How to get firebase authentification linking account working with Unity?

Question

I want to provide users multiple authentification providers with phone, facebook and a simple email and password.

the thing is, i want the same account to be provided (same user id, same display name) if the account is linked with the same Email address.

as i got to understand it through the documentation, you can do it if the user connects and link an account when already connected with another provider.

so my question is : is there anyway to do it automatically, when let's say, the user connects with another provider next time, without having to tell him to link it himself.

Answer 1

[Edit - after further investigation, I found a better answer]

It turns out that only allowing the email address once comes with some caveats - that are really well laid out in this GitHub issue but I'll try to summarize.

You can have an unverified account, which may allow you to register over it (the user hasn't proved that they own the account).

Next are kind of the social identity providers. Facebook is assumed to have verified your email once (for example), so you may get a duplicate account exception.

Finally, there are email identity providers - these are seen as authoritative for all email addresses that they're associated with and will overwrite any account with the same address for the domains that they're authoritative over. Both Google and Apple sign ins have this control over their respective domains for example.

See this section of the web documentation and this and this stack overflow answers.

At this point, you may be wondering how to get more control over the process if this isn't the user flow you want.

You may opt to make a call to FirebaseAuth.DefaultInstance.FetchProvidersForEmailAsync before allowing the user to log in. Then you can choose to prompt them to log back in with their existing account first to link accounts before creating a new one (and potentially replacing the old account). For example:

public async void LogIn(string email, Credential credential) {
    var auth = FirebaseAuth.DefaultInstance;
    var identityProviders = await auth.FetchProvidersForEmail(email);
    if (identityProviders.Empty()) {
        var user = auth.SignInWithCredentialAsync(credential);
    }
    else {
        // somewhere in here, log in the user and call
        // user.LinkWithCredentialAsync(credential)
        DisplayLinkAccountDialog(identityProviders, email, credential);
    }
}

[Old answer - information still applicable but incomplete]

By default, Firebase authentication only allows one email address per user. See this section at the bottom of your Authentication Providers page in the Firebase console:

So when you sign up a new user, you should get a FirebaseException with the error code AccountExistsWithDifferentCredentials.

To handle this, you'd make your continuation look something like:

/* Registration call */.ContinueWithOnMainThread(task=>{
    if (task.Exception) {
        foreach (var e in task.Exception.InnerExceptions) {
            var fe = e as FirebaseException;
            if (fe != null) {
                if (fe.ErrorCode == AuthError.AccountExistsWithDifferentCredentials) {
                    TryToLinkInsteadOfCreateAccount(); // TODO - cache credentials and implement this
                }
            }
        }
    }
});

Let me know if that helps!

--Patrick