the official firebase auth library in gradle.
Ideally, the same features promoted to android apps but in the wearable world, taking in account the considerations related to battery, performance and data fetching and processing applied to wearables.
2 votes -
Whitelisted email address for testing with passwordless email link
It would be great to have a whitelisted email address to use for testing, like we have for SMS authentication, to avoid this message:
"[firebase_auth/too-many-requests] We have blocked all requests from this device due to unusual activity. Try again later."2 votes -
Security vulnerability on using SHA-1 weak hash algorithm
Firebase using SHA-1 weak hash algorithm. This is being raised as Security vulnerability. Recommended to upgrade the hash algorithm.
2 votes -
Firebase Auth Expose Email Verification Status and Attempts
Firebase Auth Expose Email Verification Status and Attempts
We have a user that is having problems verifying. However there is no logging or debugging for this feature on firebase.
- Add an interface under auth to see which users have requested verification
- Add information about if the email was recieved, spammed, blocked, expired
- Visually show which accounts are not validated, pending validation, and validated.
- Be able to reset validation, or manually validate
1 vote
- Don't see your idea?