Handle Firebase Apple Platforms Auth Errors
Stay organized with collections Save and categorize content based on your preferences.
If the completion callback on Authentication methods receives an NSError argument that is not nil, an error has occurred. To dis to appropriate error-handling logic in your production code, check the error code against common errors and method specific errors listed below.
Some errors can be resolved by particular user actions, for example, FIRAuthErrorCodeUserTokenExpired can be resolved by signing the user in again, and FIRAuthErrorCodeWrongPassword by asking the user to provide the right password.
Except in the case of FIRAuthErrorCodeNetworkError or FIRAuthErrorCodeTooManyRequests, retrying a failing operation with the same arguments will never succeed. Make no assumption on whether or not the operation has taken effect on the server side.
When investigating or logging errors, review the userInfo dictionary. FIRAuthErrorNameKey contains a cross-platform error name string that can be used for identifying the error. NSLocalizedDescriptionKey contains a description of the error. This description is meant for the developer, not the user. NSUnderlyingErrorKey contains the underlying error that caused the error in question, if an underlying error is present.
In addition to the main fields listed above, there can be other fields in the userInfo dictionary that you may find useful when diagnosing errors.
Error codes common to all API methods
| Code | Meaning |
|---|
FIRAuthErrorCodeNetworkError | Indicates a network error occurred during the operation. |
FIRAuthErrorCodeUserNotFound | Indicates the user account was not found. This could happen if the user account has been deleted. |
FIRAuthErrorCodeUserTokenExpired | Indicates the current user’s token has expired, for example, the user may have changed account password on another device. You must prompt the user to sign in again on this device. |
FIRAuthErrorCodeTooManyRequests | Indicates that the request has been blocked after an abnormal number of requests have been made from the caller device to the Firebase Authentication servers. Retry again after some time. |
FIRAuthErrorCodeInvalidAPIKey | Indicates the application has been configured with an invalid API key. |
FIRAuthErrorCodeAppNotAuthorized | Indicates the App is not authorized to use Firebase Authentication with the provided API Key. go to the Google API Console and check under the credentials tab that the API key you are using has your application’s bundle ID whitelisted. |
FIRAuthErrorCodeKeychainError | Indicates an error occurred when accessing the keychain. The NSLocalizedFailureReasonErrorKey and NSUnderlyingErrorKey fields in the NSError.userInfo dictionary will contain more information about the error encountered. |
FIRAuthErrorCodeInternalError | Indicates an internal error occurred. Please report the error with the entire NSError object. |
Method specific error codes
FIRAuth
fetchProvidersForEmail:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeInvalidEmail | Indicates the email address is malformed. |
signInWithEmail:password:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeOperationNotAllowed | Indicates that email and password accounts are not enabled. Enable them in the Auth section of the Firebase console. |
FIRAuthErrorCodeInvalidEmail | Indicates the email address is malformed. |
FIRAuthErrorCodeUserDisabled | Indicates the user's account is disabled. |
FIRAuthErrorCodeWrongPassword | Indicates the user attempted sign in with a wrong password. |
signInWithCredential:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeInvalidCredential | Indicates the supplied credential is invalid. This could happen if it has expired or it is malformed. |
FIRAuthErrorCodeInvalidEmail | Indicates the email address is malformed, if credential is of the type EmailPasswordAuthCredential. |
FIRAuthErrorCodeOperationNotAllowed | Indicates that accounts with the identity provider represented by the credential are not enabled. Enable them in the Auth section of the Firebase console. |
FIRAuthErrorCodeEmailAlreadyInUse | Indicates the email asserted by the credential (e.g. the email in a Facebook access token) is already in use by an existing account, that cannot be authenticated with this sign-in method. Call fetchProvidersForEmail for this user’s email and then prompt them to sign in with any of the sign-in providers returned. This error will only be thrown if the "One account per email address" setting is enabled in the Firebase console, under Authentication settings. |
FIRAuthErrorCodeUserDisabled | Indicates the user's account is disabled. |
FIRAuthErrorCodeWrongPassword | Indicates the user attempted sign in with a wrong password, if credential is of the type EmailPasswordAuthCredential. |
signInAnonymouslyWithCompletion:
| Code | Meaning |
|---|
FIRAuthErrorCodeOperationNotAllowed | Indicates that anonymous accounts are not enabled. Enable them in the Auth section of the Firebase console. |
signInWithCustomToken:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeInvalidCustomToken | Indicates a validation error with the custom token. |
FIRAuthErrorCodeCustomTokenMismatch | Indicates the service account and the API key belong to different projects. |
createUserWithEmail:password:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeInvalidEmail | Indicates the email address is malformed. |
