Reputation: 4146
Does Authenticated Cloud Run instance natively support Firebase Authentication?
I have read this page a few times it implies and does not imply that if I enable authentication when deploying a Cloud Run instance I can use Firebase Auth to get through to the service.
I tried passing in a valid Firebase user idToken and did not get through. Was I doing something wrong or is the only way to get through to Cloud Run when Authentication is enabled to use google sign in?
Steps to reproduce:
When deploying to Cloud Run select Yes for authenticated
Generate a firebase auth token using REST call from here
make api call to Cloud run instance using header bellow and ID_TOKEN from step 2 above
Authorization: Bearer ID_TOKEN
Upvotes: 4
Views: 1368
Answers (1)
Reputation: 75970
According with the comment, the use case is to authorize only the registered, and the authenticated user (with Firebase auth), to use a Cloud Run endpoint deployed privately.
You can't do it directly, you need to use an additional layer. Here I propose to use Cloud Endpoint. I wrote an article on this to set up an authentication with API Key.
You have the principles of Cloud Endpoint there. You simply have to change the security definition from API Key to Firebase auth. You can found documentation here
Note: The authentication methods can evolved the next quarters. Stay tuned
Upvotes: 0
Related Questions
- Google Cloud Run end-user authentication
- Does Firebase Admin SDK deployed at Cloud Run require GOOGLE_CLOUD_PROJECT env var?
- Does Cloud Run support Binary Authorization?
- Securing cloud run service for end users and other services
- Using Firebase Admin Auth within Cloud Run Container
- cloud run authentication with user account
- Firebase authorization on Google Kubernetes Engine
- Can you use firebase authenticated users as part of Google Cloud IAM Access?
- Implementing Cloud Run with Firebase Cloud Functions
- Is there authentication, as in Google Firebase even in the Google Cloud platform?