- Newest
- Most votes
- Most comments
In this case AppSync is looking for a token issuer that conforms with the OIDC specification. Which means they would need to have a /.well-known/openid-configuration
endpoint.
It's not clear to me from the Firebase documentation that Firebase is actually a full OIDC provider (just because it issues an identity token in the JWT format doesn't necessarily mean it has all the OIDC endpoints)
You could potentially check by trying to navigate to https://securetoken.google.com/<project_id>/.well-known/openid-configuration
with the correct project_id inserted.
If it's not OIDC compliant, but you still want to use the Identity Token issued by Firebase for authorization, you could implement Lambda Authorization and use the Firebase SDK or Third party library approaches described in the Firebase documentation.
Relevant content
- Accepted Answerasked 3 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago