Firestore Emulator Security Rule `request.auth` is always null even after authed

### [REQUIRED] Step 1: Describe your environment

  * Xcode version: 11.3.1
  * Firebase SDK version: 6.19.0
  * Firebase Component: Auth, Firestore
  * Component version: Auth: 6.19.0, Firestore: 6.19.0
  * Installation method: `CocoaPods`

### [REQUIRED] Step 2: Describe the problem

Firestore Emulator Security Rule `request.auth` is always null even after authed.

I tried it on Android project/emulator, and it works fine, so I suspect  it is iOS SDK's bug.

#### Steps to reproduce:

I created the reproduced project: https://github.com/mono0926/firestore-emulator-sample

#### 1. Prepare Firestore Emulator

Execute this:

```sh
git clone https://github.com/mono0926/firestore-emulator-sample.git
cd firestore-emulator-sample/firebase
firebase emulators:start
```

If you create your own Firebase project, these steps are needed:

Enable Anonymous Auth:
<img width="995" alt="image" src="https://user-images.githubusercontent.com/1255062/76397351-43c2d700-63be-11ea-91ea-35880e29b2fa.png">

Enable Firestore:
<img width="593" alt="image" src="https://user-images.githubusercontent.com/1255062/76397427-61903c00-63be-11ea-8884-7f59b2f65f63.png">

#### 2. Run iOS application

Execute this:

```sh
cd firestore-emulator-sample/iOS/ 
pod install
open EmulatorSample.xcworkspace
```

And Run app on iOS simulator, and push the button:

<img width="300" alt="image" src="https://user-images.githubusercontent.com/1255062/76397572-a4521400-63be-11ea-8da9-3c04c1ee60b0.png">

The error log will be output:

```
error: Optional(Error Domain=FIRFirestoreErrorDomain Code=7 "
false for 'get' @ L5" UserInfo={NSLocalizedDescription=
false for 'get' @ L5})
```

#### Relevant Code:

##### Security Rule

This security rule allows `/users/{userId}` `get` only if `request.auth != null`

https://github.com/mono0926/firestore-emulator-sample/blob/633cd0d48c8b6eaf228d1fb3f978420df1fc4e6d/firebase/firestore.rules#L5

```json
rules_version = '2';
service cloud.firestore {
  match /databases/{database}/documents {
    match /users/{userId} {
      allow get: if request.auth != null;
    }
  }
}
```

##### iOS initialization

At `didFinishLaunchingWithOptions`, set to connect to Firestore emulator.

https://github.com/mono0926/firestore-emulator-sample/blob/633cd0d48c8b6eaf228d1fb3f978420df1fc4e6d/iOS/EmulatorSample/AppDelegate.swift#L20-L24

```swift
        let settings = Firestore.firestore().settings
        settings.host = "localhost:8080"
        settings.isPersistenceEnabled = false
        settings.isSSLEnabled = false
        Firestore.firestore().settings = settings
```

##### iOS logic

1. `Auth.auth().signInAnonymously`
1. ` Firestore.firestore().collection("users").document(uid).getDocument()`

https://github.com/mono0926/firestore-emulator-sample/blob/32f5c5bdf59eba8098c3bede21c6da430568b799/iOS/EmulatorSample/ViewController.swift#L19-L39

```swift
    @IBAction func buttonDidTap(_ sender: Any) {
        Auth.auth().signInAnonymously { (result, error) in
            assert(error == nil)
            
            guard let result = result else {
                assert(false)
                return;
            }
            
            let uid = result.user.uid
            print(uid)
            Firestore.firestore().collection("users").document(uid).getDocument { (snap, error) in
//                "snap: nil"
                print("snap: \(snap?.data())")
//                error: Optional(Error Domain=FIRFirestoreErrorDomain Code=7 "
//                false for 'get' @ L5" UserInfo={NSLocalizedDescription=
//                false for 'get' @ L5})
                print("error: \(error)")
            }
        }
    }
```

This should succeed without any errors because the user is authed and firestore security rule only checks `request.auth != null` and this condition is satisfied.

If [setting to connect to emulator codes](https://github.com/mono0926/firestore-emulator-sample/blob/633cd0d48c8b6eaf228d1fb3f978420df1fc4e6d/iOS/EmulatorSample/AppDelegate.swift#L20-L24) is commented out, the app will connect to real Firestore backend(same security rule deployed), and it works as expected.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Firestore Emulator Security Rule `request.auth` is always null even after authed #5072

[REQUIRED] Step 1: Describe your environment

[REQUIRED] Step 2: Describe the problem

Steps to reproduce:

1. Prepare Firestore Emulator

2. Run iOS application

Relevant Code:

Security Rule

iOS initialization

iOS logic

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Firestore Emulator Security Rule request.auth is always null even after authed #5072

Description

[REQUIRED] Step 1: Describe your environment

[REQUIRED] Step 2: Describe the problem

Steps to reproduce:

1. Prepare Firestore Emulator

2. Run iOS application

Relevant Code:

Security Rule

iOS initialization

iOS logic

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

Firestore Emulator Security Rule `request.auth` is always null even after authed #5072