What will happen, if a user doesn't verify the email?
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box;
}
I am trying to add Email and password verification using Firebase, and I saw on their snippet that you can choose whether to send a verification email or not.
What happens if a user doesn't verify? Will his account be automatically deleted by Firebase?
java android firebase firebase-authentication
add a comment |
I am trying to add Email and password verification using Firebase, and I saw on their snippet that you can choose whether to send a verification email or not.
What happens if a user doesn't verify? Will his account be automatically deleted by Firebase?
java android firebase firebase-authentication
1
No, that function is for you to check if you want to proceed the user ahead or keep them waiting for confirming the mail.
– Vikash Bijarniya
Nov 23 '18 at 11:37
Thank you, then does Firebase has some built-in anti spam/robots protection in case I do not verify?
– Fireio
Nov 23 '18 at 11:46
1
Never read about this, but why its bothering you?
– Lekr0
Nov 23 '18 at 13:58
add a comment |
I am trying to add Email and password verification using Firebase, and I saw on their snippet that you can choose whether to send a verification email or not.
What happens if a user doesn't verify? Will his account be automatically deleted by Firebase?
java android firebase firebase-authentication
I am trying to add Email and password verification using Firebase, and I saw on their snippet that you can choose whether to send a verification email or not.
What happens if a user doesn't verify? Will his account be automatically deleted by Firebase?
java android firebase firebase-authentication
java android firebase firebase-authentication
edited Nov 23 '18 at 14:52
Frank van Puffelen
245k30389418
245k30389418
asked Nov 23 '18 at 11:35
FireioFireio
527
527
1
No, that function is for you to check if you want to proceed the user ahead or keep them waiting for confirming the mail.
– Vikash Bijarniya
Nov 23 '18 at 11:37
Thank you, then does Firebase has some built-in anti spam/robots protection in case I do not verify?
– Fireio
Nov 23 '18 at 11:46
1
Never read about this, but why its bothering you?
– Lekr0
Nov 23 '18 at 13:58
add a comment |
1
No, that function is for you to check if you want to proceed the user ahead or keep them waiting for confirming the mail.
– Vikash Bijarniya
Nov 23 '18 at 11:37
Thank you, then does Firebase has some built-in anti spam/robots protection in case I do not verify?
– Fireio
Nov 23 '18 at 11:46
1
Never read about this, but why its bothering you?
– Lekr0
Nov 23 '18 at 13:58
1
1
No, that function is for you to check if you want to proceed the user ahead or keep them waiting for confirming the mail.
– Vikash Bijarniya
Nov 23 '18 at 11:37
No, that function is for you to check if you want to proceed the user ahead or keep them waiting for confirming the mail.
– Vikash Bijarniya
Nov 23 '18 at 11:37
Thank you, then does Firebase has some built-in anti spam/robots protection in case I do not verify?
– Fireio
Nov 23 '18 at 11:46
Thank you, then does Firebase has some built-in anti spam/robots protection in case I do not verify?
– Fireio
Nov 23 '18 at 11:46
1
1
Never read about this, but why its bothering you?
– Lekr0
Nov 23 '18 at 13:58
Never read about this, but why its bothering you?
– Lekr0
Nov 23 '18 at 13:58
add a comment |
1 Answer
1
active
oldest
votes
When a user verifies their email address with Firebase Authentication, the isEmailVerified
property in their profile will be marked as true. This is the only change that Firebase makes. It does not make any other changes based on whether the user verifies or does not verify their account.
Typically you'll use the value of isEmailVerified
in other parts of your app. Some examples:
- The first activity of your app may prompt the user to verify their email address, if
isEmailVerified
returns false.
You can authorize only users with a verified email address to write to your database, using Firebase's server-side security rules.
For the Realtime Database this would look like:
".write": "auth.token. email_verified === true"
And for Cloud Firestore this would be the equivalent:
allow write: if request.auth.token.email_verified;
You can periodically clean up unverified accounts with the Firebase Admin SDK. Check out this example of deleting inactive users. You'll want to change the code to capture unverified users, instead of inactive ones.
