Add Set up custom push notifications how-to#5080
Open
shannonbradshaw wants to merge 7 commits into
Open
Conversation
Documents the end-to-end flow for routing trigger push notifications to a custom mobile app instead of the Viam mobile app: Firebase service-account upload via `viam organizations firebase-config set`, device-token registration through the Flutter SDK or raw gRPC, the fragment-ownership trust gate that authorizes a machine to receive pushes for a non-Viam app, trigger config with the `application` field, and a verify/troubleshoot section keyed to the actual server- side log messages. Cross-links: docs/monitor/alert.md, docs/data/trigger-on-data.md, docs/reference/triggers.md, and the application field plus `organizations firebase-config set` section of docs/cli/reference.md. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
✅ Deploy Preview for viam-docs ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
viambot
added
the
safe to build
| | `device_token` | FCM registration token from `FirebaseMessaging.getToken()`. On iOS, call `getAPNSToken()` first; FCM normalizes both. | | ||
| | `device_uuid` | A stable device identifier. Android: `android.id` from `device_info_plus`. iOS: `identifierForVendor`. | | ||
|
|
||
| User identity comes from the authenticated Viam session on the call, so there is no `user_id` parameter. |
Contributor
There was a problem hiding this comment.
probably don't need to call out the lack of a user_id parameter
| A user can have parallel tokens for `com.viam.viammobile` and a custom app, and only the matching set receives any given push. | ||
| - Viam prunes dead tokens automatically when FCM reports "not registered." | ||
| No server-side cleanup is required for stale tokens. | ||
| - Calling `DeleteDevicePushToken` on logout is still recommended so a shared device does not receive notifications for the previous user. |
Contributor
There was a problem hiding this comment.
Suggested change
| - Calling `DeleteDevicePushToken` on logout is still recommended so a shared device does not receive notifications for the previous user. | |
| - Calling `DeleteDevicePushToken` on logout is still required so a shared device does not receive notifications for the previous user. |
Collaborator
Author
There was a problem hiding this comment.
Applied verbatim in b73e1a4 — "recommended" → "required."
Comment on lines
+135
to
+136
| `com.viam.viammobile` is exempt from this check. | ||
| Triggers targeting the Viam mobile app work on any machine the recipient owns or operates. |
Contributor
There was a problem hiding this comment.
might be unnecessary since this section is about third party apps
Collaborator
Author
There was a problem hiding this comment.
Agreed — dropped both sentences in b73e1a4.
Contributor
|
overall looks good but I left a couple of suggestions
also, in reference to this question, I don't personally think we need to give a full explanation as to why this is the design. it's just to add an extra layer of security so that only app owners can send push notifications to their app. without this, anyone who knows the bundle id could theoretically send push notifications to an app they don't own |
The "import that fragment" step was vague. Replace with the actual click sequence the configuration-block dialog uses (`+` → **Configuration block** → search → **Add fragment**) and link to the existing fragments how-to for the "create a fragment" half of the step. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
The "the Viam mobile app re-uploads if the stored token is older than 30 days" detail came from internal mobile-app code; it can't be verified from public source and is implementation detail that third-party app authors should choose for themselves. Replace with generic guidance to pick a cadence on app startup. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
…ements The Required-fields table stated `FirebaseMessaging.getToken()`, `getAPNSToken()`, `android.id`/`device_info_plus`, and `identifierForVendor` as if they were Viam requirements. They are the Viam mobile app's choices and one valid pattern per platform. Reframe to separate the Viam requirement (an FCM token; a stable device identifier) from the Viam-mobile-app implementation. Surfaced by the identifier sweep during the Playbook 1 pass: these identifiers do not appear in any in-scope public repo and were sourced to the private viam-mobile repo only. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Three Missing/Prose findings surfaced by walking the page as a first-time reader: - F-WALK-1: Prereqs list mentioned `viam login` but left readers staring at `--org-id <your-org-id>` placeholders with no path to find their org ID. Added one bullet pointing to app.viam.com and `viam organizations list`. - F-WALK-2: Section 3 implied (correctly) that the fragment's owning org must match the Firebase-config-owning org, but did not name the cross-org case. Added a one-sentence clarification that the check compares the fragment's owner, not the machine's. - F-WALK-3: Section 5 verify step did not point readers to the Troubleshoot table for the "no notification arrived" case. Added a one-line pointer. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
- Drop the "no user_id parameter" callout; implementation detail irrelevant to a custom-app developer (Martha review comment). - Change "recommended" to "required" for DeleteDevicePushToken on logout. Without it, a shared device continues receiving the prior user's notifications (Martha review comment, correctness fix). - Drop the Viam-mobile-exemption sentences from section 3. This page is about custom apps; readers already know they are not using com.viam.viammobile (Martha review comment). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
martha-johnston
approved these changes
Jun 4, 2026
Collaborator
Author
|
@clintpurser would you please review this PR as well. It's large enough that I'd like two sets of eyes on it. |
|
Hey @shannonbradshaw — this PR has been approved and CI has been green for 3+ business days. Ready to merge? Auto-comment from overwatch. Will not re-nudge for 7 days. |
|
Hey @shannonbradshaw — this PR has been approved and CI has been green for 8+ business days. Ready to merge? Auto-comment from overwatch. Will not re-nudge for 7 days. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Documents the end-to-end flow for routing trigger push notifications to a custom mobile app instead of the Viam mobile app. Closes the docs follow-up identified during review of #5079.
The new page at
docs/monitor/custom-push-notifications.mdcovers:viam organizations firebase-config set(with the constraint that it's the Admin SDK service account, notgoogle-services.json/GoogleService-Info.plist).uploadDevicePushToken/deleteDevicePushToken/getDevicePushTokens) for the one language that has them today, plus raw gRPC notes for Python / TypeScript / Go / C++.applicationonly delivers if the machine imports a fragment owned by the same organization that uploaded the Firebase config.com.viam.viammobileis exempt by literal name.applicationfield.trigger push notification failed: app authorization check,recipient is not a robot owner or operator).Cross-links added from
docs/monitor/alert.md,docs/data/trigger-on-data.md,docs/reference/triggers.md, and both theapplicationline and theorganizations firebase-config setentry indocs/cli/reference.md.Review status
Martha reviewed on 2026-05-28 and left three inline suggestions plus answered the design-rationale question. All three suggestions applied in
b73e1a407. The rationale question is resolved — leaving the page without a rationale paragraph per Martha's recommendation; her one-sentence answer ("extra layer of security so that only app owners can send push notifications to their app") lives in the PR thread.Open question for @clintpurser — technical accuracy spot-check
The page makes several claims I want a second pair of eyes on, especially ones that involve client-side or private-repo behavior I cannot fully verify from public source:
event_type,robot_part_id,machine_name,part_name,app_idbased onpushNotificationData()pluspushPayloadData(). Is that the complete and stable set, or are additions expected that third-party app developers should code for defensively?app/ui/src/lib/components/robot/add-resource-menu/create-block-modal/create-block-dialog.svelte:31. Just flagging in case there's an updated UI flow in flight.A quick "looks right" / "fix N" reply is plenty — no need to write copy.
Test plan
/monitor/custom-push-notifications/with a clean sidebar entry between Set up alerts and Default control interface./monitor/alert/,/data/trigger-on-data/,/reference/triggers/,/cli/reference/.#troubleshootworks; cross-page anchors/cli/reference/#organizations-firebase-config-set,/cli/reference/#login, and/hardware/fragments/#save-your-own-configurationsjump correctly.🤖 Generated with Claude Code