Authentication

FireScan requires Firebase authentication to test most services. It handles JWT tokens automatically.

Quick start

firescan > auth --create-account

Creates or logs into a test account ([email protected]). Token is automatically stored and refreshed.

Methods

Test account (default email)

firescan > auth --create-account

Uses [email protected] / password123.

Test account (custom email)

firescan > auth --create-account --email [email protected]

Existing credentials

firescan > auth -e [email protected] -P password123

Token management

Tokens are:

• Automatically stored after authentication
• Refreshed when expired
• Used for all subsequent requests

Check token status:

firescan > auth status

Manual refresh:

firescan > auth refresh

Provider enumeration

Discover which auth methods are enabled:

firescan > auth --enum-providers

Output:

├── Provider: password      Status: Enabled
├── Provider: google.com    Status: Enabled
└── Provider: facebook.com  Status: Disabled

Logout

firescan > auth logout

Clears stored credentials and token.

Session persistence

Sessions are saved with:

• Project ID
• API Key
• Credentials
• Timestamp

Save session:

firescan > save-quit

Resume later:

./firescan --resume

Next

• Quick Start - Full example workflow
• API Reference: auth - Command details