Comments (1)
samtstern
commented on August 21, 2024
1
@gbenthomas this is a good question. Firebase tokens are JWT ID tokens and there is no way to remotely "revoke" them. They expire after an hour by default. And you're right, the client can keep getting a new token every hour as long as the refresh token is valid.
If you detect that the user's OAuth credentials are valid and you want to block them from getting another Firebase token, you can disable the user (call update and set disabled to true):
https://firebase.google.com/docs/auth/admin/manage-users#update_a_user
Disabling is better than deleting here because the user will not simply be able to sign up again using the same email, they will be blocked from signing in / signing up / refreshing tokens until you re-enable the user.
from custom-auth-samples.
Related Issues (12)
- Linking custom OAuth providers with existing Firebase user HOT 10
- Android example for implementaion instagram with firebase auth
- Android example for implementaion instagram with firebase auth HOT 1
- line oauth1 deprecated
- additional claim HOT 2
- [Feature Request] Yahoo! JAPAN Login
- Please update to LINE OAuth v2 HOT 1
- if-condition issue in custom-auth-samples/kakao/KakaoLoginServer/app.js
- Switch to using firebase-admin HOT 1
- Invalid argument passed to createFireBaseAccount from Mobile App endpoint
- Android example for Instagram HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from custom-auth-samples.