[AI Heroes Turin May 7th] Build smarter mobile & web apps: Integrate Gemini using Firebase AI Logic

Transcript

1. Build smarter mobile & web apps: Integrate Gemini using Firebase

   AI Logic Developer Relations Engineer @thatfiredev Rosário P. Fernandes

2. Firebase is Google’s app development platform! 2

3. BUILD RUN A/B Testing Crashlytics App Distribution Remote Config Test

   Lab Cloud Messaging Performance Monitoring Google Analytics Cloud Functions for Firebase Cloud Storage for Firebase Data Connect App Hosting Authentication Realtime Database Firestore Hosting App Check Firebase AI Logic

4. Easy to integrate on iOS, Android, and the Web as

   well as a variety of gaming platforms 4

5. Every Firebase project is a Google Cloud project Billing Permissions

   Infrastructure APIs
6. None

7. < /> Firebase AI Logic Firebase client SDKs Gemini API

   providers

8. 8 Get started with Firebase AI Logic

9. 1. Go to the Firebase console (console.firebase.google.com) 2. Find the

   “AI Logic” section and click on “Get started” 3. Choose your desired API provider

10. 10

11. 1. Go to the Firebase console (console.firebase.google.com) 2. Find the

    “AI Logic” section and click on “Get started” 3. Choose your desired API provider 4. Add the SDKs to your app

12. 12 Capabilities

13. 13 Generate text

14. val model = Firebase.ai( backend = GenerativeBackend.googleAI() ).generativeModel( modelName =

    "gemini-3.1-flash-lite" ) val prompt = "Write a story about a magic backpack." val response = model.generateContent(prompt) Log.d(TAG, response.text)

15. val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite" ) val prompt

    = content { inlineData( bytes = reportPDFfileStream.readBytes(), mimeType = "application/pdf" ) text("Summarize the important results in this report.") } val response = model.generateContent(prompt) Log.d(TAG, response.text)

16. 16 Implement chat

17. val model = Firebase.ai .generativeModel("gemini-3.1-flash-lite") val chat = model.startChat( history

    = listOf( content(role = "user") { text("Hello!") }, content(role = "model") { text("Hi, how can I help?") } ) ) val response = chat.sendMessage("I'd like to --.") Log.d(TAG, response.text)

18. 18 Generate structured output (JSON)

19. // Step 1: provide a JSON schema object using a

    standard format. val jsonSchema = Schema.obj( mapOf("characters" to Schema.array( Schema.obj( mapOf( "name" to Schema.string(), "age" to Schema.integer(), "species" to Schema.string(), "accessory" to Schema.enumeration(listOf("hat", "belt")) ), optionalProperties = listOf("accessory") ) )) )

20. // Step 2: provide a JSON schema object using a

    standard format. val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite", generationConfig = generationConfig { responseMimeType = "application/json" responseSchema = jsonSchema }) val prompt = "For use in a card game, generate 10 animal-based characters." val response = generativeModel.generateContent(prompt)
21. None

22. 22 Generate images with Nano Banana

23. val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-image-preview", generationConfig = generationConfig

    { responseModalities = listOf(ResponseModality.TEXT, ResponseModality.IMAGE) } ) val prompt = "Generate an image of the Eiffel tower " + "with fireworks in the background." val generatedImageAsBitmap = model.generateContent(prompt) .candidates.first().content.parts .filterIsInstance<ImagePart>().firstOrNull()?.image

24. 24 Gemini Live API

25. val liveModel = Firebase.ai.liveModel( modelName = "gemini-3.1-flash-live-preview", generationConfig = liveGenerationConfig

    { responseModality = ResponseModality.AUDIO } ) val session = liveModel.connect() session.startAudioConversation()

26. 26 Other options to control generation

27. // System Instructions val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite",

    systemInstruction = content { text("You will respond as a music historian." + "Your tone will be upbeat and enthusiastic," + "spreading the joy of music. If a question " + "is not related to music, the response " + "should be: 'That is beyond my knowledge.'") } )

28. // Thinking levels val generationConfig = generationConfig { thinkingConfig =

    thinkingConfig { includeThoughts = true thinkingLevel = ThinkingLevel.LOW } } val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite", generationConfig, )
29. None

30. 30 Give it tools

31. None

32. // Search grounding val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite",

    tools = listOf(Tool.googleSearch()) ) val response = model.generateContent("Who won the euro 2024?")

