do I know anyone who knows a bunch about Firebase auth?
I've got a target where I have full control over one of the domains in the "authorizedDomains" list reported by the identitytoolkit /v1/projects REST API.
the target supports a bunch of different authentication flows - Google, OIDC, password, some others.
what can I do with control over an "authorised domain"? the docs are frustratingly vague. I tried a bunch of stuff and nothing worked.
(no guess responses please)
Women #Dating Safety App 'Tea' #Breached , Users' IDs Posted to #4chan
Users from 4chan claim to have discovered an exposed database hosted on Google’s mobile app development platform, #Firebase , belonging to the newly popular women’s dating safety app #Tea. Users say they are rifling through peoples’ personal data & selfies uploaded to the app, and then posting that data online, according to screenshots, 4chan posts, and code reviewed by 404 Media.
#privacy #security
https://www.404media.co/women-dating-safety-app-tea-breached-users-ids-posted-to-4chan/
A Firebase misconfiguration exposed 72,000 images including selfies and IDs from women's safety app Tea. Data was posted on 4chan before being locked down. Breach also included some DMs, per company. Incident tied to 2023 data.
How to Build a Real-time AI Multiplayer Quiz App with Flutter & Firebase.
https://dev.to/awsmasim/how-to-build-a-real-time-ai-multiplayer-quiz-app-with-flutter-firebase-2m39
Introducing hybrid on-device inference using Firebase AI Logic.
https://firebase.blog/posts/2025/06/hybrid-inference-firebase-ai-logic
Project IDX Is Now Part of Firebase Studio, by @firebase.com:
https://firebase.google.com/docs/studio/idx-is-firebase-studio
Learn how to build agentic apps with Flutter, Angular, Firebase, and Vertex AI.
ok everybody remember when we were all on #angularjs v1 and #firebase came out and blew our collective minds with what do you mean i don't need a backend api? before #bff was even a thing?
#prisma would like to welcome you back to the future https://pris.ly/security-rules-ea?utm_source=fediverse
Deploy Angular and Next.js Apps With App Hosting, Now GA, by @firebase.com:
https://firebase.blog/posts/2025/04/apphosting-general-availability
React Native Support and Gemini Live APIs for Vertex AI in Firebase | by Miguel Ramos.
Build Responsive, AI-powered Apps with Cloud Functions for Firebase.
https://firebase.blog/posts/2025/02/streaming-cloud-functions-genkit
Add image generation to your apps with Imagen 3 - Available in Vertex AI in Firebase (Public Preview) | by Miguel Ramos.
https://firebase.blog/posts/2025/03/imagen3-support-on-vertex-ai-sdks
Announcing Firebase Genkit for Node.js 1.0 - A framework for building and deploying AI-powered apps.
E-Mail von #google, dass 2FA ab Mai 2025 Pflicht wird für Cloud Console, #firebase Console etc. Ich muss das bis dahin aktivieren usw. Klingt alles sehr ernst und dringlich.
Ich: 
äääh für meinen Account oder nochmal speziell für die genannten Dienste (Consolen etc.)? Ich hab doch…
Mail: Hier klicken für mehr Infos -> dort: Wenn Du schon 2FA hast, alles fein, kannst Du HIER siehen -> klick -> natürlich seit Jahren aktiv.
Kann Google das nicht prüfen BEVOR solche Mails verteilt werden?
