Skip to content
/ gapi-firebase-apps-script Public
forked from msukmanowsky/gapi-firebase

An example of how to use GAPI and Firebase Auth together to authenticate users and talk to Google APIs.

2 stars 8 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

oshliaer/gapi-firebase-apps-script

BranchesTags
 
 

Repository files navigation

GAPI and Firebase Auth and Apps Script Executable API

An example of how to use GAPI and Firebase Auth together to authenticate users and talk to Google APIs.

Have a question? Book a slot to chat further or open an issue

This is a hard fork of the repo msukmanowsky/gapi-firebase. You may wish to contact the author for direct advice. Visit the page.

Background

If you are trying to use Google's JavaScript Library to query Google APIs (e.g. Google Apps Script Executable API), you'll run into an issue whereby Firebase Auth is strictly intended for AuthN (fetching a user's identity and not AuthZ (authorizing a user to access specific resources).

The access token that Firebase Auth provides is valid for whatever scopes a user approved, but Firebase Auth does not provide any means to see the access token upon, say, token refreshes. This is by design.

Google's JavaScript Library transparently handles token refreshes but will also provide access to the updated token via:

const auth2 = gapi.auth2.getAuthInstance();
auth2.isSignedIn.listen((isSignedIn) => {
  if (isSignedIn) {
    const currentUser = auth2.currentUser.get();
    const authResponse = currentUser.getAuthResponse(true);
    authResponse.id_token;
    authResponse.access_token;
  }
});

These same credentials can also be used to authorize a user to Firebase!

const credential = firebase.auth.GoogleAuthProvider.credential(
  authResponse.id_token,
  authResponse.access_token
);
firebase.auth().signInWithCredential(credential);

There are some additional concerns to keep in mind like signing out of both gapi and firebase:

const auth2 = gapi.auth2.getAuthInstance();
auth2.signOut().then(() => {
  return firebase.auth().signOut();
});

Now you have the best of both worlds, the ability to make requests to any Google API via gapi and an authenticated firebase client to communicate with firebase APIs.

Running this example

  1. Clone this repo locally.
  2. Build an Apps Script project from ./apps-script-project
  3. Sign up for a Firebase app.
  4. Enable the "Google Drive API", "Script API", "Sheets API" for Firebase project.
  5. Find the OAuth Client ID firebase auto-created on setup and ensure your server's origin is listed in "Authorised JavaScript origins" (should be something like http://localhost:8000, but depends on your server config).
  6. Add the init.js file to public/js which should content two constant
const FIREBASE_CONFIG = {
  projectId: '...',
  appId: '...',
  databaseURL: '...',
  storageBucket: '...',
  locationId: '...',
  apiKey: '...',
  authDomain: '...',
  messagingSenderId: '...',
};
const CLIENT_ID = '...';
  1. Run your webserver $> npx firebase serve
  2. Open up your browser's dev console and check logging messages.
  3. Click login!

About

An example of how to use GAPI and Firebase Auth together to authenticate users and talk to Google APIs.

Resources

Readme
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • HTML 98.8%
  • JavaScript 1.2%