33. // URL Context val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite",

    tools = listOf(Tool.googleSearch(), Tool.urlContext()) ) val response = model.generateContent( "Find the latest blog post from Firebase and " + "compare it to this article: $url" )
34. None

35. // Code Execution val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite",

    tools = listOf(Tool.codeExecution()) ) val prompt = "What is the sum of the first 50 prime numbers? " + "Generate and run code for the calculation." val response = model.generateContent(prompt)

36. 36 Function calling

37. suspend fun fetchWeather( city: String, state: String, date: String ):

    JsonObject { // ... Call an external weather API // Return a JsonObject return JsonObject(mapOf( "temperature" to JsonPrimitive(temp), "chancePrecipitation" to JsonPrimitive(precipitation), "cloudConditions" to JsonPrimitive(cloudConditions) )) }

38. val fetchWeatherTool = FunctionDeclaration( "fetchWeather", "Get the weather conditions for

    a specific city on a specific date.", mapOf( "city" to Schema.string("The city for which to get the weather."), "state" to Schema.string("The US state for which to get the weather."), "date" to Schema.string("The date for which to get the weather." + " Date must be in the format: YYYY-MM-DD." ), ), )

39. val model = Firebase.ai.generativeModel( modelName = "gemini-3.1-flash-lite", tools = listOf(Tool.functionDeclarations(listOf(fetchWeatherTool)))

    )

40. val chat = model.startChat() val prompt = "What was the

    weather in Boston on October 17, 2024?" val result = chat.sendMessage(prompt) val fetchWeatherCall = result.functionCalls.find { it.name == "fetchWeather" } val functionResponse = fetchWeatherCall?.let { val city = it.args["city"]!!.jsonPrimitive.content val state = it.args["state"]!!.jsonPrimitive.content val date = it.args["date"]!!.jsonPrimitive.content fetchWeather(city, state, date) }

41. // Send the response(s) from the function back to the

    model // so that the model can use it to generate its final response. val finalResponse = chat.sendMessage(content("function") { part(FunctionResponsePart("fetchWeather", functionResponse!!)) }) // Log the text response. println(finalResponse.text ?: "No text in response")

42. 42 Build hybrid and on-device experiences

43. Hybrid Inference 5% - 10% Android devices support on-device models

    like Gemini Nano Chromium Gemini Nano (others) Android Gemini Nano (others) On Device Inference Firebase AI Logic In Cloud Inference Intelligent Routing Local first, Cloud first, Only local, Client SDKs Firebase AI Logic iOS Foundation Models Gemini API providers

44. const ai = getAI(firebaseApp, { backend: new GoogleAIBackend() }); const

    model = getGenerativeModel(ai, { mode: InferenceMode.PREFER_ON_DEVICE, inCloudParams: { model: "gemini-3.1-flash-lite" } }); const prompt = "Write a poem about an AI model that runs in the browser" const result = await model.generateContent(prompt); JavaScript (Web)

45. val model = Firebase.ai(backend = GenerativeBackend.googleAI()) .generativeModel( modelName = "gemini-3.1-flash-lite",

    onDeviceConfig = OnDeviceConfig( mode = InferenceMode.PREFER_ON_DEVICE ) ) val prompt = "Write a poem about an AI model that fits inside a pocket" val response = model.generateContent(prompt) print(response.text) Kotlin (Android)

46. • PREFER_ON_DEVICE: Attempt to use on-device model; otherwise, fall back

    to the cloud-hosted model. • ONLY_ON_DEVICE: Attempt to use on-device model; otherwise, throw an exception. • PREFER_IN_CLOUD: Attempt to use the cloud-hosted model; otherwise, fall back to the on-device model. • ONLY_IN_CLOUD: Attempt to use the cloud-hosted model; otherwise, throw an exception. Inference Modes

47. let session = FirebaseAI.firebaseAI().generativeModelSession( model: .hybridModel( primary: .systemModel( useCase: .general

    ), secondary: .geminiModel( name: "gemini-3.1-flash-lite", ) ) ) let response = try await session.respond( to: "Write a poem about an AI model that fits inside a pocket" ) Swift (Apple platforms) New!

