Operating System
macOS
Environment (if applicable)
Node.js 23, Next.js 14, next-firebase-auth
Firebase SDK Version
firebase@10.x
Firebase SDK Product(s)
Auth
Project Tooling
Next.js 14 (Pages Router), Firebase Admin SDK, next-firebase-auth
Detailed Problem Description
Our Firebase project (sporty-e1e3a) was soft-deleted and restored via UndeleteProject.
What we were trying to achieve:
Allow users to log in again after project restoration.
What actually happened:
- Firestore: FULLY RESTORED (281 users, all collections intact)
- Firebase Storage: WORKING (files serving normally)
- Firebase Authentication: STILL BROKEN
Error:
POST https://identitytoolkit.googleapis.com/v1/projects/sporty-e1e3a/accounts:query
HTTP 400 — PROJECT_SOFT_DELETED
Firestore restored automatically after ~5 days. Auth has not restored after the same
period. All 281 registered users are locked out. Project lifecycleState shows ACTIVE
in the management API, but Auth service remains soft-deleted.
Steps and code to reproduce issue
- Soft-delete a Firebase project via Google Cloud Console
- Restore it via UndeleteProject API or Firebase Console
- Wait several days — Firestore and Storage restore automatically
- Attempt any Firebase Auth API call:
const admin = require('firebase-admin');
const auth = admin.auth();
await auth.listUsers();
// → Error: PROJECT_SOFT_DELETED
Or via REST:
POST https://identitytoolkit.googleapis.com/v1/projects/sporty-e1e3a/accounts:query
Authorization: Bearer <valid_token>
→ HTTP 400: PROJECT_SOFT_DELETED
- Project lifecycleState = ACTIVE in management API
- Auth remains broken indefinitely
Operating System
macOS
Environment (if applicable)
Node.js 23, Next.js 14, next-firebase-auth
Firebase SDK Version
firebase@10.x
Firebase SDK Product(s)
Auth
Project Tooling
Next.js 14 (Pages Router), Firebase Admin SDK, next-firebase-auth
Detailed Problem Description
Our Firebase project (sporty-e1e3a) was soft-deleted and restored via UndeleteProject.
What we were trying to achieve:
Allow users to log in again after project restoration.
What actually happened:
Error:
POST https://identitytoolkit.googleapis.com/v1/projects/sporty-e1e3a/accounts:query
HTTP 400 — PROJECT_SOFT_DELETED
Firestore restored automatically after ~5 days. Auth has not restored after the same
period. All 281 registered users are locked out. Project lifecycleState shows ACTIVE
in the management API, but Auth service remains soft-deleted.
Steps and code to reproduce issue
const admin = require('firebase-admin');
const auth = admin.auth();
await auth.listUsers();
// → Error: PROJECT_SOFT_DELETED
Or via REST:
POST https://identitytoolkit.googleapis.com/v1/projects/sporty-e1e3a/accounts:query
Authorization: Bearer <valid_token>
→ HTTP 400: PROJECT_SOFT_DELETED