[with-firebase-authentication] Can't use Firebase Admin SDK for anything other than verifying the token #14139
Comments
|
did you ever solve this issue? I'm having the same one. In my case, I'm trying to access the admin firestore with nearly exact same steps as you, basically the same error error: |
|
Well, I ended up solving my issue by using the entire service-account.json instead of only the private key in the admin.credential.cert( ... ). It seems to work on localhost with just the private key (without the rest of the service account properties), which threw me off when I moved to other environments. |
Yep I got it to work the same way. Sorry, I didn't see this earlier. Is there a way to add the answer and close this issue? |
|
How I solved: I deployed it to digital ocean vps and deployed it as a node app. To be clear: I created a digital ocean droplet. I did not use the app platform |
|
Is there an example on how to solve this issue in vercel? |
|
I got it working by saving the private key directly in the file. So I think the issue is adding the firebase private key as an ENV var on Vercel. It is not ideal to hardcode the private key, so I would be happy to hear if someone got it to work using ENV vars on vercel. |
For a Firebase Admin Private Key ?! |
Bug report
Describe the bug
There's a problem with the credential in initializing the firebase admin app. It works perfectly with admin.verifyToken, but any other method I try to use yields an error of
Error: Credential implementation provided to initializeApp() via the "credential" property failed to fetch a valid Google OAuth2 access token with the following error: "Error fetching access token: invalid_grant (Invalid grant: account not found)". There are two likely causes: (1) your server time is not properly synced or (2) your certificate key file has been revoked. To solve (1), re-sync the time on your server. To solve (2), make sure the key ID for your key file is still present at https://console.firebase.google.com/iam-admin/serviceaccounts/project. If not, generate a new key file at https://console.firebase.google.com/project/_/settings/serviceaccounts/adminsdk.I've tried everything. Is there no way to use the firebase admin SDK with anything else in NextJS?
To Reproduce
firebaseAdmin.js
import * as admin from 'firebase-admin'
export const createUser = (email) => {
const firebasePrivateKey = process.env.FIREBASE_PRIVATE_KEY
if (!admin.apps.length) {
admin.initializeApp({
credential: admin.credential.cert({
projectId: process.env.NEXT_PUBLIC_FIREBASE_PROJECT_ID,
clientEmail: process.env.FIREBASE_CLIENT_EMAIL,
// https://stackoverflow.com/a/41044630/1332513
privateKey: firebasePrivateKey.replace(/\n/g, '\n'),
}),
databaseURL: process.env.NEXT_PUBLIC_FIREBASE_DATABASE_URL,
})
}
return admin.auth().createUser({
email: '[email protected]',
password: 'password'
})
}
export const verifyIdToken = (token) => {
const firebasePrivateKey = process.env.FIREBASE_PRIVATE_KEY
if (!admin.apps.length) {
admin.initializeApp({
credential: admin.credential.cert({
projectId: process.env.NEXT_PUBLIC_FIREBASE_PROJECT_ID,
clientEmail: process.env.FIREBASE_CLIENT_EMAIL,
// https://stackoverflow.com/a/41044630/1332513
privateKey: firebasePrivateKey.replace(/\n/g, '\n'),
}),
databaseURL: process.env.NEXT_PUBLIC_FIREBASE_DATABASE_URL,
})
}
return admin
.auth()
.verifyIdToken(token)
.catch((error) => {
throw error
})
}
Try to run createUser from an API endpoint
Expected behavior
It should just work. I need a custom flow for creating my users.
System information
The text was updated successfully, but these errors were encountered: