This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Google Sign-In Error with Flutter and Firebase: ApiException: 10

Posted on 11-19-2024 09:47 PM
SimpleNotion
New Member
Reply posted on --/--/---- --:-- AM

Hi Google Cloud Team,

I am experiencing an issue with Google Sign-In in my Flutter app, which uses Firebase for authentication.

Details:

  • Framework: Flutter
  • Plugin Used: google_sign_in: ^4.0.1+3
  • Backend: Firebase
  • Error Message:
    PlatformException(sign_in_failed, com.google.android.gms.common.api.ApiException: 10:, null)
  • Google Cloud Status: My OAuth Consent Screen is currently under "Pending Verification."

Steps I Have Taken:

  1. Added the SHA-1 key for my Android app in Firebase settings.
  2. Included the correct google-services.json file in the Android project.
  3. Created an OAuth 2.0 Client ID for my app in Google Cloud Console.
  4. Verified all configurations match the plugin and Firebase documentation.

Questions:

  1. What does the ApiException: 10 error indicate, and how can I resolve this?
  2. Does the "Pending Verification" status of the OAuth Consent Screen affect the Google Sign-In functionality?
  3. Are there any workarounds to test Google Sign-In while waiting for the OAuth Consent Screen verification?

Thank you for your support.

0 2 2,023
Topic Labels
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
KyleMari
Staff
Reply posted on --/--/---- --:-- AM

Hi @SimpleNotion,

Welcome to the Google Cloud community!

I understand that you have set up Firebase Authentication for your Flutter app, and that you recently encountered an ApiException 10 error in Google Sign-in.

The ApiException 10 error indicates two possible scenarios that could be happening in your Google Sign-in implementation:

  • SHA1 misconfiguration: Though I've taken note that you've seen to it that the SHA1 fingerprints from your client app and in Firebase console are matched, could you verify if your app is registered in Google Play? In cases like this, the App Signing key from Play console needs to be the SHA1 key that's registered in Firebase console (as explained here).
  • Invalid Client ID (for Android only): Another possible cause might be the fact that the OAuth client ID used for Google Sign-in implementation is incorrect. If you're on Android platform while having this issue, check if you're passing in a clientId parameter to GoogleSignIn. If so, make sure that you're using the Web client (Auto-created for Google Sign-in) client ID. This can be found in Google Cloud console > Credentials, in the list of OAuth client 2.0 client IDs. You can also gain a better explanation of this behavior here.

If your app's OAuth consent screen is in "Pending verification" status, this will not affect your Google Sign-in flow in terms of raising an exception or causing a disruption. However, please bear in mind the following scenarios that could happen under this status:

  • There will still be restrictions taking place. For instance, if your app attempts to access restricted scopes this may prompt Google to send warnings to users or even restrict them from proceeding.
  • Your app may be unable to display your desired display name and icon for your project on the OAuth consent screen. This may also mean that the app could be labeled as “Not Google verified”
  • If "Testing" is the current status while verification is still under evaluation, then only test users won’t encounter warnings about the app being “unverfied”. In case you have a previous OAuth configuration screen that was approved, that’s the one that will be currently in use while waiting for the new changes to be approved and take effect.
  • For Firebase Authentication, this won’t matter much because it only attempts to access email and profile scopes, all of which are non-sensitive scopes. This means users won’t be blocked, but they could still encounter labels like “unverified app” when non-test users are the ones attempting to log-in.

If your app's verification status is in  “Testing” mode, the workaround for this is to continue disregarding labels like “unverified app” if non-test users are involved, or you can continue managing (adding/removing) test users (limit of which is around 100). As long as you're not accessing restricted scopes, your users have a lesser chance of being warned or blocked.

For more information about the scenarios involved while your app undergoes an OAuth Consent Screen verification, you can check this documentation.

Lastly, I've noticed that the version of your google_sign_in plugin is outdated. At the time of this writing v6.2.2 is the latest version. It may be best to update your packages related to Firebase and Google Sign-in for your Flutter app.

Hope this helps.

Posted on --/--/---- --:-- AM
appDevS10
New Member
Reply posted on --/--/---- --:-- AM

I have added all json file and enable from firebase also. its working properly in debug and release mode. but when i try to test on playstore production mode then its not working.

0 Likes
Top Labels in this Space