Bulk User Import API #174
Bulk User Import API #174
Conversation
* Removed the deprecated FirebaseCredential API * Removing the deprecated Task API
* Dropping support for GAE 7 * Removed GaeThreadFactory, GaeExecutorService and RevivingScheduledExecutor * Removed the deprecated FirebaseCredential API * Removing GAE java7 related APIs (GaeThreadFactory, RevivingScheduledExecutor) * Removed GaePlatform implementation * Added FirebaseScheduledExecutor * Updated documentation * Some minor nits from code reviews * Calling super method in DefaultRunLoop executor
* Dropping support for GAE 7 * Removed GaeThreadFactory, GaeExecutorService and RevivingScheduledExecutor * Removed the deprecated FirebaseCredential API * Removing GAE java7 related APIs (GaeThreadFactory, RevivingScheduledExecutor) * Removed GaePlatform implementation * Added FirebaseScheduledExecutor * Updated documentation * Removing LogWrapper API * Removing PrefixedLogger * Removing test config file * Updated CHANGELOG * Minor clean ups pointed out in the code review
| | ||
| if (hasPassword) { | ||
| checkArgument(options != null && options.getHash() != null, | ||
| "UserImportHash option is required when at least one user has a password"); |
There was a problem hiding this comment.
I would suggest that you explain how the UserImportHash can be set here:
"UserImportHash option is required when at least one user has a password. Provide a UserImportHash via UserImportOptions.withHash()."
| * @return This builder. | ||
| */ | ||
| public Builder addUserProvider(@NonNull UserProvider provider) { | ||
| this.userProviders.add(provider); |
There was a problem hiding this comment.
Can you explain to me (and maybe everyone in the comment) what the intended use for this is? How does it interact with the other fields in this builder, especially the overlapping ones?
| * @return A non-null {@link UserImportOptions}. | ||
| */ | ||
| public UserImportOptions build() { | ||
| return new UserImportOptions(this); |
There was a problem hiding this comment.
Add verification here that the hash is not null.
| | ||
| Map<String, Object> getProperties() { | ||
| ImmutableMap.Builder<String, Object> properties = ImmutableMap.builder(); | ||
| if (hash != null) { |
There was a problem hiding this comment.
You can mark hash @nonnull and remove this check.
| /** | ||
| * Returns the number of users that were imported successfully. | ||
| * | ||
| * @return an integer (possibly zero). |
There was a problem hiding this comment.
Here an below: You should update this to describe that the number represents. It's already clear that you are returning an integer.
| BasicHash(String name, Builder builder) { | ||
| super(name); | ||
| checkArgument(builder.rounds >= 0 && builder.rounds <= 120000, | ||
| "A non-empty key is required for HMAC algorithms"); |
There was a problem hiding this comment.
This error message doesn't match what it is verifying.
| * Firebase Auth. See {@link StandardScrypt} for the standard Scrypt algorithm. Can be used as an | ||
| * instance of {@link com.google.firebase.auth.UserImportHash} when importing users. | ||
| */ | ||
| public final class Scrypt extends UserImportHash { |
There was a problem hiding this comment.
Can we make this inherit BasicHash and re-use setRounds()? On that note, should BasicHash be renamed to better reflect what it does?
There was a problem hiding this comment.
It seems there are 5 types of hash algorithms that we need to support:
- HMAC hashes
- MD5, SHA, PBKDF etc
- Scrypt
- StandardScrypt
- Bcrypt
I refer to the 2nd category as basic hashes for the lack of a better name. I think it makes sense to not have Scrypt extend from BasicHash (the allowed integer ranges are different). But I'm certainly open to calling BasicHash something else. Any suggestions?
There was a problem hiding this comment.
What do you think of making BasicHash a "RepeatableHash" interface? You will have to verify the range in each implementing class, but it's a nicely named interface and would convey some property about the hash functions that adhere to it.
There was a problem hiding this comment.
Thanks for the suggestion. I renamed BasicHash to RepeatableHash, and passed range interval as constructor parameters. This enables us to reuse it in Scrypt as well.
| import com.google.api.client.util.Key; | ||
| import java.util.List; | ||
| | ||
| public class UploadAccountResponse { |
There was a problem hiding this comment.
Please add a some JavaDoc snippet, even for internal classes.
| UserRecord savedUser = auth.getUserAsync(randomId).get(); | ||
| assertEquals(userEmail, savedUser.getEmail()); | ||
| String idToken = signInWithPassword(userEmail, "password"); | ||
| assertTrue(!Strings.isNullOrEmpty(idToken)); |
| FirebaseAuth.getInstance().importUsersAsync(users); | ||
| fail("No error thrown for missing hash option"); | ||
| } catch (IllegalArgumentException expected) { | ||
| // expected |
There was a problem hiding this comment.
Please verify the error message. That will also make it super obvious what this test is verifying.
| @schmidt-sebastian thanks for the thorough review. Addressed pretty much all the comments, and left one follow up question (about renaming |
| checkArgument(builder.rounds >= 0 && builder.rounds <= 120000, | ||
| "Rounds value must be between 0 and 120000 (inclusive)."); | ||
| checkArgument(builder.rounds >= min && builder.rounds <= max, | ||
| "Rounds value must be between %s and %s (inclusive).", min, max); |
There was a problem hiding this comment.
| import com.google.common.collect.ImmutableMap; | ||
| import com.google.firebase.auth.UserImportHash; | ||
| import java.util.Map; | ||
| |
There was a problem hiding this comment.
Can you add a short class comment here?
2 participants
Introduces the following new APIs for importing users to Firebase Auth in bulk (1000 users per API call):
Also add the
UserImportHashandUserImportResultAPIs.go/firebase-admin-user-import