Merge pull request #47 from CreateThrive/feature/facebook-google-microsoft-auth

Feature: Facebook, Google and Microsoft Authentication

Author: TOPOFGR

.env.example

@@ -6,6 +6,5 @@ REACT_APP_FIRE_BASE_STORAGE_BUCKET = ''
 REACT_APP_FIRE_BASE_MESSAGING_SENDER_ID = ''
 REACT_APP_FIRE_BASE_APP_ID = ''
 REACT_APP_FIRE_BASE_MEASURMENT_ID = ''
-REACT_APP_CLOUD_FUNCTIONS_REST_API = '<FIREBASE_CLOUD_FUNCTIONS_URL>/requestsApp'
 REACT_APP_LOGIN_PAGE_URL = 'http://localhost:3000/login'
 REACT_APP_FIRE_BASE_STORAGE_API = 'https://firebasestorage.googleapis.com/v0/b/${REACT_APP_FIRE_BASE_STORAGE_BUCKET}'

README.md

@@ -15,6 +15,7 @@ Boilerplate with React ⚛️ and Firebase 🔥designed to quickly spin up a ful
 <!-- START doctoc generated TOC please keep comment here to allow auto update -->
 <!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
 
+
 - [What is this?](#what-is-this)
 - [Why should I use it?](#why-should-i-use-it)
 - [Features](#features)
@@ -62,6 +63,17 @@ Boilerplate with React ⚛️ and Firebase 🔥designed to quickly spin up a ful
 - [File Upload](#file-upload)
   - [Image resize extension](#image-resize-extension)
   - [Storage Rules](#storage-rules)
+- [Authentication via social media accounts](#authentication-via-social-media-accounts)
+  - [How it works?](#how-it-works)
+  - [Can I add more login methods?](#can-i-add-more-login-methods)
+  - [Facebook](#facebook)
+    - [Enabling Facebook with Firebase](#enabling-facebook-with-firebase)
+    - [Facebook for developers App configuration](#facebook-for-developers-app-configuration)
+    - [Continuing with the Firebase setup](#continuing-with-the-firebase-setup)
+    - [Configure Facebook sign-in/sign-up for production](#configure-facebook-sign-insign-up-for-production)
+  - [Google](#google)
+  - [Microsoft](#microsoft)
+    - [Azure App configuration](#azure-app-configuration)
 - [Contributors](#contributors)
 - [License](#license)
 
