Federated Identity Authentication Providers

Despite email/password authentication being the most common authentication mechanism, it is hard to make this form of authentication as secure as possible. This is because it requires users to use strong passwords, which they don’t always make. Malicious actors can also try to get a hold of users’ passwords by phishingA type of cybercrime where victims are contacted by email, telephone, or text message by an attacker posing as a trustworthy entity in order to obtain sensitive information or data.

Firebase offers other sign-in methods that mitigate these security risks. One of these methods is via social logins or federated identity providers. Federated identity providers use OpenID Connect, based on OAuth2.0 to authenticate users. The Firebase Authentication SDK provides functions that allow users to sign in with their Google, Apple, ...