48. Going to production

49. Firebase Invalid Auth ID Token Valid Auth ID Token Auth

    (TLS 60m) API Keys secured on server Gemini API key IAM GCP Auth Security Gemini API providers

50. Firebase Illegitimate request Legitimate request Auth (TLS 60m) Gemini API

    key IAM GCP Auth Security: App Check App Check (TLS >30min) Gemini API providers

51. Firebase Illegitimate request Legitimate request Auth (TLS 60m) Gemini API

    key IAM GCP Auth Security: Replay Attack Protection App Check Replay Protection One-time token Gemini API providers

52. Top LLM Vulnerabilities OWASP Top 10 Prompt Injection • Direct

    Prompt Injection • Indirect Prompt Injection Improper Output Handling • Insufficient validation and sanitization of model generated output Sensitive Information Disclosure • PII Leakage • Business IP Protection • Unauthorized Data Disclosure System Prompt Leakage • Application instructions may reveal sensitive internal logic    

53. < /> Firebase AI Logic Make request Get response Generate

    Content Response Model Armor Make request Get response Block Request or Block Response Model Armor integration Content Safety model Ability to detect content safety categories (e.g., harassment, dangerous) Sensitive Data Protection service Ability to detect PII based on templates Prompt safety model Ability to detect prompt injection and jailbreak attempts Google AV and SafeBrowsing Detect malicious files and unsafe URLs sent or created Agent Platform Gemini API

54. < /> System Instructions You're a storyteller that tells nice

    and joyful stories with happy endings. User Prompt Create a story about a cat with the length of 40 words in Spanish language. Full prompt is in the client Security: Prompt

55. val generativeModel = Firebase.ai.templateGenerativeModel() val response = generativeModel.generateContent("storyteller-v10", mapOf( "topic"

    to topic, "length" to length, "language" to language ) ) _output.value = response.text --- model: 'gemini-3.1-flash-lite' input: Schema:... output: schema:... tools:... —-- {{role "system"}} You're a storyteller that tells nice and joyful stories with happy endings. {{role "user"}} Create a story about {{topic}} with the length of {{length}} words in {{language}} language. Your client code Your prompt template Security: Server Prompt Templates

56. < /> Template Name: Storyteller-v1 Parameters: {cat, 200, English} Template

    Storage Prompt Composer Retrieve & Compose Full Prompt Firebase AI Logic (Server) Joke-Teller-v05 Storyteller-v1 --- model: 'gemini-3-flash' input: schema:... tools:... —-- {{role "system"}} You're a storyteller that tells nice and joyful stories with happy endings. {{role "user"}} Create a story about {{topic}} with the length of {{length}} words in the {{language}} language. Enhanced Security: Prompts hidden from client, protecting IP Centralized Management: Manage prompts in the Firebase Console Faster Iteration: Prompts/models updates without app updates Observability: Watch the request in AI Monitoring Security: Prompt Templates benefits Gemini API providers

57. < /> Firebase AI Logic (Server) --- model: 'gemini-3-flash' input:

    schema:... tools:... —-- {{role "system"}} You're a storyteller that tells nice and joyful stories with happy endings. {{role "user"}} Create a story about {{topic}} with the length of {{length}} words in the {{language}} language. Make request Get response Generate Content Response Cloud Functions Triggers Before Generate Content After Generate Content Scenarios: Access Control, Custom Guardrails, Context Injection, etc Cloud Functions triggers Gemini API providers

58. import { beforeGenerateContent } from "firebase-functions/v2/ai"; import { HttpsError }

    from "firebase-functions/v2/https"; export const validateAndFilterPrompt = beforeGenerateContent((event) => { const uid = event.authId; if (event.authType === "unauthenticated" || !uid) { throw new HttpsError("unauthenticated", "You must be signed in to use this AI service." ); } const contents = event.data.request.contents || []; for (const content of contents) { for (const part of content.parts || []) { if (part.text && part.text.toLowerCase().includes("cat")) { throw new HttpsError( "invalid-argument", "Prompts containing the word 'cat' are not allowed." ); } } } return {}; });

59. Thank you ! Learn more or connect with me: •

    Docs: firebase.google.com/docs/ai-logic • 𝕏: @thatfiredev • LinkedIn: linkedin.com/in/rosariopfernandes Developer Relations Engineer @thatfiredev Rosário P. Fernandes