zelig74
Reputation: 532
Is it possible to write complex object to Firebase authentication custom claims?
I am wondering if it is possible to write (and read back) a more complex object to Firebase's authentication custom claims. For instance:
admin.auth().setCustomUserClaims(uid, {groups: {groupId1: true, groupId2: true}, sections: {sectionId1: true}});
The documentation mentions only storing key - value pairs, not objects. The reason why I need it is that groupIds and sectionIds are auto-generated values, so I would prefere to not mix them together.
I would like to read this claims later in (for instance) Realtime database security rules like this:
{
"rules": {
"mydata": {
"$groupId": {
".read": "auth.token.sections.sectionId1 === true"
".write": "auth.token.groups[$groupId] === true",
}
}
}
}
Is this allowed in Firebase Authentication?
Upvotes: 1
Views: 208
Answers (1)
Doug Stevenson
Reputation: 317497
Yes, you can store any JSON object in custom claims, up to the size limit of 1000 bytes. It should be easy to try for yourself.
Upvotes: 2
Related Questions
- Using Firebase Auth Custom Claims for custom permissions
- Are Firebase Custom Claims Secure?
- Firebase Auth - list of users by Custom Claims
- Using Firebase Auth Custom Claims Correctly
- How to set custom claims with FirebaseUser?
- What are the allowed data types for firebase custom claims?
- Firebase custom claims as a list + security rules
- Is it possible to add custom claims through CLI?
- firebase using claims in custom tokens
- Firebase authentication with custom identifiers