getIdToken returns expired token #10781
Unanswered
ashley-arta
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
In the documentation, it says getIdToken will always return a valid token, even if
forceRefreshis false. However, during our testing, we found cases where the jwt token returned has expired for about 90 seconds on Android.In
FlutterFirebaseAuthPlugin.java, it's calling the close-source FirebaseUser codeGetTokenResult tokenResult = Tasks.await(firebaseUser.getIdToken(forceRefresh));and I can't find any code that checks the validity of the token. This method also doesn't say in the documentation that the token is valid https://firebase.google.com/docs/reference/android/com/google/firebase/auth/FirebaseUser#getIdToken(boolean).Maybe I missed something... how is the validity of the jwt token guaranteed?
Beta Was this translation helpful? Give feedback.
All reactions