Adding snippets for additional Admin Auth guide pages

jenperson · jenperson · commit 26759b69c816 · 2019-03-22T09:45:37.000-07:00
Adding snippets for custom-claims, email-action-links, and import-users
Prior to now, snippets have been hard-coded in the guides.
diff --git a/auth/custom_claims.js b/auth/custom_claims.js
@@ -0,0 +1,22 @@
+'use strict';
+const admin = require('firebase-admin');
+admin.initializeApp();
+
+// [START set_custom_user_claims]
+// Set admin privilege on the user corresponding to uid.
+
+admin.auth().setCustomUserClaims(uid, {admin: true}).then(() => {
+  // The new custom claims will propagate to the user's ID token the
+  // next time a new one is issued.
+});
+// [END set_custom_user_claims]
+
+
+// [START verify_custom_claims]
+// Verify the ID token first.
+admin.auth().verifyIdToken(idToken).then((claims) => {
+  if (claims.admin === true) {
+    // Allow access to requested admin resource.
+  }
+});
+// [END verify_custom_claims]
diff --git a/auth/email_action_links.js b/auth/email_action_links.js
@@ -0,0 +1,64 @@
+'use strict';
+const admin = require('firebase-admin');
+admin.initializeApp();
+
+// [START init_action_code_settings]
+const actionCodeSettings = {
+  // URL you want to redirect back to. The domain (www.example.com) for
+  // this URL must be whitelisted in the Firebase Console.
+  url: 'https://www.example.com/checkout?cartId=1234',
+  // This must be true for email link sign-in.
+  handleCodeInApp: true,
+  iOS: {
+    bundleId: 'com.example.ios'
+  },
+  android: {
+    packageName: 'com.example.android',
+    installApp: true,
+    minimumVersion: '12'
+  },
+  // FDL custom domain.
+  dynamicLinkDomain: 'coolapp.page.link'
+};
+// [END init_action_code_settings]
+
+// [START email_verification_link]
+// Admin SDK API to generate the password reset link.
+const email = 'user@example.com';
+admin.auth().generatePasswordResetLink(email, actionCodeSettings)
+  .then((link) => {
+    // Construct password reset email template, embed the link and send
+    // using custom SMTP server.
+    return sendCustomPasswordResetEmail(email, displayName, link);
+  })
+  .catch((error) => {
+    // Some error occurred.
+  });
+
+// [START email_verification_link]
+// Admin SDK API to generate the email verification link.
+const email = 'user@example.com';
+admin.auth().generateEmailVerificationLink(email, actionCodeSettings)
+  .then((link) => {
+    // Construct email verification template, embed the link and send
+    // using custom SMTP server.
+    return sendCustomVerificationEmail(email, displayName, link);
+  })
+  .catch((error) => {
+    // Some error occurred.
+  });
+// [END email_verification_link]
+
+// [START sign_in_with_email_link]
+// Admin SDK API to generate the sign in with email link.
+const email = 'user@example.com';
+admin.auth().generateSignInWithEmailLink(email, actionCodeSettings)
+  .then((link) => {
+    // Construct sign-in with email link template, embed the link and
+    // send using custom SMTP server.
+    return sendSignInEmail(email, displayName, link);
+  })
+  .catch((error) => {
+    // Some error occurred.
+  });
+// [END sign_in_with_email_link]
diff --git a/auth/import_users.js b/auth/import_users.js
@@ -0,0 +1,193 @@
+'use strict';
+const admin = require('firebase-admin');
+admin.initializeApp();
+
+//[START build_user_list]
+// Up to 1000 users can be imported at once.
+var userImportRecords = [
+  {
+    uid: 'uid1',
+    email: 'user1@example.com',
+    passwordHash: Buffer.from('passwordHash1'),
+    passwordSalt: Buffer.from('salt1')
+  },
+  {
+    uid: 'uid2',
+    email: 'user2@example.com',
+    passwordHash: Buffer.from('passwordHash2'),
+    passwordSalt: Buffer.from('salt2')
+  },
+  //...
+];
+//[END build_user_list]
+
+var userImportOptions = {
+  hash: {
+    algorithm: 'HMAC_SHA256',
+    key: Buffer.from('secretKey')
+  }
+};
+
+// [START import_users]
+admin.auth().importUsers(userImportRecords, userImportOptions)
+  .then(function(userImportResult) {
+    // The number of successful imports is determined via: userImportResult.successCount.
+    // The number of failed imports is determined via: userImportResult.failureCount.
+    // To get the error details.
+    userImportResult.forEach(function(indexedError) {
+        // The corresponding user that failed to upload.
+        console.log(userImportRecords[indexedError.index].uid +' failed to import',
+            indexedError.error);
+    });
+  })
+  .catch(function(error) {
+    // Some unrecoverable error occurred that prevented the operation from running.
