Stop Token Generation process if Log In credentials (email/password) provided by user are incorrect

[saadmustafa12]

Hey there!

I really need some help in solving a specific problem with this library.

Let me explain what I am trying to achieve:

I have created a configuration web page that runs on ESP32 for WiFi configuration and linking of device with User Account through Firebase. After successful connection with WiFi user have to provide his email and password. After that ESP32 tries to log in with provided credentials through your library. So now if user provided details are incorrect token generation process shows error, this error is handled properly in my code. But problem is that ESP stuck in endless token generation loop until error goes away. There is no way to stop that loop and inform user about wrong password so he can provide correct password.

My question is how can I stop the token generation process if error occurs?

Looking forward to your help....

Thank you !

[mobizt]

You can't stop and should not stop the authentication process after it initialized with initializeApp.

You just call initializeApp anytime you want to re-initialize with a new credential or authentication config provider classes.

You should not use initializeApp to validate users.

You should verify the user using Google APIs by sending the HTTP(s) POST request via this endpoint on port 443.

https://www.googleapis.com/identitytoolkit/v3/relyingparty/verifyPassword?key=<your web API key>

With the folowing payload

{"email":"user email", "password":"user password", "returnSecureToken":true}

Please note that, the above Google API is deprecated but still can use.

[mobizt]

Now you can deinitialize the auth task handler using deinitializeApp(app) in latest version v1.2.11.

For user verification, you can use this code.

FirebaseClient/examples/App/AppInitialization/Async/Callback/UserAuth/UserAuth.ino

Lines 180 to 233 in 7ea1b0b

	bool verifyUser(const String &apiKey, const String &email, const String &password)
	{
	if (ssl_client.connected())
	ssl_client.stop();
	String host = "www.googleapis.com";
	bool ret = false;
	if (ssl_client.connect(host.c_str(), 443) > 0)
	{
	String payload = "{\"email\":\"";
	payload += email;
	payload += "\",\"password\":\"";
	payload += password;
	payload += "\",\"returnSecureToken\":true}";
	String header = "POST /identitytoolkit/v3/relyingparty/verifyPassword?key=";
	header += apiKey;
	header += " HTTP/1.1\r\n";
	header += "Host: ";
	header += host;
	header += "\r\n";
	header += "Content-Type: application/json\r\n";
	header += "Content-Length: ";
	header += payload.length();
	header += "\r\n\r\n";
	if (ssl_client.print(header) == header.length())
	{
	if (ssl_client.print(payload) == payload.length())
	{
	unsigned long ms = millis();
	while (ssl_client.connected() && ssl_client.available() == 0 && millis() - ms < 5000)
	{
	delay(1);
	}
	ms = millis();
	while (ssl_client.connected() && ssl_client.available() && millis() - ms < 5000)
	{
	String line = ssl_client.readStringUntil('\n');
	if (line.length())
	{
	ret = line.indexOf("HTTP/1.1 200 OK") > -1;
	break;
	}
	}
	ssl_client.stop();
	}
	}
	}
	return ret;
	}

[saadmustafa12]

I will try that thank you so much, I really appreciate your work