General: Hot (1221 ideas) – Have an idea? Share it!

I suggest you ...

Enter your idea

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

signInWithCustomToken using Python

Hello,
is it possible to use signInWithCustomToken to authenticate in Python and retrieve documents from a collection?
Does it work in Python only with cred = credentials.Certificate('serviceAccountKey.json')?

Thanks

1 vote

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Firestore · Edit… · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Support for WebAssembly in Cloud Functions

Many languages requested in other posts—Swift, Rust, Kotlin, etc.—can be implemented all at once by adding WebAssembly (WASM) and WebAssembly System Interface (WASI) to the list of Cloud Functions’s supported runtimes (and—importantly—supplying high-quality documentation).

5 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Cloud Functions for Firebase · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
MFA option to "remember device"

User shouldn't have to enter MFA every time logging in on same device. There should be a boolean option remember device for some period of time (somewhere between 2 weeks and forever)

5 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Trusted headers for client IP address via Firebase Hosting

Context: from a backend running on Cloud Run/Cloud Functions, how to determine client IP address, when you need to TRUST it for IP-address based access restrictions.

You can normally find the real client IP as the first entry in the X-Forwarded-For header, but you cannot trust it.

If you are using Cloud Run (or Cloud Functions gen 2), then as far as I can tell the Cloud Run orchestrator always sits as a proxy in front of your container. This means you can trust the last entry in X-Forwarded-For as this is the client IP seen by Cloud Run itself. The last address is the only address you can trust. Any preceeding addresses in the list could have been provided/spoofed by the requester themselves or any untrusted proxy along the way.

If you are proxying the the Cloud Run container (or Cloud Function) behind Firebase hosting, then the last address in the list is the Fastly CDN proxy, not the original client address. You might be tempted to use the second-to-last address (or the Fastly-Client-IP header), but you cannot trust this.

If the requester learns the direct address of your Cloud Run container (e.g. <your-service>.a.run.app) then they can make the request directly, and spoof either of those headers, telling you whatever address they want to.

In short, there needs to be some coordination between Cloud Run and Firebase Hosting for Cloud Run to provide some "trusted header". When a request reaches Cloud Run via Firebase Hosting the two need to authenticate themselves so that Cloud Run can provide the real client IP as seen by Firebase Hosting, only if the request actually came from legitimate Firebase Hosting.

Without this, Firebase Hosting cannot be used as a proxy when IP-address based authentication is required.

Context: from a backend running on Cloud Run/Cloud Functions, how to determine client IP address, when you need to TRUST it for IP-address based access restrictions.

You can normally find the real client IP as the first entry in the X-Forwarded-For header, but you cannot trust it.

If you are using Cloud Run (or Cloud Functions gen 2), then as far as I can tell the Cloud Run orchestrator always sits as a proxy in front of your container. This means you can trust the last entry in X-Forwarded-For as this is the client IP seen by Cloud Run itself.…

5 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Hosting · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Authentication feature in Android Wear / WearOS application

The ability to handle autentication and registration feature in android wear / wearos applications, using FirebaseUI or the official firebase auth library in gradle.

Ideally, the same features promoted to android apps but in the wearable world, taking in account the considerations related to battery, performance and data fetching and processing applied to wearables.

2 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Authentication feature in Android Wear / WearOS application

The ability to handle autentication and registration feature in android wear / wearos applications, using FirebaseUI or the official firebase auth library in gradle.

Ideally, the same features promoted to android apps but in the wearable world, taking in account the considerations related to battery, performance and data fetching and processing applied to wearables.

2 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
App Check for Java Admin SDK

Verifying requests with Java Admin SDK would be very helpful for many servers using this language.

5 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · App Check · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Security vulnerability on using SHA-1 weak hash algorithm

Firebase using SHA-1 weak hash algorithm. This is being raised as Security vulnerability. Recommended to upgrade the hash algorithm.

3 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Redirect invalid/not found links

6 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Dynamic Links · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

AdminAnonymous (Product Manager, Google, LLC - Firebase) responded
Add Programmatic Support for Custom Short Links

6 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Dynamic Links · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

AdminAnonymous (Product Manager, Google, LLC - Firebase) responded
Feature to increase the number of whitelisted phone numbers for testing

6 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Enable editing of FDL favicon

5 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Dynamic Links · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

AdminAnonymous (Product Manager, Google, LLC - Firebase) responded
Create FDL with custom suffix using Rest API

6 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Dynamic Links · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

AdminAnonymous (Product Manager, Google, LLC - Firebase) responded
Allow input of analytics label on in-app messages like push notifications

Push notifications allow for an analytics label which makes sense for marketers who are running multi channel campaigns and want to aggregate results.

There is currently no way to add these to in app messages. Goal would be they are treated the same way as push notifications with simple reporting and pull through on the analytics for custom report building. Thanks

5 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Cloud Messaging · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
firebase auth ui react component

Firebase auth ui component was broken. When trying to log in it wil not show the password input field.

1 vote

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Testing UserVoice!

Just testing.

7 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
A/B testing and Conditional Rollout on event params

Currently, Firebase allows A/B testing to be created on the remote config parameter with the optimization metric on any event being fired on the Firebase Analytics. Unfortunately, it does not allow the metric to be one of the event_params sent on that event. This limits us in running refined experiments on certain attributes.

Secondly, A/B testing and conditional rollout do not allow the creation of refined conditions on the basis of event parameters. This limits further in creating rolling out a feature in controlled manner

4 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Remote Config · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Raise the custom claims size limit

4 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Storage Idea

6 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

0 comments · Cloud Storage for Firebase · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close
Create custom OTP request to revalidate user

Firebase should have capability for the developer to generate OTP (sent on cellphone or email as per developer's requirement) and should have a mechanism to validate the OTP.
This will be very useful during user authentication when changing some critical data/setting (especially related to finance/money) or when making payment.

4 votes

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

We’ll send you updates on this idea

1 comment · Authentication · Delete… · Admin →

How important is this to you?

We're glad you're here
Please sign in to leave feedback

Signed in as (Sign out)

Close

Close

← Previous 1 2 … 56 57 58 59 60 61 62 Next →

Don't see your idea?

General

Categories

I suggest you ...

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here

We're glad you're here

Your importance score has been recorded.

We're glad you're here