Summary

This chapter explained how we can configure and initialize the Firebase Admin SDK to create our app backend in NodeJS. It also explained how we can manage our app users using User Management API of Firebase Admin without going to Firebase Console, such as the following:

  • Create
  • Delete
  • Update
  • Remove

Firebase Admin SDK gives us the power to create and verify the Custom JWT tokens, which allow the user to authenticate with any provider, even if it's not available in the Firebase Auth Providers list. It also gives you the power to manage the user's session in case of any change in user information, such as the user is deleted, disabled, the email address or password is changed, and more.

We also learned how we can control the access to custom claims. This helps us provide the ability to implement role-based access control to give users different levels of access (roles), in Firebase apps.

In the next chapter, we will learn the database security risks and the checklist to prevent such threats. We will also see the security part of Firebase Realtime Database and the Firebase Realtime Database Rules language.

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset