DEV Community

loading...

Discussion on: How to share Firebase Authentication across subdomains

Collapse
brianburton profile image
Brian Burton

Thank you for pointing me in the right direction with this post. I came up with a simpler approach that doesn't require csst cookies, let me know what you think:
dev.to/brianburton/cross-domain-fi...

Collapse
johncarroll profile image
John Carroll Author

FYI, I added a link to your article to the bottom of mine.

Collapse
johncarroll profile image
John Carroll Author • Edited

Happy you've found this post helpful! I added a comment to your article but I'll repeat it here:

I like the general idea behind your approach, but wouldn't calling revokeRefreshTokens(<uid>) sign the user out of every browser and every device? Not just the browser/device they are trying to sign out of?

See this discussion which I had with another user who proposed using revokeRefreshTokens().