Passing Firebase Auth Token via SSL to App server
https://stackoverflow.com//questions/23060686
-
26-12-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
I have some rather heavy/complicated logic that needs to reside on an app server.
The client would request the app server to perform some tasks on firebase data.
Is it safe to pass the user.firebaseauthToken via SSL (in a POST, not url encode) to the app server, where the server could simply use the token for authentication?
Solution
The Auth Token you get from Firebase Simple Login is already being passed over SSL from Firebase to your client - so for you to pass it to your app server over SSL really isn't any different.
One thing you might also consider is eliminating the need to POST anything to your app server. You can setup a worker node that takes advantage of Firebase's real-time data sync to listen for changes to your user's data, and execute whatever processing it needs to when it detects a certain change/state.
