'Firebase Auth, DecodedIdToken.auth_time doesn't always match UserMetadata.lastSignInTime?

From the docs, I assumed that DecodedIdToken.auth_time would always match UserMetadata.lastSignInTime, but this doesn't always appear to be the case. Some users in my app have auth_time just over 2 days older than lastSignInTime, others are exactly the same.

Is this a bug or am I misunderstanding how these APIs work?

For context, it's handy to use auth_time for server-side session expiration checks (i.e. users must re-authenticate every X days) because you have to call .verifyIdToken() in the admin SDK anyway. It's useful for the client side to also have session expiration checks, but the client only has access to lastSignInTime. It's a fairly easy workaround to call .getUser() on the server, but that is an extra API call.

firebasefirebase-authentication


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

How to use use Firestore document field's HashMap key value and populate recyclerview?

How to set up Firebase Push Notification with Deep Link with Unity3D

Xcode build is missing expected TARGET_BUILD_DIR build setting

How to get TypeScript to recognize firebase import

FirebaseMessagingService Illegal Access

How do I access data from a top-level document in a Cloud firestore trigger with Cloud functions?

Firebase push notifications stops working after some time for all users in my Flutter app. Is this correct flutter fcm implementation?

Firebase deploy node modules issue

React-router did not work on production

In new Firebase, how to use multiple config file in xcode?

Flutter Firebase foreground push notification not showing but background is working

Datatables search, filter, and export with Firebase

Can't fill array with firestore data

"No such module 'Firebase'" when add Firebase into a library

FCM notification not retrieve when app is closed