+  });
+// [END import_users]
+
+// [START import_with_hmac] 
+admin.auth().importUsers([{
+  uid: 'some-uid',
+  email: 'user@example.com',
+  // Must be provided in a byte buffer.
+  passwordHash: Buffer.from('password-hash'),
+  // Must be provided in a byte buffer.
+  passwordSalt: Buffer.from('salt')
+}], {
+  hash: {
+    algorithm: 'HMAC_SHA256',
+    // Must be provided in a byte buffer.
+    key: Buffer.from('secret')
+  }
+}).then(function(results) {
+  results.errors.forEach(function(indexedError) {
+    console.log('Error importing user ' + indexedError.index);
+  });
+}).catch(function(error) {
+  console.log('Error importing users:', error);
+});
+// [END import_with_hmac] 
+
+// [START import_with_pbkdf]
+admin.auth().importUsers([{
+  uid: 'some-uid',
+  email: 'user@example.com',
+  // Must be provided in a byte buffer.
+  passwordHash: Buffer.from('password-hash'),
+  // Must be provided in a byte buffer.
+  passwordSalt: Buffer.from('salt')
+}], {
+  hash: {
+    algorithm: 'PBKDF2_SHA256',
+    rounds: 100000
+  }
+}).then(function(results) {
+  results.errors.forEach(function(indexedError) {
+    console.log('Error importing user ' + indexedError.index);
+  });
+}).catch(function(error) {
+  console.log('Error importing users:', error);
+});
+// [END import_with_pbkdf]
+
+// [START import_with_standard_scrypt]
+admin.auth().importUsers([{
+  uid: 'some-uid',
+  email: 'user@example.com',
+  // Must be provided in a byte buffer.
+  passwordHash: Buffer.from('password-hash'),
+  // Must be provided in a byte buffer.
+  passwordSalt: Buffer.from('salt')
+}], {
+  hash: {
+    algorithm: 'STANDARD_SCRYPT',
+    memoryCost: 1024,
+    parallelization: 16,
+    blockSize: 8,
+    derivedKeyLength: 64
+  }
+}).then(function(results) {
+  results.errors.forEach(function(indexedError) {
+    console.log('Error importing user ' + indexedError.index);
+  });
+}).catch(function(error) {
+  console.log('Error importing users:', error);
+});
+// [END import_with_standard_scrypt]
+
+// [START import_with_bcrypt]
+admin.auth().importUsers([{
+  uid: 'some-uid',
+  email: 'user@example.com',
+  // Must be provided in a byte buffer.
+  passwordHash: Buffer.from('password-hash')
+}], {
+  hash: {
+    algorithm: 'BCRYPT'
+  }
+}).then(function(results) {
+  results.errors.forEach(function(indexedError) {
+    console.log('Error importing user ' + indexedError.index);
+  });
+}).catch(function(error) {
+  console.log('Error importing users:', error);
+});
+// [END import_with_bcrypt]
+
+
+// [START import_with_scrypt]
+admin.auth().importUsers([{
+  uid: 'some-uid',
+  email: 'user@example.com',
+  // Must be provided in a byte buffer.
+  passwordHash: Buffer.from('base64-password-hash', 'base64'),
+  // Must be provided in a byte buffer.
+  passwordSalt: Buffer.from('base64-salt', 'base64')
+}], {
+  hash: {
+    algorithm: 'SCRYPT',
+    // All the parameters below can be obtained from the Firebase Console's users section.
+    // Must be provided in a byte buffer.
+    key: Buffer.from('base64-secret', 'base64'),
+    saltSeparator: Buffer.from('base64SaltSeparator', 'base64'),
+    rounds: 8,
+    memoryCost: 14
+  }
+}).then(function(results) {
+  results.errors.forEach(function(indexedError) {
+    console.log('Error importing user ' + indexedError.index);
+  });
+}).catch(function(error) {
+  console.log('Error importing users:', error);
+});
+// [END import_with_scrypt]
+
+// [START import_without_password]
+admin.auth().importUsers([{
+  uid: 'some-uid',
+  displayName: 'John Doe',
+  email: 'johndoe@gmail.com',
+  photoURL: 'http://www.example.com/12345678/photo.png',
+  emailVerified: true,
+  phoneNumber: '+11234567890',
+  // Set this user as admin.
+  customClaims: {admin: true},
+  // User with Google provider.
+  providerData: [{
+    uid: 'google-uid',
+    email: 'johndoe@gmail.com',
+    displayName: 'John Doe',
+    photoURL: 'http://www.example.com/12345678/photo.png',
+    providerId: 'google.com'
+  }]
+}]).then(function(results) {
+  results.errors.forEach(function(indexedError) {
+    console.log('Error importing user ' + indexedError.index);
+  });
+}).catch(function(error) {
+  console.log('Error importing users:', error);
+});
+// [END import_without_password]
+
+
+
