This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Validate onRequest with oidcToken from cloud task

Posted on 01-16-2024 09:40 AM
dpelkey98
New Member
Reply posted on --/--/---- --:-- AM

Like the title suggests. I am creating cloud tasks and linking an oidcToken service account email. They are configured to call a Firebase onRequest function, but I do not know how to validate the token from the request. Nor can I find resources explaining how to.

Thanks, Dalton

1 1 115
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
lawrencenelson
Staff
Reply posted on --/--/---- --:-- AM

Hi @dpelkey98,

I believe @ John Hanley has answered a similar question in Stack Overflow:

Firebase Function is Cloud Functions. The steps to verify an OIDC identity token are the same running inside the cloud or outside. A service account is not required to verify as RSA public keys are used. Notes: 1) How are you getting the ID token (HTTP Authorization header)? Google IAP removes the signature to prevent token replay. IAP also validates the token for you. If your goal is to extract details from the token, the format is published: base64 header + base64 payload + base64 signature. The payload is JSON and has the identity details.

Top Labels in this Space