You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Firebase component and version: firebase-auth: 19.3.1, firebase-core: 17.4.1
Describe the problem
We have developed Sign in with Apple on Android and confirmed that it is working properly.
But, when we have restricted the API key to Android with fingerprint and package name in the Google Cloud Console, it does not work with the following error:
{"error":{"code":403,"message":"Requests from this Android client application <empty> are blocked.","errors":[{"message":"Requests from this Android client application <empty> are blocked.","domain":"global","reason":"forbidden"}],"status":"PERMISSION_DENIED"}}
An internal error has occurred. [ Requests from this Android client application <empty> are blocked. ]
When we remove the restriction on the API key on Google Cloud Console, everything works properly.
We have found on the docs that all request to the API must send the following headers, should it be the problem?
Create a demo app (https://github.com/firebase/FirebaseUI-Android), implement the Sign in with Apple and restrict the API Key with fingerprint and package name on Google Play Console.
Then, try to login with Apple.
The text was updated successfully, but these errors were encountered:
This is a known behavior, and is due to the fact that Apple Sign-In is based on a Web flow - it kicks you to a browser to do the sign-in and then takes you back. As a result, your API key is used in a web context, so restricting your API key to only work on Android breaks this feature.
As is presently stands, API key restrictions provide minimal benefit for Android - all it does is make it so that certain headers must show up on the request in order to be accepted. We're working on better ways to solve this issue right now, but I would suggest foregoing API key restrictions for now (since it does very little) if you need to use Apple Sign-In.
This is a known behavior, and is due to the fact that Apple Sign-In is based on a Web flow - it kicks you to a browser to do the sign-in and then takes you back. As a result, your API key is used in a web context, so restricting your API key to only work on Android breaks this feature.
As is presently stands, API key restrictions provide minimal benefit for Android - all it does is make it so that certain headers must show up on the request in order to be accepted. We're working on better ways to solve this issue right now, but I would suggest foregoing API key restrictions for now (since it does very little) if you need to use Apple Sign-In.
Describe your environment
Describe the problem
We have developed Sign in with Apple on Android and confirmed that it is working properly.
But, when we have restricted the API key to Android with fingerprint and package name in the Google Cloud Console, it does not work with the following error:
When we remove the restriction on the API key on Google Cloud Console, everything works properly.
We have found on the docs that all request to the API must send the following headers, should it be the problem?
Steps to reproduce:
Create a demo app (https://github.com/firebase/FirebaseUI-Android), implement the Sign in with Apple and restrict the API Key with fingerprint and package name on Google Play Console.
Then, try to login with Apple.
The text was updated successfully, but these errors were encountered: