## Firebase

### Prerequisites

- Firebase project created
- Firebase Authentication enabled


### Configuration Steps

#### Step 1: Access Firebase Console

1. Navigate to **Firebase Console** (https://console.firebase.google.com)
2. Select your project
3. Click **Authentication** in left sidebar


#### Step 2: Enable Authentication Methods

1. In Authentication page, navigate to **Sign-in method** tab
2. Enable desired sign-in providers (Email/Password, Google, etc.)


#### Step 3: Configure OAuth Client (via Google Cloud Console)

Firebase doesn't directly provide OAuth credentials. You need to use Google Cloud Console:

1. Navigate to **Google Cloud Console** (https://console.cloud.google.com)
2. Select the project associated with your Firebase project
3. Navigate to **APIs & Services** → **Credentials**
4. Click **Create Credentials** → **OAuth client ID**
5. If prompted, configure the **OAuth consent screen** first:
  - Click **Configure Consent Screen**
  - Select **Internal** or **External** user type
  - Fill required fields: App name, Support email
  - Click **Save and Continue**


#### Step 4: Select or Create OAuth 2.0 Client

1. **If you have an existing OAuth client**:
  - Click on it to view details
  - Click the **Edit** (pencil) icon to modify settings
  - Add Frontegg redirect URI to **Authorized redirect URIs**:

```
https://[YOUR-FRONTEGG-DOMAIN]/oauth/callback
```
  - Click **Save**, then skip to Step 5
2. **If creating new**: Continue below
3. Click **Create Credentials** → **OAuth client ID**
4. If prompted, configure the **OAuth consent screen** first:
  - Click **Configure Consent Screen**
  - Select **Internal** or **External** user type
  - Fill required fields: App name, Support email
  - Click **Save and Continue**
5. Return to **Create OAuth client ID** page
6. Select **Application type**: `Web application`
7. Enter **Name**: "Frontegg AgentLink"
8. Under **Authorized redirect URIs**, click **Add URI**
9. Add Frontegg redirect URL:

```
https://[YOUR-FRONTEGG-DOMAIN]/oauth/callback
```
10. Click **Create**


#### Step 5: Obtain Credentials

1. A modal displays your credentials
2. Copy **Client ID**: `[string].apps.googleusercontent.com`
3. Copy **Client Secret**: `[alphanumeric-string]`
4. Click **OK**


#### Step 6: Get Firebase Configuration

1. In **Firebase Console**, navigate to **Project Settings** (gear icon)
2. Note your **Project ID** from General tab
3. Your issuer URL will be Firebase's OIDC endpoint


#### Configuration Values for Frontegg


```yaml
provider: firebase
issuer_url: https://securetoken.google.com/[project-id]
client_id: [from Google Cloud Console]
client_secret: [from Google Cloud Console]
```