CODEWITHSUNDEEP
firebaseauthenticationgogoogle-cloud-firestorefirebase-authentication
Duncan Jones
Duncan Jones

Reputation: 69339

How to authenticate user to Firestore Go SDK?

I'm trying to use the Firestore Go SDK from a client application. This looks like a client-side SDK, based on the functions, but that might be my first error?

I'm struggling to authenticate the user to Firestore. I've already logged them in using the REST API for Firebase Auth. This returns me an ID token, refresh token, etc. How do I use this with the Firestore SDK?

The docs suggest I need to call firestore.NewClient(<context>, <project-id>, <option>). For the latter argument, I've tried option.WithCredentialsJSON(...) passing a JWT-decoded ID token. I've also tried passing the raw refresh token. In both cases, the SDK complains about what I'm passing.

How can I authenticate the user based on the tokens I've obtained?

Upvotes: 1

Views: 1599

Answers (2)

Frank van Puffelen
Frank van Puffelen

Reputation: 598765

The Go SDK for Firestore is meant to be used in a trusted environment, such as your development machine, a server you control, or Cloud Functions. It doesn't have a way to sign the user of the application in, but instead authenticates itself with the server with administrative credentials, which you'll don't want to have on non-trusted devices.

Upvotes: 2

Mikhail
Mikhail

Reputation: 859

option.WithCredentialsJSON accepts not JWT token, but Google Application Default Credentials.

Other option is to provide path to the file with Google Application Default Credentials using environment variable GOOGLE_APPLICATION_CREDENTIALS since firebase sdk is a part of the cloud.google.com/go sdk.

Check out the examples (also with other options).

https://cloud.google.com/docs/authentication/production#auth-cloud-implicit-go

https://godoc.org/cloud.google.com/go#example-package--ApplicationDefaultCredentials

Upvotes: 0

Related Questions