Reputation: 1088
Firebase token.email_verified going weird
Ok so im making a blog which requires users to login through firebase. To post comments, their email has to be verified
I know how to verify the email, and i did so with my test account. When i typed into the console
firebase.auth().currentUser.emailVerified
it returned true, so yes my email was verified.
But the comment .validate rule requires the user to be validated, like so:
auth.token.email_verified === true
However it wasn't working, so i removed it and it began to work again
After a bit of reading, I realized that i had to
const credentials = firebase.auth.EmailAuthProvider.credential(
user.email, password);
user.reauthenticateWithCredential(credentials)
.then(() => { /* ... */ });
And that makes it work perfectly. The explanation was it apparantly takes the firebase server some time to update its backend validation, but reauthenticating forces the update immediately.
However, I am stumped on how to ask the user to reauthenticate themselves, as i have the following problem
How do I know when the users is validated (firebase.auth().currentUser.emailValidated), and at the same time the firebase backend is not updated (auth.token.email_verified === true is false) so that i can update my UI and prompt the user to reauthenticate
Basically how can i know when auth.token.email_verified === true is not updated yet on the client side
edit also is there a client side solution without reauthentication that updates the backend validation?
edit I tried user.reload().then(() => window.location.replace('/')) but it didnt work
Upvotes: 16
Views: 2635
Answers (1)
Reputation: 30818
This is what is likely happening:
firebase.auth().currentUser.emailVerified is updated when firebase.auth().currentUser.reload() is called after verification. However auth.token.email_verified gets its value from the ID token which will not get updated until it gets expired or you force refresh. So you may have to call firebase.auth().currentUser.getIdToken(true) to force refresh to update the token claim which is sent to the Firebase Database backend.
Upvotes: 25
Related Questions
- user.emailVerified doesn't change after clicking email verification link firebase
- Firebase: Email verification link always expired even though verification works
- Firebase Email Verification is not working
- Firebase only sends already expired email verification links
- Why Firebase-Email-Verification doesn't work?
- firebase login authentication gives me that email must be a valid string
- Firebase authentication is not working as intended
- Firebase Auth API email verification JavaScript
- Firebase WEB - Email Verification not being sent. What's wrong with the code
- Firebase email authentication network-request-failed