1

We are using Digits Web SDK for our WordPress website.

Once we get the mobile confirmation from digits we are sending X-oAuth echo headers to our own auth server, which then does the next processing and returns our custom JWT.

Recently we got the news that Digits will retire on 30th September 2017.

We have gone through the migration instruction, but did not understand how it keeps our flow same as earlier?

Isn't Firebase providing JS SDK instead of this Digits SDK?

How will we send the X-oAuth echo headers or any other user information to our server once user is authenticated using Firebase?

Any help will be appreciated.

KENdi
  • 7,576
  • 2
  • 16
  • 31
Amol Chakane
  • 1,501
  • 2
  • 21
  • 43
  • Anyone out there from Firebase/Google/Fabric/Digits to respond? – Amol Chakane Jun 23 '17 at 09:01
  • Mike from Fabric here, but I'm sorry I didn't quite follow your question. It's how to additional verification of a user via Firebase Auth? – Mike Bonnell Jun 23 '17 at 15:58
  • @MikeBonnell: Thanks for responding. I am using Digits only to verify mobile numbers. Once it's verified I am sending the data to our custom oAuth endpoint which then creates user in the database. Can I use the same process with Firebase phone authentication? – Amol Chakane Jun 24 '17 at 08:47
  • 1
    Gotcha, I believe that this is what you're looking for: https://firebase.google.com/docs/auth/admin/verify-id-tokens – Mike Bonnell Jun 26 '17 at 17:31
  • So does anybody tested https://firebase.google.com/docs/auth/admin/verify-id-tokens ? Is it working? – Rubycon Jul 20 '17 at 13:55
  • @AmolChakane did you find a solution here? thanks – Rubycon Jul 20 '17 at 14:01
  • @IgorKhomenko: Didn't try that, but it seems promising. – Amol Chakane Aug 01 '17 at 12:53

1 Answers1

2

Unfortunately, there is no easy one-click migration from Digits to Firebase and you need to develop new way of token verification.

Twitter Digits used OAuth Echo headers, but Firebase does not provide it. Instead, Firebase provides ID Tokens (JWT tokens)

This is how verify it on the backend side https://firebase.google.com/docs/auth/admin/verify-id-tokens

Unfortunately, they do not have Ruby Admin SDK, so I wrote my own implementation of ID tokens verification in Ruby, maybe someone will find it useful https://medium.com/@igorkhomenko/how-to-validate-firebase-id-token-in-ruby-23f4f54c89ab

Rubycon
  • 18,156
  • 10
  • 49
  • 70