61 results found
-
Firebase Authentication for EU
Currently, Firebase Auth is US only. Because the EU-US-Privacy-Shield is not valid anymore, transferring data to the US is for EU companies not allowed. Therefore, Firebase is not GDPR complaint. Allowing us to choose the storage location (like you can weigh Firestore or Cloud Storage) to use a data center in the EU (like europe-west1, europe-west3 or europe-west4, etc.) would make Firebase much more GDPR complaint (beside the Cloud-Act).
241 votesDesign work in progress, but no ETA to share at this time.
-
201 votes
Hi folks, this is being actively worked on, and is expected to preview sometime in H1 2024. Thank you for using UserVoice to help us prioritize!
-
98 votes
-
43 votes
-
42 votes
-
Allow SMS customization & add Web OTP support
Web OTP support increased phone authorization conversion significantly.
Currently, We are not able to customize SMS messages to comply
https://developer.chrome.com/en/articles/web-otp/#format38 votes -
Custom Claims Editor
Show Custom Claims and allow them to be managed in the Firebase Authentication Console (like in the Emulator). Usefull for manually creating the first super user, for example.
26 votes -
API Revoke Token
Simple API to revoke the token/refresh token from a backend without using the SDK.
17 votes -
Turning Off Auto Login when creating New User
The Firebase createUserWithEmailAndPassword function currently auto-logs in the newly created user. However, it's crucial to have an option to turn off auto-login, especially in admin panel scenarios. This can help prevent issues where the admin session expires due to the new user login. Providing such an option will enhance flexibility and control in user management.
9 votes -
Google Play User Data Delete Requirement
Google requires a web link that enables users to delete all their data, even after they have uninstalled the application. For a "serverless" app that only uses Firebase Auth, it would be ideal to have a plug-and-play solution for hosting a single webpage that complies with Google Play's policy.
8 votes -
8 votes
-
8 votes
-
Customizable SMS Verification Messages for Firebase Authentication
Currently, SMS verification messages in Firebase Authentication include fixed text elements that cannot be customized. For Netherlands numbers, the message includes "Firebase App" text and a link, while for non-EU numbers, this text is omitted but still includes a link. Because some developers need to align SMS messages with their brand voice, remove links, or meet specific regulatory requirements in different regions, this lack of customization limits the flexibility and usability of Firebase Authentication.
Implementing a feature that allows developers to customize the text content of SMS verification messages would greatly enhance the service. This should include:
- Ability to use…
7 votes -
Allow enabling Firebase Auth programmatically
Instead enabling Firebase Auth manually, by navigating to the "Authentication" tab in Firebase Console and clicking "Get started", can we do all of this programmatically?
7 votes -
7 votes
-
Support declaring windows-app-web-link JSON file to allow Firebase auth in Windows apps
In order to catch Firebase redirect URL like
https://<app>.firebaseapp.com/__/auth/handlerWindows requires windows-app-web-link JSON file to bedclared in the root likehttps://<app>.firebaseapp.com/windows-app-web-link
https://learn.microsoft.com/en-us/windows/uwp/launch-resume/web-to-app-linking6 votes -
Add option to block client-side password reset in firebase
See here: https://stackoverflow.com/questions/77313457/block-client-side-password-reset-in-firebase
I would like to be able to disable all client-side password resets, both sending a password reset email and directly updating a password after re-authenticating so I can do all my logic though the admin API in functions.
For example, add and option in Authentication -> settings -> user actions that blocks client-side password resets (throws an 'auth/admin-restricted-operation')
(Would be nice to have this option for all auth functions, so you can decide to control access for everything better)
5 votes -
MFA option to "remember device"
User shouldn't have to enter MFA every time logging in on same device. There should be a boolean option remember device for some period of time (somewhere between 2 weeks and forever)
5 votes -
5 votes
-
Automatic SMS OTP read with English templates
For automatic SMS retrieval to work, SMS length has to be under 64 bytes. This means currently that for English SMS template, the app name has to be 11-14 characters. Play Console allows max 30 characters. Firebase doesn't allow customers to modify the SMS template contents themselves. Now I'm working around by utilizing some other languages, that will fit below 64 bytes with current app name.
Two options I suggest to achieve this:
1) Modify the English SMS template: remove unnecessary filler words and make it shorter, so that it will fit to 64bytes with max 30 char app names.…
4 votes
- Don't see your idea?