rest - Turn Firebase 'idToken' into 'access token' with no backend? -


i'm trying use firebase rest api creating anonymous user calling:

https://www.googleapis.com/identitytoolkit/v3/relyingparty/signupnewuser?key=[api_key].

no problem there, response (modified abit secrecy):

{  "kind": "identitytoolkit#signupnewuserresponse",  "idtoken": "eyjhbgcioijsuzi1niisimtpzci6ijm0ntbimgjhowuzmtcymmuwotblzdixmzviy2rin2mxnzdhmzjmmjcifq.eyjpc3mioijodhrwczovl3nly3vyzxrva2vulmdvb2dszs5jb20vzmlzagluyy1hchailcjwcm92awrlcl9pzci6imfub255bw91cyisiml1zci6imzpc2hpbmmtyxbwiiwiyxv0af90aw1lijoxntazmdq1njy4lcj1c2vyx2lkijoiq2hkruj3vk5heva0nmteqza3d1vkmuj3y3q3myisinn1yii6iknoskvcd1zor3lqndzrrenwn3dvsjfcd2n0nzmilcjpyxqioje1mdmwndu2njgsimv4cci6mtuwmza0oti2ocwizmlyzwjhc2uionsiawrlbnrpdgllcyi6e30sinnpz25faw5fchjvdmlkzxiioijhbm9uew1vdxmifx0.jdmupvgvmt6qzoxynpgmqurqg9zrvbpl1kxxmbhoglggi9u1hhwqft5hhkis3qbs87-rr5bceitcu5sehcdlwl3rzex87fcthmy4z-vdquukiqjkhfb0q04sbzbkvuvuug9o-acwmdlwfz54u4alk7kfdlbti3600kqw_4-ugura2jippose9f8hiz_qgao_5kptjo6v4drlhy6pph_h1ko4p1ditwt6pfdn_e_taqxzgsck3ikhu4byuc2dgiufr7q3dfzravqyz2nrpdn6s3z_ndzxikruyaspr7kpeqxgaapcyx84p_gl6r-eefccveourukrvlorpoezoskerg",  "refreshtoken": "aprrrciqiuk5bijijpit-ztsdvn6ybonttcccpoziwaxg9qsclqdr82vqymb0tms1xngpcvlbizgtsdtycvsosygua1r-6rlat83z2jxktangalahqlsc_gpuef7js9pwl8o8pp5kf64coel22pgysd39qwc2z2yf6zjj7xoozf0ealjmkyvzqs",  "expiresin": "3600",  "localid": "chjebwvngyp46kdc07wuj1bwct73" }

i under impression i've got "authed"/logged in user. , can read data realtime db using idtoken (provided rules user authed).

but doesn't seems case (receive "unauthorized request.") , or missing something. after googling seems need custom backend "convert" idtoken access token. correct?

uhhh. seems documentation bit confusing, says:

supported request types. authenticates request allow access data protected firebase realtime database rules. see rest authentication documentation details.

curl 'https://[project_id].firebaseio/users/jack/name.json?access_token=credential'

but using access_token parameter wrong (in case @ least), in needed use "auth" instead.

so work:

curl 'https://[project_id].firebaseio/users/jack/name.json?auth=myidtokenhere'

Comments

Post a Comment

Popular posts from this blog

Is there a better way to structure post methods in Class Based Views -

i'm using class based views in django , never specify url in ajax calls , omit action parameter in form because know these requests go through post method of class based view. notice view - profile page make many requests depending on user updating on page - post method become convoluted , if/else mess example: def post(self, request, *args, **kwargs): # handle user changing available date if request.post.get('availabledate') != none: self.updateavailabledate(request) return jsonresponse({'result':'success'}) if request.post.get('newprojectname') != none: creative_user = creativeuserprofile.objects.get(id = request.user.id) project = project.create_project(creative_user, request.post['newprojectname']) project.save() return jsonresponse({'projectid': project.id }) if request.post.get('projectimage') != none , request.files['file']: proj
Read more

performance - Why is XCHG reg, reg a 3 micro-op instruction on modern Intel architectures? -

i'm doing micro-optimization on performance critical part of code , came across sequence of instructions (in at&t syntax): add %rax, %rbx mov %rdx, %rax mov %rbx, %rdx i thought had use case xchg allow me shave instruction , write: add %rbx, %rax xchg %rax, %rdx however, dimay found agner fog's instruction tables , xchg 3 micro-op instruction 2 cycle latency on sandy bridge, ivy bridge, broadwell, haswell , skylake. 3 whole micro-ops , 2 cycles of latency! 3 micro-ops throws off 4-1-1-1 cadence , 2 cycle latency makes worse original in best case since last 2 instructions in original might execute in parallel. now... cpu might breaking instruction micro-ops equivalent to: mov %rax, %tmp mov %rdx, %rax mov %tmp, %rdx where tmp anonymous internal register , suppose last 2 micro-ops run in parallel latency 2 cycles. given register renaming occurs on these micro-architectures, though, doesn't make sense me done way. why wouldn't register renamer
Read more

jquery - Responsive Navbar with Sub Navbar -

good day, forgive me nav vocabulary not best. if question confusing apologize. i'm working on navigation bar needs centered on page @ 768px , above. items in nav open (or perhaps toggle) subnav lives directly below. these nav should appear centered on page. i have been able work through responsive portion of nav bar, having main items align vertically , sub nav menu of each item roll out below, , gave them indent separation. working well. however, issue not responsive side, behavior @ width greater 768px. happens toggling menu's sub navigation pushes other main items down page below sub nav. here's code: $(document).ready(function () { //stick in fixed 100% height behind navbar don't wrap $('#slide-nav.navbar-inverse').after($('<div class="inverse" id="navbar-height-col"></div>')); $('#slide-nav.navbar-default').after($('<div id="navbar-height-col"></d
Read more