@@ -660,6 +672,106 @@ service firebase.storage {
 }
 ```
 
+## Authentication via social media accounts
+
+In this boilerplate users have the option to login via e-mail and password but also they can sign-up/sign-in with their Facebook, Google and Microsoft accounts.
+
+<p align="center">
+  <img src="https://i.imgur.com/xQz5pSR.png">
+</p>
+
+### How it works?
+
+We implemented social media authentication using Firebase!. You can take a look at their documentation [here](https://firebase.google.com/docs/auth/web/google-signin). In the following section we will explain how to configure each of these authentication methods.
+
+### Can I add more login methods?
+
+Yes you can!. We already have the setup in place for more login methods like Twitter, GitHub, etc. You can add them without chaning much code at all. You can see other login methods provided by Firebase [here](https://firebase.google.com/docs/auth/web/start).
+
+### Facebook
+
+#### Enabling Facebook with Firebase
+
+1. Go to your [Firebase console](https://console.firebase.google.com/).
+2. Go to the "**Develop**" option and then click on "**Authentication**".
+3. Go to the tab "**Sign-in method**".
+4. Now select the "**Facebook**" option and copy the **_OAuth redirect URL_** provided by Firebase.
+5. Keep this window open because we need to configure the app on Facebook's developer site.
+
+#### Facebook for developers App configuration
+
+Log-in/Sign-up into your [Facebook for developers](https://developers.facebook.com/) account, create an app and configure it to make Sign-in via Facebook available.
+
+<ol>
+<li>Name your App</li>
+<li>Click on configure on Log in with Facebook</li>
+<li>Choose the Web option </li>
+<li>Select Web, set http://localhost:3000 as the URL</li>
+<li>Select Product Settings > Facebook Login config on the Side Bar</li>
+<li>Put your OAuth redirect URI (the one you copied in the past), you can verify your redirect URI at the buttom of this page</li>
+<li>Select Configuration > Basic on the Side Bar</li>
+<li>There you have your app id and your app secret for setting them on your project from the Firebase console</li>
+</ol>
+
+#### Continuing with the Firebase setup
+
+<ol>
+<li>Go to the Firebase Console window we left open in the previous steps.</li>
+<li>Put the app id and the app secret we recieved from the last section.</li>
+<li>Enable the Facebook provider.</li>
+</ol>
+
+Now you have configured Facebook auth in you project.
+
+#### Configure Facebook sign-in/sign-up for production
+
+<ol>
+<li>Select Configuration > Basic on the Side Bar</li>
+<li>Put your contact email and your privacy policy URL</li>
+<li>At the buttom of the page, select Website and change the URL for your domain</li>
+<li>Save Changes</li>
+<li>Turn off the "on Development" switch</li> 
+</ol>
+
+You can have a more in-depth look about Facebook login with Firebase [here](https://firebase.google.com/docs/auth/web/facebook-login).
+
+### Google
+
+For setting your Google authentication you will only need to go to your project from the [Firebase console](https://console.firebase.google.com/), then select Authentication on the Side Bar and Sign-in method. Click the Google logo, select a Project support email, enable the Google provider and save.
+
+You can have a more in-depth look about Google login with Firebase [here](https://firebase.google.com/docs/auth/web/google-signin).
+
+### Microsoft
+
+Go to your [Firebase console](https://console.firebase.google.com/), select the project, then select Authentication on the Side Bar and Sign-in method. Click the Microsoft logo, copy the redirect URL and keep this window open for later.
+
+Before setting your Application id and the Application secret on the Microsoft Sign-in method from the Firebase console, you will need to log-in into your [Azure](https://portal.azure.com/) account, create an app and configure it to make Sign-in via Microsoft available.
+
+#### Azure App configuration
+
+<ol>
+<li>Once you are logged to your account click the left, top corner and select Azure Active Directory.</li>
+<li>Under Manage, select App registration.</li>
+<li>Name your App.</li>
+<li>Specify who can use the application.</li>
+<li>Put your redirect URL (the one you already copied).</li>
+<li>Select Register.</li>
+<li>Select Certificates & secrets from the Side Bar.</li>
+<li>Select Add a new client secret.</li>
+<li>Set the expiration time.</li>
+</ol>
+
+For more on [Register](https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app) and [configure the app](https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-configure-app-access-web-apis).
+
+**Firebase console**
+
+<li>Go to the Firebase Console window from the beginning</li>
+<li>Put the Application id, located on Overview on your Azure App.</li>
+<li>Put Application secret, located on Certificates & secrets on your Azure App.</li>
