stackoom
  简体   繁体   中英

firebase cloud functions - https.onCall(…) can Context.Auth be used?

 原文  2018-08-14 12:11:26       function/ firebase/ oauth/ cloud

Question

I need advice becuase I've never tried this combination:

  1. firebase app + realtime database this app will be my backend and provide some cloud functions.
  2. android app which will call these cloud functions.

I want to use google auth2 authentication and “protect” the cloud functions to be called by the android app only and if atuh is valid only.

Best Regards Ivan

For expample this is my cloud functions for 'addTickets' scenario:

=== index.js: === 

exports.addTickets = functions.https.onCall((data, context) => {
 // data comes from client app
 const buyingRecord = data;
 console.log(‘buyingRecord: ‘ + JSON.stringify(buyingRecord));

return tickets.updateTicketsAmmount(buyingRecord)
 .then((result)=>{
 tickets.addTicketsBuyingRecord(buyingRecord);
 result.userid = buyingRecord.userid;
 result.ticketsCount = buyingRecord.ticketsCount;
 return result;
 });
});

====== tickets.js ======= 

exports.updateTicketsAmmount = function(buyingRecord) {
 var userRef = db.ref(‘users/’ + buyingRecord.userid);
 var amountRef = db.ref(‘users/’ + buyingRecord.userid + ‘/ticketsAmount’);
 return amountRef.transaction((current)=>{
 return (current || 0) + buyingRecord.ticketsCount;
 })
 .then(()=>{
 console.log(“amount updated for userid [“ + buyingRecord.userid + “]”);
 return userRef.once(‘value’);
 })
 .then((snapshot)=>{
 var data = snapshot.val();
 console.log(“data for userid [“ + snapshot.key + “]:” + JSON.stringify(data));
 return data;
 });
}

exports.addTicketsBuyingRecord = function(buyingRecord) {
 var historyRef = db.ref(‘ticketsBuyingHistory’);
 var newRecordRef = historyRef.push();
 return newRecordRef.set(buyingRecord)
 .then(()=>{
 console.log(‘history record added.’); 
 return newRecordRef.once(‘value’);
 })
 .then((snapshot)=>{
 var data = snapshot.val();
 console.log(‘data:’ + JSON.stringify(data));
 return data;
 });
}

1 answers

solution1
 3 ACCPTED  2018-08-14 15:28:17

If you want only authenticated users to invoke your callable function, then simply check that context.auth.uid exists. If the user is not authenticated, there will be no uid.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Firebase Cloud function: how many users can the same function (onCall) serve? With how many resources can it serve them? Firebase Cloud Functions trigger at 00 firebase cloud functions limit children Deploying/Testing functions with Firebase Cloud Functions Firebase HTTPS Cloud Function Returning 404 in Production how to test Cloud Functions for Firebase locally on pc Cloud Functions for Firebase: Project structure multiple self-contained functions Ellipsis expansion in nested functions: Error “..3 used in an incorrect context, no … to look in” Firebase functions logs error working with Cloud Firestore and Node JS Ellipsis expansion in nested functions: Error “'…' used in an incorrect context”
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM