密码注册后 Firebase 云函数未经身份验证的错误

Question

触发此云功能时，我收到以下错误：“未经身份验证的错误”。

我不希望允许未经身份验证的调用此云功能。

工作流程如下：

1. 用户通过 Firebase 密码身份验证在应用中注册
2. 创建 Firebase 身份验证凭据（成功后 firebase 登录用户）
3. 创建凭据后，将在 firebase auth 回调中触发云函数。

此时，应该对调用进行身份验证，因为它是在 firebase 身份验证响应中触发的。

但是，它不断出错

错误：未经身份验证

此时用户已通过身份验证。

有什么建议？ 客户代码 ->

const onRegisterPress = () => {
  if (password !== confirmPassword) {
    alert("Passwords don't match.")
    return
  }
  setLoading(true);
  //CREATE'S USER'S AUTH CREDENTIALS
  firebase
    .auth()
    .createUserWithEmailAndPassword(email, password)
    .then((response) => {
      const data = {
        ...
      }
      //console.log(response);
      return new Promise(async function(resolve, reject) {
        await firebase.functions().httpsCallable('writeAccountUser')({
          data
        }).then((response) => {
          console.log("Write Account User Response: ", response);
          resolve(setLoading(false));
        }).catch((error) => {
          console.error("Cloud Function Error: ", error);
          setLoading(false);
          reject(error)
        })
      });
    })
    .catch((error) => {
      alert(error)
    });
}

云功能 ->

 const functions = require("firebase-functions"); const admin = require("firebase-admin"); admin.initializeApp(); const firestore = admin.firestore(); exports.writeAccountUser = functions.https.onCall((data, context) => { console.log("Incoming Data: ", data); console.log("Incoming Context: ", context); const clientData = data.data; console.log("Client Data: ", clientData); console.log("Account ID: ", clientData.accountID); return new Promise(async function (resolve, reject) { const accountsRef = firestore.collection('Accounts'); const usersRef = firestore.collection('users'); const now = new Date(); if (clientData.accountExists === true) { console.log("Account Exists"); await accountsRef .doc(clientData.accountID) .update({ users: admin.firestore.FieldValue.arrayUnion(clientData.uid) }).catch((error) => { console.error(error); reject(false) }); } else { console.log("Account Does Not Exist!"); const account_data = clientData.accountData; const product_lines = clientData.productLines; await accountsRef .doc(clientData.accountID) .set({ account_data, product_lines, users: [clientData.uid], dateCreated: { date: now, timestamp: now.getTime() } }).catch((error) => { console.error(error); reject(false)}); }; const email = clientData.email; const fullName = clientData.fullName; const acceptTerms = clientData.acceptTerms; const userData = { id: clientData.uid, email, fullName, accountID: clientData.accountID, dateCreated: { date: now, timestamp: now.getTime() }, lastUpdateFetch: { date: now, timestamp: now.getTime() }, termsConditionsAccepted: acceptTerms }; await usersRef .doc(clientData.uid) .set(userData) .catch((error) => { console.error(error); reject(false) }); resolve(true); }); });

错误 -> [未处理的承诺拒绝：错误：未经身份验证] at node_modules/@firebase/firestore/dist/rn/prebuilt.rn-f9cd27ba.js:12199:33 in at http:///node_modules/expo/AppEntry.bundle？ platform=ios&dev=true&hot=false&minify=false:169743:29 in _errorForResponse at node_modules/@firebase/firestore/dist/rn/prebuilt.rn-f9cd27ba.js:12747:31 in yu at node_modules/tslib/tslib.js:77 :12 在 http://REDACTED/node_modules/expo/AppEntry.bundle?platform=ios&dev=true&hot=false&minify=false:120748:21 在 http://REDACTED/node_modules/expo/AppEntry.bundle?platform=ios&dev =true&hot=false&minify=false:120702:31 已完成

Answer 1

您可以尝试重构函数，如下所示：

const onRegisterPress = async () => {
  if (password !== confirmPassword) {
    alert("Passwords don't match.")
    return
  }
  setLoading(true);

  const response = await firebase.auth().createUserWithEmailAndPassword(email, password)

  const data = {...}
 
  const fnResponse = await firebase.functions().httpsCallable('writeAccountUser')({data})

  console.log("Write Account User Response: ", response);
}

您还可以在同一函数中使用 Admin SDK 创建帐户，并在响应后将用户登录到您的 Web 应用程序。 这将确保 Cloud 函数的操作也已执行（以防万一用户因任何原因注册后未调用该函数）。