Also see:
- Email Verification in Firebase Auth
- Security rule to only allow write for users with verified emails
add a comment |
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53445957%2fwhat-will-happen-if-a-user-doesnt-verify-the-email%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
When a user verifies their email address with Firebase Authentication, the isEmailVerified
property in their profile will be marked as true. This is the only change that Firebase makes. It does not make any other changes based on whether the user verifies or does not verify their account.
Typically you'll use the value of isEmailVerified
in other parts of your app. Some examples:
- The first activity of your app may prompt the user to verify their email address, if
isEmailVerified
returns false.
You can authorize only users with a verified email address to write to your database, using Firebase's server-side security rules.
For the Realtime Database this would look like:
".write": "auth.token. email_verified === true"
And for Cloud Firestore this would be the equivalent:
allow write: if request.auth.token.email_verified;
You can periodically clean up unverified accounts with the Firebase Admin SDK. Check out this example of deleting inactive users. You'll want to change the code to capture unverified users, instead of inactive ones.
Also see:
- Email Verification in Firebase Auth
- Security rule to only allow write for users with verified emails
add a comment |
When a user verifies their email address with Firebase Authentication, the isEmailVerified
property in their profile will be marked as true. This is the only change that Firebase makes. It does not make any other changes based on whether the user verifies or does not verify their account.
Typically you'll use the value of isEmailVerified
in other parts of your app. Some examples:
- The first activity of your app may prompt the user to verify their email address, if
isEmailVerified
returns false.
You can authorize only users with a verified email address to write to your database, using Firebase's server-side security rules.
For the Realtime Database this would look like:
".write": "auth.token. email_verified === true"
And for Cloud Firestore this would be the equivalent:
allow write: if request.auth.token.email_verified;
You can periodically clean up unverified accounts with the Firebase Admin SDK. Check out this example of deleting inactive users. You'll want to change the code to capture unverified users, instead of inactive ones.
Also see:
- Email Verification in Firebase Auth
- Security rule to only allow write for users with verified emails
add a comment |
When a user verifies their email address with Firebase Authentication, the isEmailVerified
property in their profile will be marked as true. This is the only change that Firebase makes. It does not make any other changes based on whether the user verifies or does not verify their account.
Typically you'll use the value of isEmailVerified
in other parts of your app. Some examples:
- The first activity of your app may prompt the user to verify their email address, if
isEmailVerified
returns false.
You can authorize only users with a verified email address to write to your database, using Firebase's server-side security rules.
For the Realtime Database this would look like:
".write": "auth.token. email_verified === true"
And for Cloud Firestore this would be the equivalent:
allow write: if request.auth.token.email_verified;
You can periodically clean up unverified accounts with the Firebase Admin SDK. Check out this example of deleting inactive users. You'll want to change the code to capture unverified users, instead of inactive ones.
Also see:
- Email Verification in Firebase Auth
- Security rule to only allow write for users with verified emails
When a user verifies their email address with Firebase Authentication, the isEmailVerified
property in their profile will be marked as true. This is the only change that Firebase makes. It does not make any other changes based on whether the user verifies or does not verify their account.
Typically you'll use the value of isEmailVerified
in other parts of your app. Some examples:
- The first activity of your app may prompt the user to verify their email address, if
isEmailVerified
returns false.
You can authorize only users with a verified email address to write to your database, using Firebase's server-side security rules.
For the Realtime Database this would look like:
".write": "auth.token. email_verified === true"
And for Cloud Firestore this would be the equivalent:
allow write: if request.auth.token.email_verified;
You can periodically clean up unverified accounts with the Firebase Admin SDK. Check out this example of deleting inactive users. You'll want to change the code to capture unverified users, instead of inactive ones.
Also see:
- Email Verification in Firebase Auth
- Security rule to only allow write for users with verified emails
answered Nov 23 '18 at 15:02
Frank van PuffelenFrank van Puffelen
245k30389418
245k30389418
add a comment |
add a comment |
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53445957%2fwhat-will-happen-if-a-user-doesnt-verify-the-email%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
1
No, that function is for you to check if you want to proceed the user ahead or keep them waiting for confirming the mail.
– Vikash Bijarniya
Nov 23 '18 at 11:37
Thank you, then does Firebase has some built-in anti spam/robots protection in case I do not verify?
– Fireio
Nov 23 '18 at 11:46
1
Never read about this, but why its bothering you?
– Lekr0
Nov 23 '18 at 13:58