Given a user email or phone, an anonymous user can query these functions to get their secret key(s). The functions should check that the authString provided in the request matches the currently logged in used, and return {"result":{"isAdmin":false,"secretKeys":[]}} if they don't.
Given a user email or phone, an anonymous user can query these functions to get their secret key(s). The functions should check that the
authString
provided in the request matches the currently logged in used, and return{"result":{"isAdmin":false,"secretKeys":[]}}
if they don't.authString
needs to be removed fromQueryAuthStatusPayload
. The authentication string needs to be pulled from the functions context, as documented here in a similar way to what we already do in other cloud functions.