+<li>Enable the Microsoft provider.</li>
+
+You can have a more in-depth look about Microsoft login with Firebase [here](https://firebase.google.com/docs/auth/web/microsoft-oauth).
+
 ## Contributors
 
 We'd like to thank these awesome people who made this whole thing happen:

database.rules.json

@@ -2,11 +2,11 @@
   "rules": {
     "users": {
       "$user": {
-        ".write": "auth !== null && auth.token.email_verified === true && ((auth.token.isAdmin === true && data.child('isAdmin').val() === false) || auth.uid === $user)",
-        ".read": "auth !== null && auth.token.email_verified === true && ((auth.token.isAdmin === true && data.child('isAdmin').val() === false) || auth.uid === $user)"
+        ".write": "auth !== null && ((auth.token.isAdmin === true && data.child('isAdmin').val() === false) || auth.uid === $user)",
+        ".read": "auth !== null && ((auth.token.isAdmin === true && data.child('isAdmin').val() === false) || auth.uid === $user)"
       },
-      ".write": "auth !== null && auth.token.email_verified === true && auth.token.isAdmin === true",
-      ".read": "auth !== null && auth.token.email_verified === true && auth.token.isAdmin === true"
+      ".write": "auth !== null && auth.token.isAdmin === true",
+      ".read": "auth !== null && auth.token.isAdmin === true"
     }
   }
 }

package-lock.json

@@ -4,6 +4,7 @@
   "private": true,
   "dependencies": {
     "bulma": "^0.8.2",
+    "bulma-social": "^1.1.1",
     "classnames": "^2.2.6",
     "cookies-js": "^1.2.3",
     "date-fns": "^2.14.0",

package.json

@@ -47,8 +47,11 @@ exports[`<DatePickerStyled /> rendering should render without crashing 1`] = `
         "Home.content": "Home content",
         "Home.home": "Home",
         "Login.email": "E-mail Address",
+        "Login.facebook": "Continue with Facebook",
         "Login.forgotPassword": "Forgot Password?",
+        "Login.google": "Continue with Google",
         "Login.login": "Login",
+        "Login.microsoft": "Continue with Microsoft",
         "Login.password": "Password",
         "Login.setNewPassword": "Set your new password",
         "Login.setPassword": "Set Password",
@@ -97,10 +100,14 @@ exports[`<DatePickerStyled /> rendering should render without crashing 1`] = `
         "Users.permDelete": "This will permanently delete the user. Action can not be undone.",
         "Users.search": "Search:",
         "Users.users": "Users",
+        "auth/account-exists-with-different-credential": "Email on another sign in method",
+        "auth/cancelled-popup-request": "Too many pop ups, just one pop up is allowed",
         "auth/email-already-exists": "Email already in use",
         "auth/expired-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-email": "Email is invalid",
+        "auth/popup-blocked": "Pop up blocked by the browser, please enable pop ups for this page",
+        "auth/popup-closed-by-user": "Operation cancelled, pop up was closed",
         "auth/too-many-requests": "Too many attempts made, try again later",
         "auth/user-disabled": "User disabled",
         "auth/wrong-password": "Invalid credentials",

src/components/DatePicker/__snapshots__/DatePicker.test.js.snap

@@ -47,8 +47,11 @@ exports[`<Layout /> rendering should render without crashing 1`] = `
         "Home.content": "Home content",
         "Home.home": "Home",
         "Login.email": "E-mail Address",
+        "Login.facebook": "Continue with Facebook",
         "Login.forgotPassword": "Forgot Password?",
+        "Login.google": "Continue with Google",
         "Login.login": "Login",
+        "Login.microsoft": "Continue with Microsoft",
         "Login.password": "Password",
         "Login.setNewPassword": "Set your new password",
         "Login.setPassword": "Set Password",
@@ -97,10 +100,14 @@ exports[`<Layout /> rendering should render without crashing 1`] = `
         "Users.permDelete": "This will permanently delete the user. Action can not be undone.",
         "Users.search": "Search:",
         "Users.users": "Users",
+        "auth/account-exists-with-different-credential": "Email on another sign in method",
+        "auth/cancelled-popup-request": "Too many pop ups, just one pop up is allowed",
         "auth/email-already-exists": "Email already in use",
         "auth/expired-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-email": "Email is invalid",
+        "auth/popup-blocked": "Pop up blocked by the browser, please enable pop ups for this page",
+        "auth/popup-closed-by-user": "Operation cancelled, pop up was closed",
         "auth/too-many-requests": "Too many attempts made, try again later",
         "auth/user-disabled": "User disabled",
         "auth/wrong-password": "Invalid credentials",

src/components/Layout/__snapshots__/Layout.test.js.snap

@@ -48,8 +48,11 @@ Object {
           "Home.content": "Home content",
           "Home.home": "Home",
