Push Credentials setup

Creating a Google Cloud Service Account for push notifications

1. Enable Firebase Cloud Messaging API

Navigate to https://console.developers.google.com/apis/api/fcm.googleapis.com/overview or in the Google Cloud console search box, type in Firebase Cloud Messaging API and select it from the results list.

Select the Firebase project in question if not already selected and click the Enable button to enable the use of Firebase Cloud Messaging API.

Enable API

2. Create a limited access role for message creation

Type Roles into the Google Cloud console search box and select the Roles page.

Navigate to roles

Click + Create role.

Fill in the fields as:

Title: Richie Push

Description: Richie Push

ID: RichiePushRole

Click + Add permissions.

Add permissions

Select the filter field and paste in cloudmessaging.messages.create to filter the results.

Filter permissions

Select the cloudmessaging.messages.create permission checkbox and click the Add button.

Select permission

Click Create to finalize the role creation.

3. Create a service account

Navigate to Service Accounts and click the + Create service account button.

Navigate to service accounts

Fill in the fields as:

Service account name: richiepush

Service account ID: richiepush

Service account description: richiepush

Fill service account fields

Click Create and continue.

Click the Select a role field, type in Richie Push to the search field and select the role.

Select and add role

Click Continue.

Click Done.

4. Add key to the service account

Navigate to the service account's details

Navigate to the new service account

Select the service account's Keys tab.

Select keys tab

Click Add key, select Create new key and select the type as JSON. Click Create. Your browser will download the key file.

Add a JSON key

5. Send the key file to us

Send the key file to us in via 1Password sharing, secured Dropbox transfer, encrypted Zip file, encrypted macOS disk image or any other means where the downloaded key file is encrypted on its way to us. Slack and other messaging services are also an option, if necessary.

Send any password to an encrypted file through another medium than the one used to transfer the key file itself.

Delete the key file and copies of it after we've received it.

Push API