Detecting Account Sharing and Repeated Trials in Firebase Auth with Upollo
How to detect account sharing and repeated trials in Firebase Auth with Upollo.
Firebase Auth is a great tool to add account management to your app or service. It takes care of the myriad of ways people like to login.
However, Firebase can't tell you anything about the people behind those accounts. It can't tell you if Bob creates a new account every month so he can get the free trial again and again. It also can’t tell you that Peter and Patsy have created one account and share the password so they only have to pay once.
With Upollo you can detect these events and nudge the user onto the right path. You can detect that Bob is creating his 10th account, stop giving him the free trial and convert him into a paying customer. You can tell Peter and Patsy that you know they are sharing an account which is against your policy and get them to upgrade their account.
This article will focus on web applications but the same applies to mobile apps as well.
Detecting account sharing and repeated trials in Firebase
Consider, if you are logging in using signInWithPopup from the Firebase SDK.
Instead of continuing your login flow after that you would use the assess method from Upollo Web Library with the user details returned from firebase. In the returned flags you can see if it is a repeated action or account sharing.
For an even more secure solution, you can repeat the same checks server side by using the Upollo token and one of our server side libraries to validate the flags on your server.
Read the Report: Upollo SOC 2 Type 1
Join the Wave
Ready to revolutionize how you recognize opportunities? Sign up for the waitlist below and be among the first to experience its transformative power when it launches.