英文:
Firebase revokeRefreshTokens in backend server then firebase.auth().signOut() then try to login (google provider)
问题
我正在使用Firebase进行身份验证,使用firebaseui-web。
以下是问题的使用情况:
- 用户通过firebaseui成功登录
- 在后端服务器上验证令牌:FirebaseAuth.getInstance().verifyIdToken(idToken)
- 用户按下注销按钮
- 后端吊销刷新令牌以使令牌无效(我错了吗?!):FirebaseAuth.getInstance().revokeRefreshTokens(decodedToken.getUid());
- 用户尝试重新验证身份,firebaseui显示,但当客户端立即按下“使用Google登录”按钮时,显示错误消息:“请再次登录以执行此操作 Dismiss”;显然,Google服务器表示令牌已过期(400)
- 几秒钟后,用户尝试重新验证身份,这次成功。
您能帮我解决这个问题吗?
非常感谢。
英文:
I'm using Firebase for authentication using firebaseui-web.
Following is the issue use case :
- The user login via firebaseui successfully
- The token is validated in backend server: FirebaseAuth.getInstance().verifyIdToken(idToken)
- The user press logout button
- The backend revokes the refresh token in order to invalidate the token (Im I wrong?!) : FirebaseAuth.getInstance().revokeRefreshTokens(decodedToken.getUid());
- The user tries to reauthenticate, the firebaseui is displayed but when the client press immediateley the "sign in with google" button an error message is shown: "Please login again to perform this operation Dismiss"; Apparently google server telss that the token is expired (400)
- After some seconds the user retries to authenticate and it works.
Can you help me please resolve this issue?
Thank you in advance.
专注分享java语言的经验与见解,让所有开发者获益!
评论