Firebase auth is PCI DSS compliance or not?

[Saroj Sahoo]

Hi,

 

   I want to know that Firebase Auth is PCI DSS Compliance or not and how can i customise the user credential message if the user try with wrong password or username.Right now it's clearly returning which one is wrong.

[Kato Richardson]

Saroj,

All Firebase compliances are listed here: https://firebase.google.com/support/privacy/

Firebase Auth is a transport layer. 

The only auth provider we manage is email/password and phone auth. You can of course change the error messages you render in your UI for those services. 

The third party identity services (e.g. Google, Facebook, Twitter, GitHub, and LinkedIn) are all managed by those respective teams and would have their own data on compliance. You can't change the auth workflow for these services as they actually own the auth process, you just get the result back from their services on whether credentials were successfully obtained.

☼, Kato

On Thu, Nov 1, 2018 at 12:47 AM Saroj Sahoo <sarojc...@gmail.com> wrote:

Hi,

 

   I want to know that Firebase Auth is PCI DSS Compliance or not and how can i customise the user credential message if the user try with wrong password or username.Right now it's clearly returning which one is wrong.

--
You received this message because you are subscribed to the Google Groups "Firebase Google Group" group.
To unsubscribe from this group and stop receiving emails from it, send an email to firebase-tal...@googlegroups.com.
To post to this group, send email to fireba...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/firebase-talk/81afeb4e-2b04-473d-ad30-0cba596650be%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

--

Kato Richardson |

Developer Programs Eng |

kato...@google.com |

775-235-8398