You must assign the Invoker role (roles/run.invoker) through Cloud Run for 2nd gen functions
I'm trying to invoke my Gen 2 Firebase function from my IOS app.
It has been working fine for several months, until I redeployed it today, and now all of a sudden, users from my app receive Unauthenticated when trying to invoke it.
I granted the allUsers &Cloud Functions Invoker (1) principal to my function, but now it gives me this warning:
The specified principal roles/run.invoker is nowhere to be found.
My users can't access the function. Does google deliberately make things more complicated than they should be?
At the top right of your Gen 2 Cloud Function details, you should see a badge: “Powered by Cloud Run,” along with the Cloud Run service name at the bottom. Remember this service name.
Next, open Serverless -> Cloud Run in the left menu. 
You will see a list of Cloud Run services. Find your Cloud Run service and check the checkbox next to it. A panel will appear at the top with the message “1 service selected” and buttons like Copy, Delete, and Permissions. 
. Click Permissions. The permissions panel for this Cloud Run service will appear on the right. Here, you can assign the Cloud Run Invoker role to the required service account.
I would also suggest removing the allUsers permission from the original Cloud Function to avoid unexpected security consequences.
- Firebase Cloud Functions: Difference between onRequest and onCall
- How can I work with FCM using Cloud Firestore?
- Google Cloud Functions - ImportError: cannot import name 'InvalidKeyError' from 'jwt.exceptions'
- Firebase Function using ffmpeg successful with emulator, out of memory when deployed
- How to I return JSON from a Google Cloud Function
- How do I find out what the current version of Firebase Tools is
- set timeout for firebase cloud function via console
- Firebase: Does importing a firestore database from a previous export trigger Cloud Functions?
- Is there a way to connect cloud firestore to realtime database using Cloud functions?
- Google Cloud Function The request was aborted because there was no available instance
- Firebase functions imports in firebase functions 6.0.1
- How to properly create URL Masking for Cloud Functions to create a NEG?
- Firebase App Check Throws 401 Error on iOS Devices
- Firebase Functions "cannot determine backend specification"
- Firebase - lacks IAM permission "cloudscheduler.jobs.update"
- How to fix wrong node version in `firebase deploy --only functions`
- How to use cloud functions to create a document in Firebase Cloud Storage
- Uploading files using Google Function Framework
- How to deploy multiple functions using gcloud command line?
- firebase deploy to custom region (eu-central1)
- Gcloud Pub/Sub: Total timeout of API google.pubsub.v1.Publisher exceeded 60000 milliseconds before any response was received
- Sending email upon document creation in firebase with cloud function
- Firebase HTTP Cloud Function works with Axios but permission-denied with httpsCallable
- `firebase deploy` error "Project has no namespace"
- Firebase error: Function failed on loading user code (node.js)
- Delete a Firebase Cloud Function which failed with `Deploy Error: undefined`
- Firebase: How do I inform the client that the CloudFunction executed
- How to get the authenticated user with uid through onDocumentCreatedWithAuthContext
- functions deployment fails: yarn: not found
- Google Cloud Functions and Cloud SQL - Intermittent Connection Errors & SQL Admin Quota