Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to verify users current password?

Tags:

firebase

firebase-authentication

firebase-admin

So, maybe I missed this somewhere in the docs but I couldn't find anything of the sort.

I wan't my users to have to type in their current password to be able to create a new one. From what I understand if the user is authenticated he is able to update his password without providing his current one.

Even if this might be somewhat secure I would rather have him type his old one to prevent people from going on already authenticated sessions from say family members or so and changing the pw.

Is there any way to do this?

(I have no problem using the Admin SDK since I already set up a server for these kind of things)

like image 561
ThatBrianDude Avatar asked Dec 12 '16 19:12

ThatBrianDude

People also ask

How do I check my Firebase password?

If you haven't yet connected your app to your Firebase project, do so from the Firebase console. Enable Email/Password sign-in: In the Firebase console, open the Auth section. On the Sign in method tab, enable the Email/password sign-in method and click Save.

What does onAuthStateChanged do?

onAuthStateChanged. Adds an observer for changes to the user's sign-in state. Prior to 4.0. 0, this triggered the observer when users were signed in, signed out, or when the user's ID token changed in situations such as token expiry or password change.

How can I get user details from Firebase?

If the user login with a custom "email/password" you don't know anything else about that user (apart from the unique user id). If a user login with Facebook, or with Google sign in, you can get other information like the profile picture url. It is explained here: firebase.google.com/docs/auth/android/… .

1 Answers

UPDATE: (Use - reauthenticateWithCredential)

var user = firebaseApp.auth().currentUser; var credential = firebase.auth.EmailAuthProvider.credential(   firebase.auth().currentUser.email,   providedPassword );  // Prompt the user to re-provide their sign-in credentials  user.reauthenticateWithCredential(credential).then(function() {   // User re-authenticated. }).catch(function(error) {   // An error happened. });

PREVIOUS VERSION

you can use reauthenticate API to do so. I am assuming you want to verify a current user's password before allowing the user to update it. So in web you do something like the following:

reauthenticateAndRetrieveDataWithCredential- DEPRECATED

firebase.auth().currentUser.reauthenticateAndRetrieveDataWithCredential(   firebase.auth.EmailAuthProvider.credential(     firebase.auth().currentUser.email,      providedPassword   ) );

If this succeeds, then you can call 

firebase.auth().currentUser.updatePassword(newPassword);
like image 61
bojeil Avatar answered Sep 21 '22 21:09

bojeil
Sign in to Comment

Related questions

Firebase @Exclude with kotlin data class
Getting Firebase not found error while deploying functions in firebase
DatePipe is not working correctly in Angular 6
How to get Firebase Project Name or ID from Cloud Function
java.io.IOException: FIS_AUTH_ERROR in Android Firebase
How to create a folder in Firebase Storage?
How to remove all data from a Firebase database?
Flutter FCM 7 on iOS 14
Firebase Authentication via OpenID Connect
Calling Firebase Analytic's getInstance() every time vs. storing instance as a static variable in Application class
Firebase Auth Anonymous Login
NodeJS authentication with Firebase
Dynamic links in Facebook mobile app is not deep linked to app
Change the email template when using Firebase email link authentication [duplicate]
Working with nested single queries in Firestore
How to get Firebase working with Java backend
FirebaseRemoteConfig.fetch() does not trigger OnCompleteListener every time
Cloud Functions for Firebase - Get current user id [duplicate]
How to use Firebase with Spring boot REST Application?
Are there any benefits of using subcollections in firestore?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!