           "Login.email": "E-mail Address",
+          "Login.facebook": "Continue with Facebook",
           "Login.forgotPassword": "Forgot Password?",
+          "Login.google": "Continue with Google",
           "Login.login": "Login",
+          "Login.microsoft": "Continue with Microsoft",
           "Login.password": "Password",
           "Login.setNewPassword": "Set your new password",
           "Login.setPassword": "Set Password",
@@ -98,10 +101,14 @@ Object {
           "Users.permDelete": "This will permanently delete the user. Action can not be undone.",
           "Users.search": "Search:",
           "Users.users": "Users",
+          "auth/account-exists-with-different-credential": "Email on another sign in method",
+          "auth/cancelled-popup-request": "Too many pop ups, just one pop up is allowed",
           "auth/email-already-exists": "Email already in use",
           "auth/expired-action-code": "The invitation link has expired, get in touch with your administrator",
           "auth/invalid-action-code": "The invitation link has expired, get in touch with your administrator",
           "auth/invalid-email": "Email is invalid",
+          "auth/popup-blocked": "Pop up blocked by the browser, please enable pop ups for this page",
+          "auth/popup-closed-by-user": "Operation cancelled, pop up was closed",
           "auth/too-many-requests": "Too many attempts made, try again later",
           "auth/user-disabled": "User disabled",
           "auth/wrong-password": "Invalid credentials",

src/components/Navigation/Aside/__snapshots__/Aside.test.js.snap

@@ -47,8 +47,11 @@ exports[`<NavBar /> rendering should render without crashing 1`] = `
         "Home.content": "Home content",
         "Home.home": "Home",
         "Login.email": "E-mail Address",
+        "Login.facebook": "Continue with Facebook",
         "Login.forgotPassword": "Forgot Password?",
+        "Login.google": "Continue with Google",
         "Login.login": "Login",
+        "Login.microsoft": "Continue with Microsoft",
         "Login.password": "Password",
         "Login.setNewPassword": "Set your new password",
         "Login.setPassword": "Set Password",
@@ -97,10 +100,14 @@ exports[`<NavBar /> rendering should render without crashing 1`] = `
         "Users.permDelete": "This will permanently delete the user. Action can not be undone.",
         "Users.search": "Search:",
         "Users.users": "Users",
+        "auth/account-exists-with-different-credential": "Email on another sign in method",
+        "auth/cancelled-popup-request": "Too many pop ups, just one pop up is allowed",
         "auth/email-already-exists": "Email already in use",
         "auth/expired-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-email": "Email is invalid",
+        "auth/popup-blocked": "Pop up blocked by the browser, please enable pop ups for this page",
+        "auth/popup-closed-by-user": "Operation cancelled, pop up was closed",
         "auth/too-many-requests": "Too many attempts made, try again later",
         "auth/user-disabled": "User disabled",
         "auth/wrong-password": "Invalid credentials",

src/components/Navigation/NavBar/__snapshots__/NavBar.test.js.snap

@@ -47,8 +47,11 @@ exports[`<UserForm /> rendering should render without crashing 1`] = `
         "Home.content": "Home content",
         "Home.home": "Home",
         "Login.email": "E-mail Address",
+        "Login.facebook": "Continue with Facebook",
         "Login.forgotPassword": "Forgot Password?",
+        "Login.google": "Continue with Google",
         "Login.login": "Login",
+        "Login.microsoft": "Continue with Microsoft",
         "Login.password": "Password",
         "Login.setNewPassword": "Set your new password",
         "Login.setPassword": "Set Password",
@@ -97,10 +100,14 @@ exports[`<UserForm /> rendering should render without crashing 1`] = `
         "Users.permDelete": "This will permanently delete the user. Action can not be undone.",
         "Users.search": "Search:",
         "Users.users": "Users",
+        "auth/account-exists-with-different-credential": "Email on another sign in method",
+        "auth/cancelled-popup-request": "Too many pop ups, just one pop up is allowed",
         "auth/email-already-exists": "Email already in use",
         "auth/expired-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-action-code": "The invitation link has expired, get in touch with your administrator",
         "auth/invalid-email": "Email is invalid",
+        "auth/popup-blocked": "Pop up blocked by the browser, please enable pop ups for this page",
+        "auth/popup-closed-by-user": "Operation cancelled, pop up was closed",
         "auth/too-many-requests": "Too many attempts made, try again later",
         "auth/user-disabled": "User disabled",
         "auth/wrong-password": "Invalid credentials",