oppia-android icon indicating copy to clipboard operation
oppia-android copied to clipboard
verified publisher icon oppia

Implement Firebase authentication for verifying incoming Android messages

Open jcqli opened this issue 4 years ago • 3 comments

Fix part of #53

Feedback reporting currently verifies Android requests in the backend by checking a secrete API key. This only validates a message and cannot safely guarantee the sender of the message. Firebase anonymous authentication allows a more secure method to safely authenticate the message sender.

Feedback reporting design doc

jcqli avatar Apr 06 '21 18:04 jcqli

@jcqli I would like to work on this issue, can you please specify where in the app we're using this?

Victor-Titan avatar Apr 14 '21 04:04 Victor-Titan

@jcqli I would like to work on this issue, can you please specify where in the app we're using this?

We currently do not use Firebase authentication at all, and this would likely need to be implemented for all our network requests, not just feedback reporting. I don't believe this issue is ready to be started yet, @BenHenning WDYT?

jcqli avatar Apr 14 '21 06:04 jcqli

This isn't ready yet to work on.

BenHenning avatar Nov 20 '21 03:11 BenHenning