Sample code for 30+ languages & platforms
C

Firebase JWT User Authentication

See more Firebase Examples

Demonstrates how to authenticate a Firebase REST API call using a JSON service account private key.

Chilkat C Downloads

C
#include <C_CkFileAccess.h>
#include <C_CkAuthGoogle.h>
#include <C_CkSocket.h>

void ChilkatSample(void)
    {
    BOOL success;
    HCkFileAccess fac;
    const char *jsonKey;
    HCkAuthGoogle gAuth;
    HCkSocket tlsSock;

    success = FALSE;

    // This example requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // First load the Firebase JSON private key into a string.
    fac = CkFileAccess_Create();
    jsonKey = CkFileAccess_readEntireTextFile(fac,"qa_data/firebase/fish-8abda-firebase-adminsdk-1ys3o-347d70d581.json","utf-8");
    if (CkFileAccess_getLastMethodSuccess(fac) != TRUE) {
        printf("%s\n",CkFileAccess_lastErrorText(fac));
        CkFileAccess_Dispose(fac);
        return;
    }

    // A JSON private key looks like this:

    // {
    //   "type": "service_account",
    //   "project_id": "fish-8abda",
    //   "private_key_id": "347e70d5810b92516905d2de12d292c16159375b",
    //   "private_key": "-----BEGIN PRIVATE KEY-----\nMIIEvwIBADANBgkqhkiG9 ...  KQRtMB1gBu3KQxgoA==\n-----END PRIVATE KEY-----\n",
    //   "client_email": "firebase-adminsdk-1ys3o@fish-8abda.iam.gserviceaccount.com",
    //   "client_id": "107827947504591332107",
    //   "auth_uri": "https://accounts.google.com/o/oauth2/auth",
    //   "token_uri": "https://accounts.google.com/o/oauth2/token",
    //   "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
    //   "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/firebase-adminsdk-1ys3o%40fish-8abda.iam.gserviceaccount.com"
    // }

    gAuth = CkAuthGoogle_Create();
    CkAuthGoogle_putJsonKey(gAuth,jsonKey);

    // Choose a scope.
    // The scope could be "https://www.googleapis.com/auth/firebase.database"
    // or
    // "https://www.googleapis.com/auth/firebase.database https://www.googleapis.com/auth/userinfo.email"

    CkAuthGoogle_putScope(gAuth,"https://www.googleapis.com/auth/firebase.database https://www.googleapis.com/auth/userinfo.email");

    // Request an access token that is valid for this many seconds.
    CkAuthGoogle_putExpireNumSeconds(gAuth,3600);

    // If the application is requesting delegated access:
    // The email address of the user for which the application is requesting delegated access,
    // then set the email address here. (Otherwise leave it empty.)
    CkAuthGoogle_putSubEmailAddress(gAuth,"");

    // Connect to www.googleapis.com using TLS (TLS 1.2 is the default.)
    // The Chilkat socket object is used so that the connection can be established
    // through proxies or an SSH tunnel if desired.
    tlsSock = CkSocket_Create();
    success = CkSocket_Connect(tlsSock,"www.googleapis.com",443,TRUE,5000);
    if (success != TRUE) {
        printf("%s\n",CkSocket_lastErrorText(tlsSock));
        CkFileAccess_Dispose(fac);
        CkAuthGoogle_Dispose(gAuth);
        CkSocket_Dispose(tlsSock);
        return;
    }

    // Send the request to obtain the access token.
    success = CkAuthGoogle_ObtainAccessToken(gAuth,tlsSock);
    if (success != TRUE) {
        printf("%s\n",CkAuthGoogle_lastErrorText(gAuth));
        CkFileAccess_Dispose(fac);
        CkAuthGoogle_Dispose(gAuth);
        CkSocket_Dispose(tlsSock);
        return;
    }

    // Examine the access token:
    printf("Firebase Access Token: %s\n",CkAuthGoogle_accessToken(gAuth));

    // Save the token to a file (or wherever desired).  This token is valid for 1 hour.
    CkFileAccess_WriteEntireTextFile(fac,"qa_data/tokens/firebaseToken.txt",CkAuthGoogle_accessToken(gAuth),"utf-8",FALSE);


    CkFileAccess_Dispose(fac);
    CkAuthGoogle_Dispose(gAuth);
    CkSocket_Dispose(tlsSock);

    }