FIRAuthErrorCodeEmailAlreadyInUse | Indicates the email used to attempt sign up already exists. Call fetchProvidersForEmail to check which sign-in mechanisms such user used, and prompt the user to sign in with one of those. |
FIRAuthErrorCodeOperationNotAllowed | Indicates that email and password accounts are not enabled. Enable them in the Authentication section of the Firebase console. |
FIRAuthErrorCodeWeakPassword | Indicates an attempt to set a password that is considered too weak. The NSLocalizedFailureReasonErrorKey field in the NSError.userInfo dictionary object will contain more detailed explanation that can be shown to the user. |
signOut:
| Code | Meaning |
|---|
FIRAuthErrorCodeKeychainError | Indicated an error occurred when accessing the keychain. The NSLocalizedFailureReasonErrorKey and NSUnderlyingErrorKey fields in the NSError.userInfo dictionary will contain more information about the error encountered. |
FIRUser
Common errors for FIRUser operations
| Code | Meaning |
|---|
FIRAuthErrorCodeInvalidUserToken | Indicates that the signed-in user's refresh token, that holds session information, is invalid. You must prompt the user to sign in again on this device. |
FIRAuthErrorCodeUserDisabled | Indicates the user's account is disabled and can no longer be used until enabled again from within the Users panel in the Firebase console. |
reauthenticateWithCredential:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeInvalidCredential | Indicates the supplied credential is invalid. This could happen if it has expired or it is malformed. |
FIRAuthErrorCodeInvalidEmail | Indicates the email address is malformed, if credential is of the type EmailPasswordAuthCredential. |
FIRAuthErrorCodeWrongPassword | Indicates the user attempted reauthentication with an incorrect password, if credential is of the type EmailPasswordAuthCredential. |
FIRAuthErrorCodeUserMismatch | Indicates that an attempt was made to reauthenticate with a user which is not the current user. |
FIRAuthErrorCodeOperationNotAllowed | Indicates that accounts with the identity provider represented by the credential are not enabled. Enable them in the Auth section of the Firebase console. |
FIRAuthErrorCodeEmailAlreadyInUse | Indicates the email asserted by the credential (e.g. the email in a Facebook access token) is already in use by an existing account, that cannot be reauthenticated with this sign-in method. Call fetchProvidersForEmail for this user’s email and then prompt them to sign in with any of the sign-in providers returned. This error will only be thrown if the "One account per email address" setting is enabled in the Firebase console, under Authentication settings. |
FIRAuthErrorCodeUserDisabled | Indicates the user's account is disabled. |
updateEmail:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeEmailAlreadyInUse | Indicates the email is already in use by another account. |
FIRAuthErrorCodeInvalidEmail | Indicates the email address is malformed. |
FIRAuthErrorCodeRequiresRecentLogin | Updating a user’s email is a security sensitive operation that requires a recent login from the user. This error indicates the user has not signed in recently enough. To resolve, reauthenticate the user by invoking reauthenticateWithCredential:completion: on FIRUser. |
updatePassword:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeOperationNotAllowed | Indicates the administrator disabled sign in with the specified identity provider. |
FIRAuthErrorCodeRequiresRecentLogin | Updating a user’s password is a security sensitive operation that requires a recent login from the user. This error indicates the user has not signed in recently enough. To resolve, reauthenticate the user by invoking reauthenticateWithCredential:completion: on FIRUser. |
FIRAuthErrorCodeWeakPassword | Indicates an attempt to set a password that is considered too weak. The NSLocalizedFailureReasonErrorKey field in the NSError.userInfo dictionary object will contain more detailed explanation that can be shown to the user. |
linkWithCredential:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeProviderAlreadyLinked | Indicates an attempt to link a provider of a type already linked to this account. |
FIRAuthErrorCodeCredentialAlreadyInUse | Indicates an attempt to link with a credential that has already been linked with a different Firebase account. |
FIRAuthErrorCodeOperationNotAllowed | Indicates that accounts with the identity provider represented by the credential are not enabled. Enable them in the Auth section of the Firebase console. |
This method may also return error codes associated with updateEmail:completion: and updatePassword:completion: on FIRUser.
unlinkFromProvider:completion:
| Code | Meaning |
|---|
FIRAuthErrorCodeNoSuchProvider | Indicates an attempt to unlink a provider that is not linked to the account. |
FIRAuthErrorCodeRequiresRecentLogin | Updating email is a security sensitive operation that requires a recent login from the user. This error indicates the user has not signed in recently enough. To resolve, reauthenticate the user by invoking reauthenticateWithCredential:completion: on FIRUser. |
sendEmailVerificationWithCompletion:
| Code | Meaning |
|---|
FIRAuthErrorCodeUserNotFound | Indicates the user account was not found. |
deleteWithCompletion:
| Code | Meaning |
|---|
FIRAuthErrorCodeRequiresRecentLogin | Deleting a user account is a security sensitive operation that requires a recent login from the user. This error indicates the user has not signed in recently enough. To resolve, reauthenticate the user by invoking reauthenticateWithCredential:completion: on FIRUser. |
