Reputation: 559
How to make user's password expire using firebase API?
I have a mobile app that uses firebase's mail/password authentication.
The accounts are created by someone with a "manager" profile and distributed to all their employees. The accounts use their personal corporative mails and the first password is the employee ID. For security reasons, I want to force the employees to change their password the first time they log in and then once every 30 days. Is there any way to implement this using firebase's API? Sort of like defining an expire date. Or do I have to manually do the checks keeping track of the last time the password was changed?
Upvotes: 2
Views: 222
Answers (1)
Reputation: 317808
There is no configuration that you can set that will force password changes.
You will have to somehow force this on your own by writing application code to keep track of the last time it was successfully changed, and disallowing use of your app if it wasn't change within some threshold of time.
Upvotes: 3
Related Questions
- Change password with Firebase for Android
- How can I allow a user to change his password if they are signed out?
- How to handle custom firebase token expiry in Firebase 3.x.x
- is there any expiration time to a password in Firebase Auth
- how to handle firebaseauth token expiration?
- Firebase Auth - Set session expiration
- Handling Firebase IdToken expiration on Android app
- Check if the password is temporary on Firebase Android
- Android - Do Firebase User Auth Tokens Expire?
- Android :: How to automatically re-authenticate the User when the token expires (Email + Password authentication)