About this guide
This development guide walks you through everything you need to do to build a high-quality React app integrated with Auth0, Cloud Firestore, and Tailwind. Check out the tasks below to get started. To save time, you can also use our boilerplate, which gives you a complete React codebase with all of these tasks done for you. Okay, let's dive in!
Tasks
Setup a React app using
Setup your React appnpx create-react-appand routing using React Router. There are many ways you can structure your app, but a common setup is to have anAppcomponent that defines top-level routes, with each route component imported from the/pagesdirectory. The rest of your components should be located in your/componentsdirectory. You can then run your app locally with thenpm run startcommand.
This stack requires server logic, so we'll be setting up a Node (Express.js) server that we can query from our React front-end. We suggest defining your Express.js routes in a file located at
Setup a Node (Express.js) server/api/index.jsand then creating a file for each route handler in the/apidirectory. Next make sure all requests to/api/*get routed to your Express server port by defining a proxy in yourpackage.json. Lastly, run your server with thenode apicommand in a new terminal window.
Create a file that wraps the
Extend the Auth0 libraryauth0-jslibrary and abstracts away the storage and retrieval of the user's access token. Auth functions, such asauth0.signupAndAuthorize()andauth0.client.login(), should store the access token in memory or local storage after executing. Add a function calledgetCurrentUser()that fetches the current user by passing the stored access token toauth0.client.userInfo(). Our auth logic in subsequent tasks can call this function to get the current user.
Create an
Create an Auth0 AuthProvider and useAuth hookAuthProvidercomponent that fetches the current user from Auth0, subscribes to changes, stores the user in state, and then makes all this data available to child components usingContext.Provider. Make sure to update yourAppcomponent so thatAuthProviderwraps all your pages. You'll then create auseAuthhook that reads the user withuseContextand returns its value. This will enable any component to calluseAuthto get the current user and re-render when it changes.
Create a
Protect pages with an Auth0 requireAuth HOCrequireAuthhigher order component for pages that should only be viewable by authenticated users. It should call youruseAuthhook internally to get the current user, show a loading indicator while waiting on the response, and then either render the page or redirect to/signindepending on whether the user is authenticated.
Update the
Merge extra user data from Cloud FirestoreuseAuthReact hook to automatically fetch extra user data from the Cloud Firestoreuserscollection and merge it into the returned user object. This makes it easy to access extra user data (think username, subscription plan, etc) without needing to manage extra queries and loading states. Make sure to return anundefineduser object while the query is pending so that the user isn't considered logged in until all data is ready.
Create an authentication UI using Tailwind elements and Auth0 functions. You'll want routes for user sign-up, sign-in, forgot password, and change password. Make sure you properly validate inputs and display any errors returned by Auth0. You may also want to use a library, such as React Hook Form, for managing form state.
Build your authentication UI
You can connect Google Analytics sessions to the current authenticated user with the User ID feature. This allows you to see what your users are doing across sessions and devices. You'll need to update yourLink user to analytics sessionuseAuthhook to set theuser_idproperty whenever the user changes.
To allow users to update their email and password you'll need to setup an API endpoint. Create an Express.js route at
Enable Auth0 email and password updating/api/auth-userthat uses theauth0library and callsAuth0.ManagementClient.updateUser()to change this info. Make sure thatAuth0.ManagementClientis instantiated with the credentials for a "Machine to Machine" app, instead of your client-side app credentials. You can then create anupdateUserfunction in the Auth0 wrapper you previously setup that makes a request to this endpoint.
In order to support social login via OAuth you'll need to setup an Auth0 callback page and specify it's path as the
Create an Auth0 callback pageredirectUrivalue when callingauth0.popup.authorize(). This page should use theauth0-jslibrary and callauth0.popup.callback()on load. This is what enables your app to get the authentication results after the OAuth flow has completed.
In order to make authenticated requests to Cloud Firestore you'll need to setup an API route that generates a custom Firebase token. Create an Express.js route at
Get Auth0 working with Cloud Firestore/api/firebase-tokenthat is passed the current Auth0 user'suidand returns a custom Firebase token withfirebase.auth().createCustomToken(uid). Right after login you'll want to make a request to this API route and pass the retrieved token tosignInWithCustomToken(auth, token). This ensures that your Firestore rules will be able to read the user'suidin order to dictate what queries the current user can make.
Create React hooks that wrap your Cloud Firestore queries, such as
Create Cloud Firestore query hooksuseUser,useItem, anduseItemsByUser. These hooks should subscribe to data usingonSnapshotand return a query status of "success", "loading", or "error". The React Query library makes it especially easy to setup these hooks and have components re-render when data changes.
Be sure to specify your Firestore security rules so that your Firestore database is secure. For example, if you have a
Add Firestore rulesuserscollection you might ensure that the authenticated user can only update a doc ifuserDoc.uidmatches theiruid. If you have anitemscollection you might ensure that they can only update and fetch items whereitemDoc.ownermatches theiruid. You'll also generally want to specify an array of fields that are writeable, as you wouldn't want a user to be able to changeuserDoc.planIdwithout actually upgrading their plan.
Create a data-driven UI using Tailwind elements that reads/writes data to Cloud Firestore. The specifics will depend on the type of app you're building, but we generally recommend having a
Build a data-driven UIuseItemsByOwnerhook that fetches "items" in Cloud Firestore that are owned by the current user. You can then create a component for displaying that data in a simple list or table if more columns are needed. Finally, you'll want create a flow for creating and updating items utilizing Tailwind modal and form components.
Install Tailwind and add a
Install and configure Tailwindtailwind.config.jsfile by following the Tailwind guide for Create React App.
Make all Tailwind link elements hook into React Router by using the
Ensure Tailwind link components hook into React RouterLinkcomponent fromreact-router-dom.
Add any components that you'd like displayed across all pages (such as
Create a persistent layoutNavbarandFooter) to yourAppcomponent. If you need multiple persistent layouts you can instead have each page define its own layout. In that case, create multiple layout components (such asLandingPageLayoutandAdminLayout) and wrap the contents of each page.
Build out the rest of your UI using Tailwind elements and composing them into high-level page sections, such as
Finish your app UI with TailwindHeroSectionandAccountSettings. Use theming and dynamic classes for styling your components and overriding default element styles.
Get the code
You can get the code for this guide with our React, Auth0, Cloud Firestore, and Tailwind Boilerplate. You'll get a complete React codebase with Auth0, Cloud Firestore, and Tailwind integration, all the tasks listed above done for you, and a responsive multi-page template. It should save you about two weeks of development time.
127 downloads today
Twitter
Facebook
Linkedin
Discord