| 100 | * for more information about the specific properties below. |
| 101 | */ |
| 102 | export interface DecodedIdToken extends TokenPayload { |
| 103 | /** |
| 104 | * Time, in seconds since the Unix epoch, when the end-user authentication |
| 105 | * occurred. |
| 106 | * |
| 107 | * This value is not set when this particular ID token was created, but when the |
| 108 | * user initially logged in to this session. In a single session, the Firebase |
| 109 | * SDKs will refresh a user's ID tokens every hour. Each ID token will have a |
| 110 | * different [`iat`](#iat) value, but the same `auth_time` value. |
| 111 | */ |
| 112 | auth_time: number; |
| 113 | |
| 114 | /** |
| 115 | * Information about the sign in event, including which sign in provider was |
| 116 | * used and provider-specific identity details. |
| 117 | * |
| 118 | * This data is provided by the Firebase Authentication service and is a |
| 119 | * reserved claim in the ID token. |
| 120 | */ |
| 121 | firebase: { |
| 122 | /** |
| 123 | * Provider-specific identity details corresponding |
| 124 | * to the provider used to sign in the user. |
| 125 | */ |
| 126 | identities: { |
| 127 | /* eslint-disable-next-line @typescript-eslint/no-explicit-any */ |
| 128 | [key: string]: any; |
| 129 | }; |
| 130 | |
| 131 | /** |
| 132 | * The ID of the provider used to sign in the user. |
| 133 | * One of `"anonymous"`, `"password"`, `"facebook.com"`, `"github.com"`, |
| 134 | * `"google.com"`, `"twitter.com"`, `"apple.com"`, `"microsoft.com"`, |
| 135 | * `"yahoo.com"`, `"phone"`, `"playgames.google.com"`, `"gc.apple.com"`, |
| 136 | * or `"custom"`. |
| 137 | * |
| 138 | * Additional Identity Platform provider IDs include `"linkedin.com"`, |
| 139 | * OIDC and SAML identity providers prefixed with `"saml."` and `"oidc."` |
| 140 | * respectively. |
| 141 | */ |
| 142 | sign_in_provider: string; |
| 143 | |
| 144 | /** |
| 145 | * The type identifier or `factorId` of the second factor, provided the |
| 146 | * ID token was obtained from a multi-factor authenticated user. |
| 147 | * For phone, this is `"phone"`. |
| 148 | */ |
| 149 | sign_in_second_factor?: string; |
| 150 | |
| 151 | /** |
| 152 | * The `uid` of the second factor used to sign in, provided the |
| 153 | * ID token was obtained from a multi-factor authenticated user. |
| 154 | */ |
| 155 | second_factor_identifier?: string; |
| 156 | |
| 157 | /** |
| 158 | * The ID of the tenant the user belongs to, if available. |
| 159 | */ |
nothing calls this directly
no outgoing calls
no test coverage detected