45

Firebase supports password-less email logins. A user provides their email, and then Firebase emails them a login link.

https://firebase.google.com/docs/auth/web/email-link-auth

However, I don't see any way to change the email text. This is the default:

Sign in to project-XXXX Hello, We received a request to sign in to project-XXXX using this email address. If you want to sign in with your [email protected] account, click this link: Sign in to project-XXXX If you did not request this link, you can safely ignore this email. Thanks, Your project-XXXX team

The Authentication > Templates section of Firebase Console only shows the following options. None of them match the text above:

templates

Improve this question
3
  • When you hover over question mark it says : "To help prevent spam, the message can't be edited on this email template" But if you want this changes you can do feature request : firebase.google.com/support/contact Commented Jul 14, 2018 at 4:45
  • That is not what my UI says when I hover the question mark. Mine says Email templates are only sent to Email/Password users. Commented Jul 14, 2018 at 22:49
  • this is the only way I found to do so stackoverflow.com/a/63472996/2311662 Commented Aug 18, 2020 at 16:39

2 Answers 2

Reset to default
30

You cannot, Firebase prevent this in order to avoid being used for spam. If you want to change the email, you need to handle the flow by yourself.

More info/references:

Improve this answer
Sign up to request clarification or add additional context in comments.

4 Comments

Can we at least change the project-XXXX reference?
@Binajmen Yes, change "Public-facing name" in the general project settings.
Can you shed more light on where is this "Public-facing name" in the general project settings?
The "Public-facing name" field in Firebase project settings no longer exists (at least not for me). Instead, you need to verify app ownership at console.cloud.google.com/auth/branding and get Google's approval to update your APP_NAME. Without this, Google will send your raw Project ID (not your app name) in authentication emails, which looks suspicious and confuses users. I've submitted a request to Google to add documentation about this on the Firebase auth template page to help others avoid this confusion.
0

The way Firebase has the message content locked down makes sense to me (I am currently using the Firebase email/password authentication) -or I should say, makes sense for at least specifically for the password reset message.

For the email confirmation message, as @Kayce pointed out, user has to be logged in. I can only imagine that there was some security/spam concern that Firebase folks thought of that I cannot come up with.

If customization was allowed for password reset messages, anyone with an email list that they want to spam can write a simple app, customize the message to whatever they want and have Firebase send that message to any email address that they want to spam (but I understand the question was about email verification emails).

Strangely, they do allow edits of the password reset emails.

Improve this answer

2 Comments

The email template that I'm referring to is only sent when you log in to an app. So it's not possible for developers to spam whenever they want.
True enough, Kayce (I have updated my comment above). Valid for the password reset email, though.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.