Open nilsreichardt opened 1 year ago
Thanks for the report @nilsreichardt https://github.com/firebase/flutterfire/issues/9471 removed the default scopes on iOS for apple sign-in. Is this issue to do the same but for web ?
I haven't tested it on iOS only on web
I am wondering how different is this issue from the linked one above. Can you please elaborate ?
Hey @nilsreichardt. We need more information to resolve this issue but there hasn't been an update in 7 weekdays. I'm marking the issue as stale and if there are no new updates in the next 7 days I will close it automatically.
If you have more information that will help us get to the bottom of this, just add a comment!
https://github.com/firebase/flutterfire/assets/24459435/afe4457f-01f5-42ca-9a6f-0af186782d1a
@darshankawar As you can in the video the scopes Email and Name are requested.
Thanks for the update.
/cc @Lyokone
@nilsreichardt @darshankawar Does this mean that Firebase Auth is NOT GDPR compliant ?
Additionally - where is the data stored , with Firestore/storage - we get to choose the locations - but what about firebase auth ?
Lastly - if firebase auth was used without social provider login (i.e no gmail, apple sign in etc) and just the standard email/password - would this then make Firebase auth GDPR compliant ?
Bug report
Describe the bug When using the Firebase Auth Apple Sign In, there is no way to remove the
email
andname
scope for Firebase Auth. This is a problem because you can't follow GDPR Art. 5 (c):Steps to reproduce
Steps to reproduce the behavior:
I have tested it on Web.
Expected behavior
A clear and concise description of what you expected to happen.
Sample project
Additional context
I would expect that
https://github.com/firebase/flutterfire/blob/70ab15390e5fd64be648de3500a9c34dde20f488/packages/firebase_auth/firebase_auth_platform_interface/lib/src/providers/apple_auth.dart#L59
would contain the two default scopes and that
AppleAuthProvider
has a methodsetScope
orremoveScope
to remove the default scopes.